Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/vTHTRYKY-l120Gd3RUMTEUsCa1I.roa
File: vTHTRYKY-l120Gd3RUMTEUsCa1I.roa (raw, json)
Hash identifier: +KI/n7G/vJYgLEPi9+RYnz0kpy7vMxVxf2wYbXy/b0A=
Subject key identifier: BD:31:D3:45:82:98:FA:5D:76:D0:67:77:45:43:13:11:4B:02:6B:52
Certificate issuer: /CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Certificate serial: 018A4B1D4744B25A1D3D9686DF303ECCC00D
Authority key identifier: B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/vTHTRYKY-l120Gd3RUMTEUsCa1I.roa
Signing time: Thu 31 Aug 2023 10:22:04 +0000
ROA not before: Thu 31 Aug 2023 10:22:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199081
IP address blocks: 45.66.187.0/24 maxlen: 24
185.70.78.0/24 maxlen: 24
185.70.78.0/23 maxlen: 23
185.70.77.0/24 maxlen: 24
185.70.76.0/24 maxlen: 24
185.70.76.0/22 maxlen: 22
45.66.185.0/24 maxlen: 24
45.66.186.0/24 maxlen: 24
185.205.96.0/24 maxlen: 24
185.205.96.0/22 maxlen: 22
185.205.97.0/24 maxlen: 24
185.205.98.0/24 maxlen: 24
185.205.99.0/24 maxlen: 24
185.70.79.0/24 maxlen: 24
185.168.38.0/24 maxlen: 24
185.168.36.0/22 maxlen: 22
185.168.38.0/23 maxlen: 23
185.168.39.0/24 maxlen: 24
109.68.144.0/21 maxlen: 21
109.68.144.0/24 maxlen: 24
109.68.145.0/24 maxlen: 24
109.68.147.0/24 maxlen: 24
109.68.151.0/24 maxlen: 24
109.68.149.0/24 maxlen: 24
109.68.150.0/24 maxlen: 24
109.68.148.0/24 maxlen: 24
91.193.62.0/24 maxlen: 24
91.193.63.0/24 maxlen: 24
91.193.60.0/22 maxlen: 22
91.193.60.0/24 maxlen: 24
91.193.61.0/24 maxlen: 24
5.172.192.0/20 maxlen: 20
5.172.192.0/24 maxlen: 24
5.172.192.0/22 maxlen: 22
5.172.198.0/24 maxlen: 24
5.172.199.0/24 maxlen: 24
5.172.196.0/22 maxlen: 22
5.172.196.0/24 maxlen: 24
5.172.197.0/24 maxlen: 24
5.172.195.0/24 maxlen: 24
5.172.193.0/24 maxlen: 24
5.172.194.0/24 maxlen: 24
5.172.205.0/24 maxlen: 24
5.172.204.0/22 maxlen: 22
5.172.206.0/24 maxlen: 24
5.172.203.0/24 maxlen: 24
5.172.204.0/24 maxlen: 24
5.172.202.0/24 maxlen: 24
5.172.200.0/22 maxlen: 22
5.172.201.0/24 maxlen: 24
178.21.175.0/24 maxlen: 24
178.21.173.0/24 maxlen: 24
178.21.174.0/24 maxlen: 24
178.21.172.0/24 maxlen: 24
178.21.172.0/22 maxlen: 22
178.21.170.0/24 maxlen: 24
178.21.171.0/24 maxlen: 24
178.21.168.0/24 maxlen: 24
178.21.169.0/24 maxlen: 24
178.21.168.0/22 maxlen: 22
178.21.168.0/21 maxlen: 21
185.118.125.0/24 maxlen: 24
2a02:4fc0:4000::/48 maxlen: 48
2a02:4fc0:4001::/48 maxlen: 48
2a02:4fc0:4100::/40 maxlen: 40
