Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/HtT8CLOIhwAPUEtVG5AdrJJ17ZQ.roa
File: HtT8CLOIhwAPUEtVG5AdrJJ17ZQ.roa (raw, json)
Hash identifier: 3ndz7BZjU8N5ZY6EnM8q7yVXXvN9QmHkp1jaTq+TG14=
Subject key identifier: 1E:D4:FC:08:B3:88:87:00:0F:50:4B:55:1B:90:1D:AC:92:75:ED:94
Certificate issuer: /CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Certificate serial: 01919E64F6D21AF2BDF5E8DB99B7A2A95064
Authority key identifier: 59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/HtT8CLOIhwAPUEtVG5AdrJJ17ZQ.roa
Signing time: Thu 29 Aug 2024 13:48:22 +0000
ROA not before: Thu 29 Aug 2024 13:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41897
IP address blocks: 45.158.16.0/22 maxlen: 22
46.40.0.0/18 maxlen: 18
46.40.1.0/24 maxlen: 24
46.40.6.0/24 maxlen: 24
46.40.8.0/22 maxlen: 22
46.40.12.0/23 maxlen: 23
46.40.15.0/24 maxlen: 24
46.40.16.0/21 maxlen: 21
46.40.26.0/24 maxlen: 24
46.40.27.0/24 maxlen: 24
46.40.29.0/24 maxlen: 24
46.40.30.0/23 maxlen: 23
46.40.30.0/24 maxlen: 24
46.40.31.0/24 maxlen: 24
46.40.32.0/24 maxlen: 24
46.40.33.0/24 maxlen: 24
46.40.34.0/24 maxlen: 24
46.40.35.0/24 maxlen: 24
46.40.37.0/24 maxlen: 24
46.40.40.0/21 maxlen: 21
46.40.40.0/24 maxlen: 24
46.40.41.0/24 maxlen: 24
46.40.42.0/24 maxlen: 24
46.40.43.0/24 maxlen: 24
46.40.44.0/23 maxlen: 23
46.40.46.0/23 maxlen: 23
46.40.48.0/21 maxlen: 21
46.40.56.0/22 maxlen: 22
46.40.60.0/23 maxlen: 23
46.40.62.0/24 maxlen: 24
46.40.63.0/24 maxlen: 24
46.251.8.0/22 maxlen: 22
80.245.96.0/22 maxlen: 22
81.24.240.0/21 maxlen: 21
81.24.247.0/24 maxlen: 24
85.222.176.0/20 maxlen: 20
85.222.176.0/21 maxlen: 21
85.222.176.0/24 maxlen: 24
85.222.177.0/24 maxlen: 24
85.222.178.0/24 maxlen: 24
85.222.179.0/24 maxlen: 24
85.222.180.0/22 maxlen: 22
89.147.80.0/20 maxlen: 20
89.147.80.0/22 maxlen: 22
89.147.80.0/24 maxlen: 24
89.147.81.0/24 maxlen: 24
89.147.82.0/24 maxlen: 24
89.147.83.0/24 maxlen: 24
89.147.84.0/22 maxlen: 22
89.147.88.0/24 maxlen: 24
89.147.89.0/24 maxlen: 24
89.147.92.0/24 maxlen: 24
89.147.93.0/24 maxlen: 24
89.147.94.0/24 maxlen: 24
91.102.224.0/21 maxlen: 21
91.102.229.0/24 maxlen: 24
91.147.240.0/21 maxlen: 21
91.147.244.0/22 maxlen: 22
94.248.184.0/21 maxlen: 21
94.248.232.0/21 maxlen: 21
94.248.232.0/22 maxlen: 22
94.248.232.0/24 maxlen: 24
94.248.233.0/24 maxlen: 24
94.248.234.0/24 maxlen: 24
94.248.235.0/24 maxlen: 24
