Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/e0RYaU0wn3rB9ZIWGz7HWHFoYrE.roa
File: e0RYaU0wn3rB9ZIWGz7HWHFoYrE.roa (raw, json)
Hash identifier: S4BLsbBw5RdhB++f9FfwEFuivxJA/qVyL0DYSTZs7JU=
Subject key identifier: 7B:44:58:69:4D:30:9F:7A:C1:F5:92:16:1B:3E:C7:58:71:68:62:B1
Certificate issuer: /CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Certificate serial: 018CC9BC33A0AA4C3CA41C59814141FE23E6
Authority key identifier: 57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/e0RYaU0wn3rB9ZIWGz7HWHFoYrE.roa
Signing time: Tue 02 Jan 2024 10:33:23 +0000
ROA not before: Tue 02 Jan 2024 10:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14593
IP address blocks: 145.224.64.0/21 maxlen: 24
176.116.124.0/23 maxlen: 24
145.224.64.0/18 maxlen: 24
145.224.72.0/21 maxlen: 24
145.224.80.0/21 maxlen: 24
145.224.88.0/22 maxlen: 24
188.92.248.0/21 maxlen: 24
145.224.94.0/23 maxlen: 24
145.224.96.0/21 maxlen: 24
145.224.92.0/23 maxlen: 24
188.95.144.0/23 maxlen: 24
216.128.0.0/19 maxlen: 24
169.155.224.0/19 maxlen: 24
217.65.136.0/22 maxlen: 24
217.65.136.0/21 maxlen: 24
162.43.192.0/22 maxlen: 24
91.102.180.0/22 maxlen: 24
145.224.108.0/22 maxlen: 24
145.224.124.0/22 maxlen: 24
209.198.128.0/19 maxlen: 24
2a0d:3340::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Mar 2024 01:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:33:a0:aa:4c:3c:a4:1c:59:81:41:41:fe:23:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Validity
Not Before: Jan 2 10:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b4458694d309f7ac1f592161b3ec758716862b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7d:f0:96:c8:8f:77:37:bd:24:1f:ca:ff:36:
b3:da:3d:ce:b9:4e:66:17:e7:30:46:06:37:1b:a7:
ec:c2:a4:62:a7:87:3a:db:9d:70:fe:73:7d:d7:23:
be:8b:55:37:ec:9a:06:d0:6f:9a:70:cf:58:2b:a0:
b8:2c:fb:62:8f:4e:3a:47:be:11:d5:46:b2:39:88:
de:05:7e:fb:04:c0:b8:d6:25:ed:87:ee:14:d2:1d:
e5:b1:e9:49:bd:2b:b7:f0:12:5d:81:8d:7a:fe:46:
a7:96:c3:df:d7:76:8d:fa:37:fa:79:61:f2:a6:3c:
8d:b7:11:b3:29:ff:e3:c2:74:48:c9:12:07:d4:3e:
46:c9:5f:ff:8b:9b:a2:24:ca:54:90:09:7d:07:c0:
01:a6:e6:82:f5:af:22:4c:be:65:5d:b2:91:ba:d3:
c8:ef:1e:c0:03:3e:6e:94:bc:31:94:62:09:8d:92:
2d:ad:5a:8f:e8:14:40:56:3c:15:c4:98:c3:05:91:
d2:41:d4:60:54:57:08:d2:3d:38:02:58:1b:81:41:
f5:02:4b:af:8a:98:f3:04:f6:e8:46:5d:6e:0b:53:
1b:ff:6c:e5:58:0e:bc:75:9d:9c:ef:85:ec:8b:c7:
b7:ba:ae:32:e8:15:c5:95:2b:aa:d1:ef:78:29:51:
1e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:44:58:69:4D:30:9F:7A:C1:F5:92:16:1B:3E:C7:58:71:68:62:B1
X509v3 Authority Key Identifier:
keyid:57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/e0RYaU0wn3rB9ZIWGz7HWHFoYrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.180.0/22
145.224.64.0/18
162.43.192.0/22
169.155.224.0/19
176.116.124.0/23
188.92.248.0/21
188.95.144.0/23
209.198.128.0/19
216.128.0.0/19
217.65.136.0/21
IPv6:
2a0d:3340::/29
Signature Algorithm: sha256WithRSAEncryption
d0:5e:3f:b3:5c:3e:8b:bd:cb:f1:0e:23:ce:d3:19:79:e5:0f:
97:28:2d:78:f7:6d:e8:59:92:c0:62:a5:f2:43:b8:c6:36:dc:
6a:88:72:38:7b:d5:1c:38:af:33:da:12:e4:ee:62:d3:6e:a2:
07:90:7a:28:3d:ad:ba:85:70:3d:05:79:75:5f:d9:81:b0:63:
4d:05:46:87:f0:ab:93:22:95:0e:a8:41:a5:ce:b0:b9:71:b2:
47:78:06:48:35:71:cf:45:9c:f4:cd:b4:ec:1c:6e:04:e3:f5:
f6:cc:16:b1:dc:de:55:51:d1:32:96:8a:cd:7d:0e:6d:7f:4d:
54:43:b4:a3:a4:a6:72:02:bc:a9:ed:34:f4:c8:9e:70:9c:4e:
ad:07:a4:f4:e2:3d:50:0c:d1:1f:b9:87:07:ad:31:8d:ac:44:
ac:36:21:d2:b0:f8:ec:ee:a4:2e:85:5f:9d:fb:26:fb:0b:99:
d8:33:bb:a8:cb:5e:a2:07:1d:42:b0:04:fe:15:31:de:38:62:
dd:6e:df:c3:b6:63:29:7b:5c:5e:66:a7:f8:f0:5e:31:17:24:
03:4f:47:ac:e1:71:cc:77:4e:ca:7e:ea:d0:c0:d2:9e:71:3c:
f7:a3:83:d3:e8:dc:28:00:26:bf:d5:45:4f:99:e0:77:4f:f0:
92:6b:0d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:18 2024 by rpki-client on console-ams.rpki-client.org