Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/5pFbqZa1-gZycpjaO0eP8mwebpo.roa
File: 5pFbqZa1-gZycpjaO0eP8mwebpo.roa (raw, json)
Hash identifier: jyem7blCSG3uUjfqWMsylkkPlEKHGlQiVT2+0i4V54s=
Subject key identifier: E6:91:5B:A9:96:B5:FA:06:72:72:98:DA:3B:47:8F:F2:6C:1E:6E:9A
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D390F78A0D37BA327BAA1700E35A8C881
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/5pFbqZa1-gZycpjaO0eP8mwebpo.roa
Signing time: Wed 24 Jan 2024 01:22:11 +0000
ROA not before: Wed 24 Jan 2024 01:22:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:2000::/48 maxlen: 48
2a03:32c0:2001::/48 maxlen: 48
2a03:32c0:2002::/48 maxlen: 48
2a03:32c0:2003::/48 maxlen: 48
2a03:32c0:2004::/48 maxlen: 48
2a03:32c0:2005::/48 maxlen: 48
2a03:32c0:2006::/48 maxlen: 48
2a03:32c0:2007::/48 maxlen: 48
2a03:32c0:2008::/48 maxlen: 48
2a03:32c0:2009::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
2a03:32c0:9000::/48 maxlen: 48
2a03:32c0:9001::/48 maxlen: 48
2a03:32c0:9002::/48 maxlen: 48
2a03:32c0:9003::/48 maxlen: 48
2a03:32c0:9004::/48 maxlen: 48
2a03:32c0:9005::/48 maxlen: 48
2a03:32c0:9006::/48 maxlen: 48
2a03:32c0:9007::/48 maxlen: 48
2a03:32c0:a000::/48 maxlen: 48
2a03:32c0:a001::/48 maxlen: 48
2a03:32c0:a002::/48 maxlen: 48
2a03:32c0:a003::/48 maxlen: 48
2a03:32c0:a004::/48 maxlen: 48
2a03:32c0:a005::/48 maxlen: 48
2a03:32c0:a006::/48 maxlen: 48
2a03:32c0:a007::/48 maxlen: 48
2a03:32c0:a008::/48 maxlen: 48
2a03:32c0:a009::/48 maxlen: 48
2a03:32c0:b000::/48 maxlen: 48
2a03:32c0:b001::/48 maxlen: 48
2a03:32c0:b002::/48 maxlen: 48
2a03:32c0:b003::/48 maxlen: 48
2a03:32c0:b004::/48 maxlen: 48
2a03:32c0:b005::/48 maxlen: 48
2a03:32c0:b006::/48 maxlen: 48
2a03:32c0:b007::/48 maxlen: 48
2a03:32c0:b008::/48 maxlen: 48
2a03:32c0:b009::/48 maxlen: 48
2a03:32c0:e000::/48 maxlen: 48
2a03:32c0:e001::/48 maxlen: 48
2a03:32c0:e002::/48 maxlen: 48
2a03:32c0:e003::/48 maxlen: 48
2a03:32c0:e004::/48 maxlen: 48
2a03:32c0:e005::/48 maxlen: 48
2a03:32c0:e006::/48 maxlen: 48
2a03:32c0:e007::/48 maxlen: 48
2a03:32c0:e008::/48 maxlen: 48
2a03:32c0:e009::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 03:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:39:0f:78:a0:d3:7b:a3:27:ba:a1:70:0e:35:a8:c8:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 24 01:22:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6915ba996b5fa06727298da3b478ff26c1e6e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:49:ea:9a:86:25:84:bb:6f:c0:f9:02:35:b8:
b5:b1:61:e1:2a:dc:3e:b6:98:f1:9f:bc:74:dc:3b:
65:e3:8d:b2:0c:95:58:2b:fd:22:eb:df:22:a6:28:
73:eb:fd:c4:c7:9b:52:24:8a:94:4e:82:a5:24:a4:
12:ed:ca:ba:57:da:47:04:6f:a6:bf:b3:7c:84:e2:
53:e0:8d:e6:e9:6a:d2:7b:e2:b7:a6:c7:20:fe:48:
3b:7d:eb:82:c5:ae:14:49:2c:69:fe:cc:2c:59:6e:
9a:40:67:d5:02:b7:7a:32:37:48:75:5b:fd:1b:16:
01:c1:6f:e4:ee:41:76:3d:e2:7e:20:c2:98:a4:bf:
dd:0d:d6:1e:71:85:15:92:46:c0:c0:e2:d9:6f:c4:
05:5a:5b:74:8e:d6:d5:b4:2f:d8:ae:70:54:f4:d3:
76:ef:68:81:31:b8:d7:a2:9e:91:11:de:b8:1f:2e:
d7:7b:58:b9:af:16:cf:e9:3f:2b:94:6a:d6:78:88:
f4:ed:40:fb:c8:f5:44:22:da:2f:6e:50:45:f1:4a:
e0:7d:8b:c1:fe:b7:f8:52:32:1d:f4:6c:20:63:23:
4d:d6:ef:7e:67:7c:04:8a:ff:b6:dd:8e:bc:cf:37:
23:99:b0:ed:5a:6f:95:6c:26:eb:aa:e7:87:f0:c7:
ad:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:91:5B:A9:96:B5:FA:06:72:72:98:DA:3B:47:8F:F2:6C:1E:6E:9A
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/5pFbqZa1-gZycpjaO0eP8mwebpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.70.0/24
IPv6:
2a03:32c0::/45
2a03:32c0:2000::-2a03:32c0:2009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:3000::-2a03:32c0:3005:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::/47
2a03:32c0:7000::/47
2a03:32c0:8000::/45
2a03:32c0:9000::/45
2a03:32c0:a000::-2a03:32c0:a009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:b000::-2a03:32c0:b009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:e000::-2a03:32c0:e009:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
dd:f0:73:76:d7:a0:d6:f8:d0:5d:7b:e0:47:d9:88:2b:07:73:
e9:11:68:71:d0:6d:45:71:82:bb:55:f6:91:e1:8e:67:39:cc:
0e:cb:2c:b5:6b:b2:41:59:97:92:d3:66:24:38:8f:6c:63:fc:
bc:1b:96:a8:51:29:c4:6b:4c:01:fc:2c:a0:e5:b6:4b:bd:5b:
6a:e8:dd:7b:24:34:8b:4d:3f:cd:43:1b:34:0e:35:c5:45:c1:
5f:6b:39:20:3f:d0:1f:f1:d2:6f:28:16:7f:4c:8e:f4:55:0d:
2a:f6:c2:9e:3f:84:c5:f3:36:81:df:17:c4:8f:42:88:55:05:
00:80:18:14:bd:74:8f:b2:ec:95:c8:b3:0a:0e:8e:ea:7e:49:
55:fc:60:8e:2a:ae:80:88:a9:e5:c6:97:87:25:29:6e:6b:0a:
58:7c:f6:9b:6e:1b:c8:1b:a5:93:90:2c:33:3b:e0:91:5b:6a:
bd:d0:7e:3d:d3:97:f4:a0:fd:a1:6b:5c:6c:76:ee:19:89:4f:
53:76:53:9e:db:4e:c0:26:f6:0c:8e:d8:ea:48:f4:1d:03:95:
60:dd:47:4c:c7:61:03:40:8d:2b:19:e1:96:b9:32:66:cb:dc:
f3:9f:f0:10:88:d3:f5:b4:07:d9:58:16:14:fd:15:d9:f9:5d:
3d:f4:73:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:54 2024 by rpki-client on console-ams.rpki-client.org