94.248.236.0/24 maxlen: 24
94.248.237.0/24 maxlen: 24
94.248.238.0/24 maxlen: 24
94.248.239.0/24 maxlen: 24
95.85.128.0/18 maxlen: 18
95.85.128.0/22 maxlen: 22
95.85.135.0/24 maxlen: 24
95.85.136.0/22 maxlen: 22
95.85.144.0/21 maxlen: 21
95.85.152.0/23 maxlen: 23
95.85.152.0/24 maxlen: 24
95.85.153.0/24 maxlen: 24
95.85.154.0/23 maxlen: 23
95.85.154.0/24 maxlen: 24
95.85.155.0/24 maxlen: 24
95.85.156.0/22 maxlen: 22
95.85.172.0/24 maxlen: 24
95.85.173.0/24 maxlen: 24
95.85.176.0/22 maxlen: 22
95.85.184.0/23 maxlen: 23
95.85.186.0/23 maxlen: 23
178.20.200.0/24 maxlen: 24
178.20.201.0/24 maxlen: 24
178.20.202.0/23 maxlen: 23
185.6.188.0/22 maxlen: 22
185.6.188.0/24 maxlen: 24
185.6.189.0/24 maxlen: 24
185.6.190.0/24 maxlen: 24
185.6.191.0/24 maxlen: 24
185.10.204.0/22 maxlen: 22
185.10.204.0/24 maxlen: 24
185.37.168.0/22 maxlen: 22
185.37.169.0/24 maxlen: 24
185.37.170.0/24 maxlen: 24
185.141.196.0/22 maxlen: 22
185.141.196.0/23 maxlen: 23
185.141.198.0/24 maxlen: 24
185.141.199.0/24 maxlen: 24
185.156.152.0/22 maxlen: 22
185.169.248.0/22 maxlen: 22
185.169.248.0/24 maxlen: 24
185.169.249.0/24 maxlen: 24
185.169.250.0/23 maxlen: 23
185.231.128.0/22 maxlen: 22
195.192.244.0/22 maxlen: 22
217.17.96.0/20 maxlen: 24
217.17.96.0/24 maxlen: 24
217.17.97.0/24 maxlen: 24
217.17.98.0/24 maxlen: 24
217.17.100.0/24 maxlen: 24
217.17.107.0/24 maxlen: 24
217.17.108.0/24 maxlen: 24
217.17.110.0/24 maxlen: 24
217.17.111.0/24 maxlen: 24
2a00:ad00::/29 maxlen: 29
2a00:ad00:2010::/44 maxlen: 44
2a00:ad03::/32 maxlen: 32
2a00:ad07:3000::/36 maxlen: 36
2a04:f040::/29 maxlen: 29
2a0c:6300::/30 maxlen: 30
2a0f:7bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 30 Aug 2024 11:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9e:64:f6:d2:1a:f2:bd:f5:e8:db:99:b7:a2:a9:50:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda75f8110743d250c3068a356ce6acf1c4fe2
Validity
Not Before: Aug 29 13:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ed4fc08b38887000f504b551b901dac9275ed94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3f:14:3d:ee:40:cb:53:01:bc:59:ca:05:37:
42:ee:d3:2a:a9:aa:d3:8d:16:ce:ee:f6:76:7b:24:
e1:02:5b:b1:10:58:42:13:ce:c2:95:2f:25:bb:8d:
6e:93:87:11:ec:44:4b:3e:af:ba:25:ec:47:24:f7:
2e:ae:5d:31:c5:a9:c8:fc:2b:c4:8d:0c:13:61:45:
6b:f9:d9:e6:a3:6b:5f:61:6f:1b:c8:67:eb:9c:0b:
b7:51:27:43:3b:72:b1:22:84:cc:61:ae:79:b3:25:
