Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/L_HKw2UgqPz3DzMFxYrjSnwV4S0.roa
File: L_HKw2UgqPz3DzMFxYrjSnwV4S0.roa (raw, json)
Hash identifier: /uFwkb76XMWLU7/XzWzuzycpnODhLwvwpoURNlS5nUQ=
Subject key identifier: 2F:F1:CA:C3:65:20:A8:FC:F7:0F:33:05:C5:8A:E3:4A:7C:15:E1:2D
Certificate issuer: /CN=cc5b21353f92cbdbf3b7d2513b9a465ac53b2d39
Certificate serial: 01900B9B2233DC5F1176C99F546E876A1873
Authority key identifier: CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/L_HKw2UgqPz3DzMFxYrjSnwV4S0.roa
Signing time: Wed 12 Jun 2024 08:40:34 +0000
ROA not before: Wed 12 Jun 2024 08:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3242
IP address blocks: 151.1.0.0/18 maxlen: 18
151.1.0.0/23 maxlen: 23
151.1.7.0/24 maxlen: 24
151.1.24.0/21 maxlen: 21
151.1.32.0/21 maxlen: 21
151.1.40.0/23 maxlen: 23
151.1.42.0/23 maxlen: 23
151.1.44.0/23 maxlen: 23
151.1.46.0/23 maxlen: 23
151.1.48.0/24 maxlen: 24
151.1.49.0/24 maxlen: 24
151.1.50.0/24 maxlen: 24
151.1.62.0/24 maxlen: 24
151.1.66.0/23 maxlen: 23
151.1.68.0/22 maxlen: 22
151.1.72.0/24 maxlen: 24
151.1.74.0/23 maxlen: 23
151.1.76.0/22 maxlen: 22
151.1.80.0/20 maxlen: 20
151.1.84.0/24 maxlen: 24
151.1.96.0/22 maxlen: 22
151.1.100.0/22 maxlen: 22
151.1.101.0/24 maxlen: 24
151.1.104.0/21 maxlen: 21
151.1.104.0/23 maxlen: 23
151.1.106.0/23 maxlen: 23
151.1.128.0/18 maxlen: 18
151.1.192.0/18 maxlen: 18
151.1.192.0/22 maxlen: 22
151.1.192.0/24 maxlen: 24
151.1.194.0/24 maxlen: 24
151.1.195.0/24 maxlen: 24
151.1.196.0/22 maxlen: 22
151.1.200.0/21 maxlen: 21
151.1.203.0/24 maxlen: 24
151.1.208.0/21 maxlen: 21
151.1.212.0/24 maxlen: 24
151.1.216.0/21 maxlen: 21
151.1.224.0/19 maxlen: 19
151.1.227.0/24 maxlen: 24
151.1.232.0/21 maxlen: 21
151.1.244.0/24 maxlen: 24
151.1.247.0/24 maxlen: 24
151.2.0.0/17 maxlen: 17
151.2.36.0/24 maxlen: 24
151.2.102.0/24 maxlen: 24
2a01:65c0::/32 maxlen: 32
2a01:65c0:100::/48 maxlen: 48
2a01:65c0:101::/48 maxlen: 48
2a01:65c0:200::/40 maxlen: 40
2a01:65c0:e00::/48 maxlen: 48
2a01:65c0:e01::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Oct 2024 06:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0b:9b:22:33:dc:5f:11:76:c9:9f:54:6e:87:6a:18:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc5b21353f92cbdbf3b7d2513b9a465ac53b2d39
Validity
Not Before: Jun 12 08:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ff1cac36520a8fcf70f3305c58ae34a7c15e12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:90:f9:45:fc:28:d5:b6:eb:9b:b1:5d:7b:23:
