Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jEZuu66EAsJUl6zKHQGp8E_ek90.roa
File: jEZuu66EAsJUl6zKHQGp8E_ek90.roa (raw, json)
Hash identifier: yzLbJ8U8Mr210chtQruY8rrvJDrk19MAND6yo2Q73ZQ=
Subject key identifier: 8C:46:6E:BB:AE:84:02:C2:54:97:AC:CA:1D:01:A9:F0:4F:DE:93:DD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018FDD06A7E9B5DE9D7E5EF3CE65C2D91B4B
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jEZuu66EAsJUl6zKHQGp8E_ek90.roa
Signing time: Mon 03 Jun 2024 07:35:51 +0000
ROA not before: Mon 03 Jun 2024 07:35:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212552
IP address blocks: 45.146.241.0/24 maxlen: 24
46.249.98.0/23 maxlen: 24
46.249.100.0/22 maxlen: 24
46.249.111.0/24 maxlen: 24
82.115.13.0/24 maxlen: 24
82.115.16.0/24 maxlen: 24
82.115.17.0/24 maxlen: 24
82.115.18.0/24 maxlen: 24
82.115.19.0/24 maxlen: 24
82.115.20.0/23 maxlen: 24
82.115.24.0/22 maxlen: 24
89.251.8.0/23 maxlen: 24
103.75.196.0/22 maxlen: 24
185.80.196.0/24 maxlen: 24
185.215.244.0/23 maxlen: 24
193.36.84.0/23 maxlen: 24
202.133.88.0/24 maxlen: 24
202.133.89.0/24 maxlen: 24
202.133.90.0/24 maxlen: 24
202.133.91.0/24 maxlen: 24
212.90.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 09:12:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:06:a7:e9:b5:de:9d:7e:5e:f3:ce:65:c2:d9:1b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jun 3 07:35:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c466ebbae8402c25497acca1d01a9f04fde93dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6d:d5:22:3b:a1:a2:23:3f:79:88:9c:c4:21:
06:c3:1c:e4:5a:06:86:72:10:b0:27:e0:76:8e:2d:
c1:dc:4e:3f:a3:2f:53:84:8b:72:bc:38:f1:36:ef:
14:65:c4:6e:44:cf:44:8d:33:a6:8c:11:5a:a6:24:
78:06:f2:cd:d3:10:1a:36:71:40:d0:d6:e9:00:fd:
74:a1:a6:a1:09:94:46:73:92:c0:1e:1d:59:3f:d3:
89:b0:11:68:5d:3c:a2:36:7f:aa:13:2d:bb:0c:04:
0f:0d:3a:7d:67:a0:be:c8:2d:00:34:bb:29:2b:74:
fb:ef:e8:81:71:83:9f:aa:66:59:af:87:54:7f:ca:
81:ec:df:3c:90:4c:da:85:05:41:60:93:fc:ba:77:
e8:01:d4:eb:50:cd:18:eb:91:cf:6e:19:14:60:e2:
e8:9d:a8:ce:66:5c:41:1c:54:05:9d:28:3b:ec:6e:
3f:c3:4b:16:cb:de:3d:05:30:ec:bc:8a:b1:f8:d6:
42:9a:d2:6e:b3:14:2e:0a:0e:38:af:2a:b6:2d:3a:
d0:52:a9:bb:c2:72:cc:25:cb:ce:c9:1e:86:55:23:
d9:0e:f5:fe:50:ac:21:40:93:b6:fe:c0:19:2f:72:
c9:9b:c9:76:a6:45:10:a4:e7:42:aa:9a:09:04:8b:
ae:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:46:6E:BB:AE:84:02:C2:54:97:AC:CA:1D:01:A9:F0:4F:DE:93:DD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/jEZuu66EAsJUl6zKHQGp8E_ek90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.241.0/24
46.249.98.0-46.249.103.255
46.249.111.0/24
82.115.13.0/24
82.115.16.0-82.115.21.255
82.115.24.0/22
89.251.8.0/23
103.75.196.0/22
185.80.196.0/24
185.215.244.0/23
193.36.84.0/23
202.133.88.0/22
212.90.102.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:4a:2a:ba:e5:bb:22:19:96:48:2e:48:f1:7a:8c:1a:85:84:
0d:5f:57:80:da:7c:48:03:d2:61:fb:46:5f:d8:f9:ba:93:05:
fb:0f:30:6d:4c:cd:ee:d5:57:37:94:90:bb:32:2e:f0:fa:4f:
ce:5e:9e:6d:2f:a3:34:a5:5b:82:9f:5b:d0:50:e0:07:10:bd:
bd:26:66:37:70:08:ff:9d:79:18:97:00:d3:59:10:2a:10:46:
b4:19:70:4e:fb:86:cc:5d:e9:ea:80:5a:3f:36:53:9a:7e:a8:
45:81:b9:55:e5:e1:7a:3b:a1:e4:a3:16:a7:7a:3c:26:6e:ed:
73:c9:a0:e8:a0:7e:09:87:a1:46:9c:72:c8:7e:23:95:33:4e:
e1:08:2e:d8:c7:66:c9:6a:ae:c8:23:41:91:5c:b0:f5:e5:21:
d1:da:5a:34:a8:99:b2:cd:bd:94:0b:0e:b0:73:b0:b7:b0:a0:
40:ef:0b:d5:15:91:38:26:01:07:40:94:81:52:fe:b3:6b:7a:
66:65:bd:c2:4d:2c:88:00:75:3c:94:11:ac:64:cd:55:75:85:
d5:c0:1e:56:ad:74:00:3f:ab:dc:4b:b1:71:30:0f:b0:c0:51:
29:85:b0:49:4f:b0:ec:4a:69:df:8c:87:08:de:a9:32:61:29:
00:cf:5a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org