b2:75:ed:81:f5:88:41:6e:53:84:bf:76:cd:c8:1a:
c4:1a:4e:f1:66:e1:b5:13:cc:37:c7:a8:e3:d6:ac:
37:46:84:e9:70:c2:a5:25:33:94:f4:1f:67:a1:7f:
ca:de:c4:96:41:72:fd:4a:42:b4:70:40:a6:22:17:
87:3b:c4:02:b0:e9:56:92:60:50:03:6e:02:1f:1e:
12:f4:dd:52:3c:eb:8c:64:1d:fa:22:f0:60:68:20:
dd:66:32:30:77:0c:37:3d:14:61:d9:b9:79:ab:4f:
f9:23:4d:dd:5c:72:a7:58:59:9d:39:9a:7b:eb:5f:
3d:2f:2a:aa:10:2c:b5:7b:c1:f6:f7:b4:8f:b4:64:
86:16:4f:1c:3e:c4:c1:fc:a5:35:05:c3:f8:5d:bc:
ee:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D4:FC:08:B3:88:87:00:0F:50:4B:55:1B:90:1D:AC:92:75:ED:94
X509v3 Authority Key Identifier:
keyid:59:DD:A7:5F:81:10:74:3D:25:0C:30:68:A3:56:CE:6A:CF:1C:4F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2nX4EQdD0lDDBoo1bOas8cT-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/HtT8CLOIhwAPUEtVG5AdrJJ17ZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ebf3f7-e3ab-4f8c-86e8-7087e3fe2a5d/1/Wd2nX4EQdD0lDDBoo1bOas8cT-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.16.0/22
46.40.0.0/18
46.251.8.0/22
80.245.96.0/22
81.24.240.0/21
85.222.176.0/20
89.147.80.0/20
91.102.224.0/21
91.147.240.0/21
94.248.184.0/21
94.248.232.0/21
95.85.128.0/18
178.20.200.0/22
185.6.188.0/22
185.10.204.0/22
185.37.168.0/22
185.141.196.0/22
185.156.152.0/22
185.169.248.0/22
185.231.128.0/22
195.192.244.0/22
217.17.96.0/20
IPv6:
2a00:ad00::/29
2a04:f040::/29
2a0c:6300::/30
2a0f:7bc0::/29
Signature Algorithm: sha256WithRSAEncryption
6b:2b:07:df:6b:7a:ab:79:4e:4a:cb:78:98:0e:f3:ef:85:af:
a6:67:be:2a:27:f0:ee:50:dc:18:0a:26:44:2a:05:4e:5a:24:
2b:db:05:ef:69:06:42:61:b6:5e:f1:3a:a0:d3:81:a3:a1:71:
8e:45:92:0b:09:f8:a5:03:ce:98:df:39:b7:2b:97:fa:9e:c9:
98:5c:65:a8:1f:db:43:91:a7:61:2a:56:0d:c5:db:b7:20:5c:
a0:e1:b8:2e:fb:57:d1:24:99:dd:d4:51:42:ee:0d:72:dc:80:
d9:c4:6b:c1:fb:77:3e:b8:4e:e4:08:2a:c7:3a:fd:b1:d0:78:
d8:1b:b6:bd:74:30:9b:0f:af:9f:fb:70:71:f7:4f:02:93:f1:
cb:24:f4:fd:32:75:a6:62:9d:05:99:bd:c8:3e:04:c6:d2:44:
9c:b3:e3:ff:2d:f1:7c:6c:ee:cb:6a:58:fe:55:14:9d:4f:fe:
d8:e1:8a:50:af:83:85:43:eb:98:83:a2:36:4c:04:f6:86:6e:
55:d8:41:d9:a9:44:27:1f:80:09:6b:fd:a4:d0:f1:7b:9e:84:
0b:bb:63:1e:ab:38:42:b0:4c:94:7f:39:da:cd:54:92:c7:a6:
af:2e:28:c4:8e:89:d6:18:52:a7:c0:9c:1b:5f:10:f9:98:ce:
32:a7:36:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 13:00:13 2024 by rpki-client on console-ams.rpki-client.org