Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/TZeQGYPo3vlouN_sLyYHR_5Et-w.roa
File: TZeQGYPo3vlouN_sLyYHR_5Et-w.roa (raw, json)
Hash identifier: jLFpT9iV1/uPiavZFffaBAAQvXMUMo8iw5E6UhO/mWM=
Subject key identifier: 4D:97:90:19:83:E8:DE:F9:68:B8:DF:EC:2F:26:07:47:FE:44:B7:EC
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018EC914CCEBF1C0EED71132C80417AA3C99
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/TZeQGYPo3vlouN_sLyYHR_5Et-w.roa
Signing time: Wed 10 Apr 2024 17:36:07 +0000
ROA not before: Wed 10 Apr 2024 17:36:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 5.178.10.0/24 maxlen: 24
5.178.12.0/24 maxlen: 24
5.178.13.0/24 maxlen: 24
5.178.15.0/24 maxlen: 24
46.23.100.0/22 maxlen: 22
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/24 maxlen: 24
188.64.9.0/24 maxlen: 24
188.64.10.0/24 maxlen: 24
188.64.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 06:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c9:14:cc:eb:f1:c0:ee:d7:11:32:c8:04:17:aa:3c:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Apr 10 17:36:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d97901983e8def968b8dfec2f260747fe44b7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1c:b2:e0:b9:5e:ff:d9:e4:f3:61:97:54:5a:
2f:24:4e:28:0f:7c:ea:ff:51:b9:09:16:28:c7:0a:
54:3a:e8:75:d3:a8:e5:38:79:cc:4a:6b:19:37:78:
5f:28:68:98:81:3e:03:4b:fc:1b:12:8c:b8:67:c0:
96:00:06:cf:91:53:dc:74:6d:ef:11:aa:47:e0:ac:
31:00:fb:9b:04:9e:ba:a9:6f:42:98:f4:f7:1d:ba:
ac:9a:54:1a:31:bf:25:f9:9c:b4:75:a0:19:f7:c7:
c7:ac:45:fa:47:a3:58:15:06:4e:a7:29:76:df:75:
7e:fd:43:e9:3b:f3:ab:80:2f:ad:5e:c6:9f:df:cd:
5b:a9:e8:c8:a4:af:05:d2:fb:2b:99:d1:dd:00:00:
55:f5:f5:b4:07:3d:0c:a4:d8:9f:99:9a:37:26:a2:
83:26:5d:62:1f:2c:52:87:e8:82:69:a1:69:d5:2b:
8f:a7:92:4b:17:3a:2d:98:22:94:39:f6:4b:35:d2:
4b:91:b1:1e:81:89:f9:2d:d2:d6:d8:23:f8:66:c5:
46:eb:bf:31:9e:67:2e:ab:ef:39:9d:7a:58:d9:87:
33:b5:bf:44:c7:0a:3e:08:1b:b6:c7:c6:0c:c2:d6:
18:52:56:d6:99:54:4c:db:3f:7f:aa:cf:c3:90:2d:
60:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:97:90:19:83:E8:DE:F9:68:B8:DF:EC:2F:26:07:47:FE:44:B7:EC
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/TZeQGYPo3vlouN_sLyYHR_5Et-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.10.0/24
5.178.12.0/23
5.178.15.0/24
46.23.100.0/22
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:34:b8:ea:8e:08:1e:17:60:2d:0b:82:2c:08:d0:10:49:8d:
f3:84:24:83:b0:5b:28:66:ab:e9:f2:b2:81:d3:2b:d9:a6:8b:
f9:8b:02:f1:dc:47:d6:e3:2d:80:80:4f:07:2a:30:71:a4:5c:
94:95:00:54:66:ea:8a:53:2b:14:53:51:ec:fa:b4:04:9f:73:
52:b5:91:5b:a9:70:51:35:fa:f1:7c:06:72:63:c2:9c:27:04:
f8:83:f4:ee:38:7e:38:be:0d:6c:27:08:4a:37:89:6e:00:d2:
d1:78:c1:d3:86:99:e8:be:f0:9a:4c:90:5d:01:79:fa:06:80:
d8:f0:c6:d2:0f:cf:e4:af:80:e9:86:5f:9f:87:7e:75:0b:49:
11:c3:5e:7e:a9:2f:02:50:bf:31:0f:b3:64:cb:1b:2a:75:77:
ac:e0:43:a0:22:09:d9:70:ee:29:8a:62:a1:e0:76:30:66:53:
1d:02:d4:39:14:bb:85:6e:e2:bb:dc:d5:f5:06:27:b0:50:a4:
67:9a:dc:dc:d0:c4:4e:e5:fb:99:d1:ce:76:4d:23:49:99:7b:
dd:ed:d2:7d:73:dc:8f:19:63:1b:ca:7a:19:60:20:e2:fd:0a:
fc:6b:25:3d:cb:f1:bf:8d:86:e9:e6:08:01:07:1f:1f:e6:16:
e2:44:03:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 11 11:10:58 2024 by rpki-client on console-fra.rpki-client.org