Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/1-swRA10LAAUoVbOCyZ8c8LbwC_g.roa
File: 1-swRA10LAAUoVbOCyZ8c8LbwC_g.roa (raw, json)
Hash identifier: CGXokdt1sUJ5RSAARolnQf7S39eJQXCCMz9uyYWoWNU=
Subject key identifier: FA:CC:11:03:5D:0B:00:05:28:55:B3:82:C9:9F:1C:F0:B6:F0:0B:F8
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018CC56DF41ABDAF1EABD1F8D19987A5A02B
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/1-swRA10LAAUoVbOCyZ8c8LbwC_g.roa
Signing time: Mon 01 Jan 2024 14:29:26 +0000
ROA not before: Mon 01 Jan 2024 14:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
185.166.196.0/24 maxlen: 24
185.166.197.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.68.0/24 maxlen: 24
46.19.69.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
85.92.108.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.8.98.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
37.220.85.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
37.220.83.0/24 maxlen: 24
37.220.84.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
5.44.47.0/24 maxlen: 24
5.44.46.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 14:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:f4:1a:bd:af:1e:ab:d1:f8:d1:99:87:a5:a0:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 1 14:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=facc11035d0b00052855b382c99f1cf0b6f00bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:36:b6:9f:3d:f8:18:85:24:36:73:b5:bd:8d:
3c:ac:76:98:7e:77:31:90:5b:27:f1:04:86:54:3e:
68:f0:db:db:78:db:b4:46:f9:f3:62:fc:fe:62:0f:
53:ac:f0:91:70:3b:76:cd:c9:6e:a2:de:55:2b:e7:
f0:86:52:01:d2:53:99:c3:cb:e9:9a:bd:b9:95:0c:
e6:7f:7e:21:03:7b:5b:18:f3:f7:f9:fa:a0:a4:7f:
48:09:46:37:6e:86:d8:2e:c9:fc:fc:53:41:0c:d9:
9b:0b:05:64:d7:fb:74:b4:ff:a4:fb:94:24:fd:bf:
24:1e:6a:43:63:cc:10:58:6f:56:cf:b0:2f:30:a8:
ee:22:a0:aa:1c:97:78:94:3a:be:bb:15:13:f2:01:
d5:4e:82:17:2b:66:58:6d:1b:fe:81:2e:12:ec:16:
6e:65:d3:4e:8a:29:91:02:1c:57:59:03:ee:0d:9c:
aa:ae:b0:90:30:09:72:42:f7:cb:10:47:04:2c:05:
ea:31:67:70:5d:92:ac:05:f5:11:b1:b4:b0:7e:2b:
8b:1c:1a:2f:3a:56:62:26:48:bd:b4:51:02:f6:74:
9a:28:33:c3:29:ff:03:4d:b3:8d:f4:4b:5d:13:7a:
c9:75:b1:3d:16:15:b6:5e:74:d3:2f:cf:8f:4f:da:
bc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:CC:11:03:5D:0B:00:05:28:55:B3:82:C9:9F:1C:F0:B6:F0:0B:F8
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/1-swRA10LAAUoVbOCyZ8c8LbwC_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.46.0/23
37.220.80.0-37.220.85.255
45.8.96.0/22
45.89.190.0/24
45.95.234.0/23
46.19.64.0-46.19.69.255
81.200.144.0-81.200.157.255
85.92.108.0/24
85.92.110.0/23
89.191.226.0/24
92.118.113.0-92.118.115.255
94.198.216.0-94.198.221.255
185.166.196.0/23
194.31.173.0-194.31.175.255
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
45:7d:f8:4d:ce:71:eb:49:1d:fc:c6:1c:2b:c9:2f:c4:0c:32:
61:99:2b:e0:72:17:4b:e8:dc:a1:5f:85:67:40:fb:5c:75:1b:
34:4d:73:0b:73:ca:7f:8e:33:03:90:e8:1b:77:42:e3:5f:a9:
c7:5b:52:df:21:87:c7:2c:49:c7:f5:27:ed:57:ec:df:d9:5a:
a0:b8:35:71:ca:36:f9:c7:16:3a:5a:eb:db:4a:5a:f9:68:bf:
e1:8f:60:9c:9d:6c:0d:8e:5d:27:a8:47:e9:c2:1f:78:59:10:
54:fa:a6:dc:f9:48:7d:cd:e4:82:f7:e6:b8:5b:50:21:87:5c:
b4:b8:75:6b:6a:91:bc:b3:d8:36:17:49:28:60:12:4f:d5:8b:
08:60:46:23:c8:cc:66:5e:42:c4:3a:77:14:30:4e:0f:b6:55:
a7:55:f9:87:f5:74:9c:0d:58:2e:06:2c:e2:36:b5:cd:37:c0:
ce:dd:b9:1a:60:bf:ab:15:2b:0d:14:7f:df:8c:b5:06:ae:27:
7b:a9:fe:3a:04:e7:cb:08:3d:83:e2:21:97:17:42:15:93:9a:
20:03:25:46:5c:f0:13:7b:88:05:46:11:6a:17:b0:c6:91:fe:
fb:89:e5:80:a5:53:a9:5a:ea:e3:21:db:59:19:f3:51:cf:c5:
3f:82:9d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 2 17:38:55 2024 by rpki-client on console-fra.rpki-client.org