Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xeRN-3Cdxofc9AN26xA5E-sDs7Y.roa
File: xeRN-3Cdxofc9AN26xA5E-sDs7Y.roa (raw, json)
Hash identifier: POwS7+yY9yyux279XoGOelTPaWEEtDvJOzCE/El7Vvo=
Subject key identifier: C5:E4:4D:FB:70:9D:C6:87:DC:F4:03:76:EB:10:39:13:EB:03:B3:B6
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0188FC06FF94A3F1CF2CA83F19E1DCE3F30B
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xeRN-3Cdxofc9AN26xA5E-sDs7Y.roa
Signing time: Tue 27 Jun 2023 08:44:57 +0000
ROA not before: Tue 27 Jun 2023 08:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.98.0/24 maxlen: 24
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.144.176.0/21 maxlen: 21
5.178.99.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:06:ff:94:a3:f1:cf:2c:a8:3f:19:e1:dc:e3:f3:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jun 27 08:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5e44dfb709dc687dcf40376eb103913eb03b3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7f:70:2e:fd:b9:2a:bd:67:c6:38:59:8a:28:
28:ca:02:03:4e:7f:f4:ad:7a:88:be:76:5f:f0:c3:
98:be:48:ca:e9:c3:60:49:90:75:78:cb:b2:db:5c:
f1:dc:99:00:2a:d0:56:69:a8:6c:21:23:5c:92:c8:
a4:3a:ff:8f:ed:47:94:48:59:31:19:25:06:6d:53:
ee:3d:6e:a8:0f:a8:37:07:49:8a:66:21:b8:f0:bf:
0c:d8:7b:2d:da:e0:09:d5:23:c4:ca:3e:66:9e:1d:
07:0c:8a:82:9d:60:62:49:ca:01:19:74:ae:ba:a9:
05:29:08:e8:3d:1d:0f:e8:41:22:4c:fd:5c:57:0c:
47:07:2b:2f:ba:be:f2:91:e0:56:6f:36:1c:20:e4:
77:23:f9:64:b3:b5:04:20:80:ce:ca:3c:ef:e0:fe:
2c:bd:3c:27:f4:a3:af:7d:72:f1:18:bc:46:e7:85:
dd:34:2a:3d:af:3b:2f:57:df:b6:c6:51:63:48:57:
75:e1:28:ba:82:42:0a:45:5e:3c:30:8f:4a:67:bf:
71:60:06:0d:f2:bc:3e:bc:13:89:6c:31:d7:26:e9:
8e:ba:b2:fe:4d:e5:07:6c:e8:df:9d:70:c5:47:32:
3d:ba:97:78:c1:c6:ab:3b:82:6c:4d:3d:cf:80:db:
4d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E4:4D:FB:70:9D:C6:87:DC:F4:03:76:EB:10:39:13:EB:03:B3:B6
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/xeRN-3Cdxofc9AN26xA5E-sDs7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.176.0/21
5.178.96.0-5.178.100.255
5.178.104.0-5.178.106.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
cc:84:b7:09:9c:e9:89:f2:35:f8:6a:64:a5:c4:1b:c2:d7:8d:
eb:0c:55:52:5e:a5:1b:69:ba:cf:05:11:f6:d1:58:f2:4f:b8:
34:f8:e8:6b:0e:3d:0c:6a:bd:8f:d2:84:4b:bf:da:70:b2:91:
0b:c7:e4:ea:90:9f:95:40:f2:84:5b:42:02:02:36:cb:6e:87:
7f:0f:ae:f7:3d:cc:86:9c:eb:2a:e7:fe:e2:94:27:2e:b8:b1:
6d:ae:4c:e9:8d:f1:f7:88:ad:68:cf:0a:6a:9a:f0:dd:91:d8:
c7:67:45:a8:3f:4e:c9:a5:eb:6e:93:0e:7f:ab:79:b3:ab:af:
7f:6a:49:f4:d8:69:6e:1e:a6:2c:d7:69:78:39:0b:a5:9b:ca:
c5:a9:a3:7d:9e:86:37:0f:fe:e4:70:c0:fb:cb:a7:94:79:ac:
6a:0d:a6:0b:cd:d2:ca:03:86:80:45:76:e1:22:51:15:88:7c:
89:a6:6a:8f:75:65:15:c2:95:42:8c:15:aa:3e:8c:c6:bc:7e:
4c:01:78:32:0d:2e:b0:f2:c2:b0:8c:4c:8e:c1:ad:79:0f:97:
04:6f:c9:d1:ec:c8:e7:8e:37:62:bb:39:9f:32:04:7e:13:86:
42:d0:58:60:fb:05:ff:82:0e:b7:5f:4a:fe:54:84:53:61:df:
2c:aa:70:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net