Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/0cShznKuoBlQJje3A5znc0HxAJk.roa
File: 0cShznKuoBlQJje3A5znc0HxAJk.roa (raw, json)
Hash identifier: /RUeHAxU21a0EzFZV9T/FwqZ5nPWaGjiHbwhDlHyCj4=
Subject key identifier: D1:C4:A1:CE:72:AE:A0:19:50:26:37:B7:03:9C:E7:73:41:F1:00:99
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018F63E4E71468D0C050EDA25C9B23196C79
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/0cShznKuoBlQJje3A5znc0HxAJk.roa
Signing time: Fri 10 May 2024 19:04:56 +0000
ROA not before: Fri 10 May 2024 19:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.80.221.0/24 maxlen: 24
45.80.222.0/24 maxlen: 24
45.80.223.0/24 maxlen: 24
45.130.145.0/24 maxlen: 24
45.130.148.0/24 maxlen: 24
45.130.149.0/24 maxlen: 24
194.62.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 16:10:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:63:e4:e7:14:68:d0:c0:50:ed:a2:5c:9b:23:19:6c:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 10 19:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1c4a1ce72aea019502637b7039ce77341f10099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f0:1c:2a:4a:ed:5c:91:bf:54:5d:96:9c:80:
43:1b:54:6e:0e:10:17:3f:9e:f9:28:3b:e0:57:a3:
a4:eb:a8:e9:18:7d:ad:e6:88:a1:8f:63:19:4f:d2:
66:05:91:78:ea:d0:7c:62:df:a9:5b:61:81:e5:46:
30:a9:e1:78:00:be:5a:0d:31:15:46:43:00:b9:6c:
8f:f7:1a:0c:d2:5b:b0:93:ca:23:4a:5f:cd:e0:d9:
7d:fb:59:b0:eb:b9:de:0a:27:58:bb:b8:86:51:a1:
83:45:11:36:28:55:87:e7:3c:9d:af:3c:48:29:d8:
df:e7:62:ac:34:2a:5f:6e:d2:a8:61:6e:8a:e0:a2:
50:24:81:fe:a9:29:7a:b1:f9:f1:d0:d2:07:2a:f7:
f0:fd:9c:05:22:3a:c3:84:d2:63:59:80:5c:b5:a3:
ed:ae:7d:16:82:59:e0:c2:94:aa:15:09:5c:9d:9c:
a2:5d:01:42:8b:2a:32:97:3d:cb:86:0f:09:12:94:
28:63:5b:ef:90:8e:68:fa:21:1e:62:93:c1:4c:51:
50:1a:24:6b:54:aa:8b:91:73:41:0f:ef:de:de:f0:
f7:9b:3d:5c:13:aa:5e:41:c7:7f:90:46:f2:f1:ac:
9a:85:8e:73:29:3c:17:cf:da:2e:fc:7c:99:15:c7:
08:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C4:A1:CE:72:AE:A0:19:50:26:37:B7:03:9C:E7:73:41:F1:00:99
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/0cShznKuoBlQJje3A5znc0HxAJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.221.0-45.80.223.255
45.130.145.0/24
45.130.148.0/23
194.62.18.0/24
Signature Algorithm: sha256WithRSAEncryption
55:6c:56:3e:1c:bc:47:1d:8f:84:f5:f0:ba:a8:7b:aa:94:23:
14:50:d1:95:53:0a:42:83:4d:0b:9f:bf:ae:f2:95:75:18:62:
59:9b:5f:cd:56:21:fa:64:f1:7c:79:6e:fa:05:22:90:f0:57:
95:88:ae:62:16:46:75:a6:e2:6d:14:7f:d6:ca:d6:e6:e2:15:
d1:99:3f:6b:b3:d6:79:00:37:45:b8:24:85:5b:3d:c7:e2:d0:
6a:f9:4f:16:6f:8a:05:9e:32:92:92:c4:08:b7:f0:15:77:a8:
5d:39:df:a5:95:50:a4:7c:ff:2b:ad:41:e0:7f:d7:68:ca:8f:
13:a5:15:58:72:87:67:00:11:fc:53:40:71:6c:a3:ab:7e:95:
e0:97:3f:71:6b:b9:df:f3:53:b4:e2:b7:21:a2:a9:71:ca:f6:
fd:85:a7:36:64:d6:ae:c5:5b:07:41:69:8a:64:a4:8c:54:73:
a9:a4:57:ab:63:d7:ac:b0:a8:dd:7f:c8:a3:1d:c4:74:71:70:
21:ca:9a:d8:f4:bd:67:d7:85:a6:77:bd:5f:ff:e3:be:6a:90:
18:91:2b:eb:d3:1d:9e:88:a4:09:ed:c8:8f:1b:dd:36:12:0c:
58:fe:30:08:b1:4e:df:1d:94:8c:07:c8:4b:21:42:b5:8b:d4:
cf:30:0d:76
-----BEGIN CERTIFICATE-----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Generated at Wed May 22 18:10:35 2024 by rpki-client on console-fra.rpki-client.org