Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/vBHthYp9gfXBsEmoDr6uMhIlmV0.roa
File: vBHthYp9gfXBsEmoDr6uMhIlmV0.roa (raw, json)
Hash identifier: y8xFVXxLnjd8hBLxgzXS7ml7zuT6C6zM3ZkvwkxS/5w=
Subject key identifier: BC:11:ED:85:8A:7D:81:F5:C1:B0:49:A8:0E:BE:AE:32:12:25:99:5D
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018D6A4E5AFFB256D399F07780BD7FC162DD
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/vBHthYp9gfXBsEmoDr6uMhIlmV0.roa
Signing time: Fri 02 Feb 2024 14:52:16 +0000
ROA not before: Fri 02 Feb 2024 14:52:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 5.44.46.0/24 maxlen: 24
5.44.47.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
37.220.81.0/24 maxlen: 24
37.220.82.0/24 maxlen: 24
37.220.83.0/24 maxlen: 24
37.220.84.0/24 maxlen: 24
37.220.85.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
45.8.98.0/24 maxlen: 24
45.8.99.0/24 maxlen: 24
45.89.190.0/24 maxlen: 24
45.95.234.0/24 maxlen: 24
45.95.235.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.68.0/24 maxlen: 24
46.19.69.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
81.200.154.0/24 maxlen: 24
81.200.155.0/24 maxlen: 24
81.200.156.0/24 maxlen: 24
81.200.157.0/24 maxlen: 24
81.200.158.0/24 maxlen: 24
85.92.108.0/24 maxlen: 24
85.92.110.0/24 maxlen: 24
85.92.111.0/24 maxlen: 24
89.191.226.0/24 maxlen: 24
92.118.113.0/24 maxlen: 24
92.118.114.0/24 maxlen: 24
92.118.115.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.220.0/24 maxlen: 24
94.198.221.0/24 maxlen: 24
185.166.196.0/24 maxlen: 24
185.166.197.0/24 maxlen: 24
185.247.185.0/24 maxlen: 24
194.31.173.0/24 maxlen: 24
194.31.174.0/24 maxlen: 24
194.31.175.0/24 maxlen: 24
195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 06:54:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6a:4e:5a:ff:b2:56:d3:99:f0:77:80:bd:7f:c1:62:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Feb 2 14:52:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc11ed858a7d81f5c1b049a80ebeae321225995d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:84:1a:d8:b9:71:95:69:7c:d6:13:1c:56:8f:
96:0f:bd:b9:8d:21:56:55:c2:5e:86:aa:63:f7:05:
53:8d:63:5f:d6:33:dc:f6:19:df:fc:92:08:fd:c6:
49:af:db:9c:99:19:2f:7d:86:e3:5d:65:ce:1c:0c:
6e:f0:a1:6a:99:ad:ca:84:fc:5c:b7:31:d1:e9:ed:
f3:05:3f:47:66:e9:af:70:3a:d0:93:08:9e:3c:d3:
1a:df:05:da:87:e2:fe:4a:3b:18:b6:bb:33:c0:8e:
4f:f6:4f:80:08:96:72:d8:af:1d:4c:fb:cf:cd:db:
23:59:23:cc:d0:45:2a:06:63:90:cb:a2:1f:1a:c6:
40:71:9f:9c:e2:5d:03:d4:13:e8:b3:3e:f6:fa:cf:
9c:fa:33:4b:fc:72:af:1b:b6:f6:7d:23:b1:99:7c:
17:03:21:c4:78:c4:09:53:13:2b:8c:97:7d:f0:5e:
1c:0c:3e:1a:3d:0b:16:65:a2:f3:a5:10:63:d8:c7:
00:e7:f8:f9:d9:de:e6:81:f9:1f:9a:e8:fb:e7:03:
d2:aa:96:57:14:9d:84:9c:71:d9:8d:78:09:ff:d9:
5a:9c:15:c6:d6:6d:6e:b1:9a:a5:1b:f8:fa:82:3b:
0b:55:38:1e:7e:8a:cf:26:fa:f2:42:0e:6d:99:e0:
70:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:11:ED:85:8A:7D:81:F5:C1:B0:49:A8:0E:BE:AE:32:12:25:99:5D
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/vBHthYp9gfXBsEmoDr6uMhIlmV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.46.0/23
37.220.80.0-37.220.85.255
45.8.96.0/22
45.89.190.0/24
45.95.234.0/23
46.19.64.0-46.19.69.255
81.200.144.0-81.200.158.255
85.92.108.0/24
85.92.110.0/23
89.191.226.0/24
92.118.113.0-92.118.115.255
94.198.216.0-94.198.221.255
185.166.196.0/23
185.247.185.0/24
194.31.173.0-194.31.175.255
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:40:96:24:37:12:47:9d:45:1e:ce:29:85:88:25:25:83:b7:
cf:2f:38:e4:90:ff:93:f6:75:2f:3e:86:50:6e:b7:86:6d:cb:
19:f2:0e:dd:d2:79:fc:ef:85:d4:e9:d7:0d:4e:37:cd:92:ad:
66:77:4e:3c:dc:71:ad:f2:f9:e9:35:0b:16:5a:b7:02:47:96:
35:70:dc:5a:72:28:1f:81:e1:7b:15:fc:6b:52:3c:49:08:b8:
1b:55:ea:aa:b2:f5:4c:2b:d0:2a:79:77:d6:24:7e:7c:f4:a1:
74:b9:cf:54:52:e4:14:4b:3b:93:ff:9c:17:3b:60:ca:45:7f:
02:75:28:43:ef:c6:e8:a9:9e:ca:1c:1e:ce:fd:40:d7:47:04:
4e:f1:b6:45:c7:25:70:fe:23:ef:82:b9:57:78:d5:19:9d:eb:
ec:b9:d9:b2:eb:5b:45:c3:50:da:67:8a:86:47:e3:a5:56:60:
56:cf:0b:61:ac:1f:82:20:25:37:86:2c:f2:2e:69:30:c9:ec:
d4:ce:0f:31:84:4b:37:4c:9c:2f:36:ed:79:82:25:c6:d0:e7:
06:3c:e9:18:fc:d6:c2:24:f5:69:2d:87:91:a9:e8:2e:b5:ce:
b9:7c:b3:9b:f4:60:ff:13:81:fd:49:fd:ac:77:c2:eb:1d:d2:
0e:ea:c6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 11:17:14 2024 by rpki-client on console-ams.rpki-client.org