Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/taGnO96-zJqVmFLdUgeFw8W7HV0.roa
File: taGnO96-zJqVmFLdUgeFw8W7HV0.roa (raw, json)
Hash identifier: vhmhWj+eCn7B5mQDM640tzjbcmaAGHjEopM5A/uzvXw=
Subject key identifier: B5:A1:A7:3B:DE:BE:CC:9A:95:98:52:DD:52:07:85:C3:C5:BB:1D:5D
Certificate issuer: /CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Certificate serial: 01939A8C0DAB7EE7F4D3727397AA89AE53AD
Authority key identifier: 4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/taGnO96-zJqVmFLdUgeFw8W7HV0.roa
Signing time: Fri 06 Dec 2024 05:58:09 +0000
ROA not before: Fri 06 Dec 2024 05:58:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54994
IP address blocks: 140.150.0.0/24 maxlen: 24
140.150.1.0/24 maxlen: 24
140.150.2.0/24 maxlen: 24
140.150.3.0/24 maxlen: 24
140.150.4.0/24 maxlen: 24
140.150.5.0/24 maxlen: 24
140.150.6.0/24 maxlen: 24
140.150.7.0/24 maxlen: 24
140.150.10.0/24 maxlen: 24
140.150.12.0/24 maxlen: 24
140.150.18.0/24 maxlen: 24
140.150.19.0/24 maxlen: 24
140.150.21.0/24 maxlen: 24
140.150.22.0/24 maxlen: 24
140.150.23.0/24 maxlen: 24
140.150.24.0/24 maxlen: 24
140.150.25.0/24 maxlen: 24
140.150.28.0/24 maxlen: 24
140.150.29.0/24 maxlen: 24
140.150.30.0/24 maxlen: 24
140.150.31.0/24 maxlen: 24
140.150.32.0/24 maxlen: 24
140.150.33.0/24 maxlen: 24
140.150.35.0/24 maxlen: 24
140.150.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Dec 2024 10:24:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9a:8c:0d:ab:7e:e7:f4:d3:72:73:97:aa:89:ae:53:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b9331fa7be470dc179e16c306e98c6c731a575c
Validity
Not Before: Dec 6 05:58:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5a1a73bdebecc9a959852dd520785c3c5bb1d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:88:1b:6e:a7:8c:36:ca:bb:d1:7b:51:86:45:
a9:43:52:4c:d9:e5:5a:90:d7:3f:04:5f:da:b4:22:
78:76:ee:ca:e9:46:c3:7c:09:9e:18:f5:4b:d8:73:
2a:1c:92:64:87:55:22:10:df:23:f6:1e:23:80:35:
b3:a8:b2:4a:02:3e:b7:53:da:d4:ed:7e:e8:93:43:
d4:87:cd:81:da:68:62:58:62:7f:f5:6e:d9:87:b6:
c4:66:6f:67:1b:6e:5b:53:b5:16:28:4e:e1:74:8a:
51:51:ce:c1:c4:c4:8e:4c:fd:b3:af:a5:aa:70:68:
4b:90:c0:f6:19:d7:9c:21:5b:05:da:a7:9b:ac:2d:
e9:1c:c7:f2:c0:08:47:40:70:ed:34:64:6d:1f:98:
48:22:97:54:aa:70:5e:d4:dd:b9:ba:67:3f:44:90:
ce:b2:65:16:f3:7f:0b:c6:de:36:fe:dd:f2:ee:45:
a3:a7:ab:1c:87:22:74:fd:79:dc:12:58:47:fa:49:
72:f7:59:a3:9d:2c:92:f7:a0:fc:6a:6e:13:bc:ec:
d2:fe:f2:6f:a6:c3:02:34:a5:8c:9e:f9:43:b8:ca:
8d:9b:6b:92:8b:83:26:3c:f5:4a:77:ce:fb:88:be:
2a:72:44:a7:c0:31:72:3d:95:e9:5f:2d:b3:fd:8e:
88:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A1:A7:3B:DE:BE:CC:9A:95:98:52:DD:52:07:85:C3:C5:BB:1D:5D
X509v3 Authority Key Identifier:
keyid:4B:93:31:FA:7B:E4:70:DC:17:9E:16:C3:06:E9:8C:6C:73:1A:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S5Mx-nvkcNwXnhbDBumMbHMaV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/taGnO96-zJqVmFLdUgeFw8W7HV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/5b48a7-a0d7-43f2-a362-8b2b4738b1cc/1/S5Mx-nvkcNwXnhbDBumMbHMaV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.0.0/21
140.150.10.0/24
140.150.12.0/24
140.150.18.0/23
140.150.21.0-140.150.25.255
140.150.28.0-140.150.33.255
140.150.35.0/24
140.150.37.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:53:6c:66:d9:24:9f:3a:01:f9:f7:83:8f:7c:52:32:b3:a8:
29:a5:28:78:7c:b9:ea:40:18:05:fb:45:f2:78:9d:02:aa:bb:
ec:5f:12:0a:4e:41:8c:0f:8b:21:84:84:3e:78:95:c5:e3:54:
8c:de:b4:0d:3e:be:01:c4:89:19:19:fb:2f:6b:2e:ba:fb:25:
c4:ba:43:57:a8:d7:31:56:29:9a:9b:ec:98:3f:5b:78:f8:25:
b6:c3:65:ea:49:e3:c8:ec:99:17:60:fe:b3:a8:ff:67:9e:15:
9f:57:6a:21:1c:72:53:2a:62:4f:3a:09:23:b9:d1:90:cb:e2:
4f:b4:00:ea:bb:ba:f2:1b:69:5f:66:6b:24:55:9a:6c:5b:3a:
81:36:8d:03:0f:f5:2a:2c:d1:f2:21:7a:97:fe:f2:98:6e:93:
aa:38:e2:6a:17:4b:c5:70:58:ef:a9:a1:dd:b8:a0:24:4d:cf:
fd:b7:f5:90:00:cc:5d:5b:27:4f:b9:f1:a7:89:d0:4d:16:96:
71:60:f1:a2:0e:64:ca:ea:e3:3b:95:d4:ff:0e:77:7d:ff:f9:
f8:73:f2:f1:1f:b0:9b:93:e0:cb:11:92:be:d1:bf:a3:b7:6c:
63:cd:7e:87:7f:f1:bd:df:2b:a0:fe:15:13:d8:18:8e:cb:84:
31:20:af:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:28:23 2025 by rpki-client