94:cb:51:d6:1a:21:17:90:38:15:23:b8:9c:36:69:
e9:84:80:f2:32:1a:1f:ed:8f:d1:95:66:b3:7c:e8:
a8:ef:d6:55:28:8c:25:04:e6:eb:ea:b5:4d:36:a9:
41:b9:76:80:f6:af:89:a6:7f:f7:5e:da:b8:89:0d:
d1:b5:e4:69:5b:03:4e:aa:fc:83:7a:42:14:05:eb:
b5:ef:69:36:b5:c6:18:0a:b5:1c:3e:e0:c3:68:0f:
5e:8f:e5:60:83:d8:e3:8e:a4:38:5c:e2:ac:01:09:
d4:f1:e2:0f:e9:ea:6b:1e:36:0f:45:a6:01:29:b1:
35:df:2e:0f:6c:ff:b0:e7:34:48:10:ed:7c:23:6a:
0a:f8:b5:31:ce:43:38:7d:79:b7:28:99:76:82:8f:
78:28:44:dc:36:54:b9:f3:e5:5d:08:f3:25:82:d1:
b0:ac:fe:86:eb:f7:5d:ed:35:d1:ee:95:fa:35:0e:
20:d3:09:59:e1:8c:7d:12:1e:cb:61:6a:b6:4f:c0:
f7:41:7e:8b:3c:26:47:82:74:4a:4a:1e:57:2b:9c:
0b:78:57:32:d7:7a:9c:dd:b0:a1:1c:a8:30:40:5a:
87:04:5d:a8:22:16:51:3b:d5:0d:8f:e7:8b:92:d2:
ac:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F1:CA:C3:65:20:A8:FC:F7:0F:33:05:C5:8A:E3:4A:7C:15:E1:2D
X509v3 Authority Key Identifier:
keyid:CC:5B:21:35:3F:92:CB:DB:F3:B7:D2:51:3B:9A:46:5A:C5:3B:2D:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zFshNT-Sy9vzt9JRO5pGWsU7LTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/L_HKw2UgqPz3DzMFxYrjSnwV4S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/4fb057-5dae-4851-ad47-5ad5f33cc99c/1/zFshNT-Sy9vzt9JRO5pGWsU7LTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.1.0.0/18
151.1.66.0-151.1.72.255
151.1.74.0-151.1.111.255
151.1.128.0-151.2.127.255
IPv6:
2a01:65c0::/32
Signature Algorithm: sha256WithRSAEncryption
48:ba:8f:8d:b7:85:03:c3:2f:a1:bf:8f:f9:80:a0:a0:13:6c:
4f:cb:76:0e:ca:46:bb:7b:9c:70:dd:2c:55:8c:60:05:b7:00:
85:1b:02:e8:7d:33:f1:47:da:3b:f8:b4:29:aa:64:7e:43:da:
9b:7b:b6:ad:b9:0f:89:a2:ab:74:b0:51:83:14:6e:9b:67:3c:
18:b8:8e:9f:17:6e:98:75:94:ba:bc:69:12:2e:08:e7:6b:85:
2a:be:31:71:c2:a4:a2:51:92:18:3c:dd:80:16:78:47:95:57:
39:c3:a2:a1:28:9a:4d:71:b9:a9:b7:f3:64:a9:af:fd:01:d2:
3b:01:a0:30:f6:d3:c9:c0:38:da:29:ba:a8:ec:9f:41:34:b6:
cb:14:f4:b3:e1:8e:f3:e8:36:49:45:56:c7:49:e8:ef:42:ab:
ea:40:13:a9:1e:a2:6d:2b:b4:54:67:6b:7a:d8:88:df:68:42:
30:de:7a:e2:0d:5f:43:23:09:33:d6:d9:68:ca:d2:96:e8:c5:
e3:0f:e9:fa:73:2f:f9:5c:4d:1d:34:5c:03:a7:ff:cf:09:6c:
b6:c8:10:d5:99:3b:31:67:c0:bb:04:18:da:86:3a:7b:da:74:
df:f1:ce:f5:f3:26:8a:be:44:34:f6:4d:1d:25:d1:25:f3:39:
26:a5:c8:9a
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 4 10:23:21 2024 by rpki-client on console-ams.rpki-client.org