2a02:4fc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:1d:47:44:b2:5a:1d:3d:96:86:df:30:3e:cc:c0:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3c51b0c063cfc16943fc9a47e2c805990f6eaae
Validity
Not Before: Aug 31 10:22:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd31d3458298fa5d76d06777454313114b026b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:ff:fe:3e:0b:90:fd:35:53:4e:3d:fb:e1:
e8:9b:e0:65:f5:0e:ca:26:98:7d:a9:b1:e3:48:e2:
6e:7d:4a:99:aa:7a:99:29:15:81:d1:e5:09:cb:bc:
5a:64:23:b3:84:a1:23:66:20:fb:56:4a:91:4b:f1:
a8:c1:3b:a6:83:53:cb:e2:f6:be:b0:f7:4d:27:47:
84:0e:c0:f8:28:33:92:bc:91:55:b9:19:51:e0:20:
2f:16:fa:da:2f:d8:07:ef:40:51:07:41:7a:d2:15:
2b:ba:0a:fe:eb:97:ac:62:80:0b:bb:6d:0b:be:41:
b7:b0:72:55:d6:bb:8f:f8:86:c2:4b:64:9b:5c:37:
65:0f:13:f3:84:4a:af:9b:75:bc:47:96:68:7b:96:
4d:88:af:1d:55:5b:2b:f9:74:e9:02:a9:5d:96:66:
55:43:1c:81:14:44:ea:ce:d6:56:55:13:cb:34:b2:
05:15:3c:24:6f:35:3f:95:db:77:5a:23:9a:62:c4:
7f:cd:51:2a:16:3b:e6:f4:5d:52:bf:2e:67:06:1c:
90:de:cd:49:b7:42:ce:89:1c:b7:43:fe:1c:89:62:
84:fd:81:e8:b4:10:01:f0:d4:ef:ea:8e:2c:d1:77:
b7:8c:3e:75:5d:dd:13:9d:c1:0d:98:22:f0:ea:27:
3b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:31:D3:45:82:98:FA:5D:76:D0:67:77:45:43:13:11:4B:02:6B:52
X509v3 Authority Key Identifier:
keyid:B3:C5:1B:0C:06:3C:FC:16:94:3F:C9:A4:7E:2C:80:59:90:F6:EA:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8UbDAY8_BaUP8mkfiyAWZD26q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/vTHTRYKY-l120Gd3RUMTEUsCa1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/587792-bae9-4183-a4b1-ff5f1ad69266/1/s8UbDAY8_BaUP8mkfiyAWZD26q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.192.0/20
45.66.185.0-45.66.187.255
91.193.60.0/22
109.68.144.0/21
178.21.168.0/21
185.70.76.0/22
185.118.125.0/24
185.168.36.0/22
185.205.96.0/22
IPv6:
2a02:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
ab:9d:7b:02:77:5c:14:cd:4c:6f:9f:55:5f:f0:f6:ab:e0:4a:
26:f6:08:ec:cb:25:4b:a2:be:ae:a6:9b:79:47:5b:ba:11:ef:
be:04:3e:4d:56:52:53:29:f5:ec:5a:fb:38:78:15:3c:2f:ea:
15:71:ba:7b:09:0d:f7:3b:e4:91:21:88:18:f2:66:15:a4:1e:
11:02:2d:01:2d:9c:fd:87:cc:a2:1f:59:a9:45:b1:56:56:95:
b8:f1:4d:c1:72:ad:4a:51:00:bd:44:b9:74:c2:fe:45:b6:5c:
ef:82:28:d2:2f:8d:93:fb:c2:84:a6:aa:1c:71:37:77:1e:28:
06:03:c1:11:0b:c6:d3:4b:40:c2:60:f6:2b:11:4f:ef:0f:0f:
7b:94:8b:50:a9:3c:bc:72:4e:7d:03:02:04:71:48:32:4b:b7:
39:92:aa:ed:ea:c6:9c:78:27:10:40:8d:32:80:1a:f3:0c:25:
57:39:96:3e:83:86:a5:2c:4f:9c:31:6e:ab:ce:07:17:36:43:
d8:d7:76:cb:ac:e7:6b:8c:56:a3:ec:95:0b:0b:1b:4c:90:f7:
00:51:d7:6e:77:d1:82:d6:6b:6b:93:ac:23:82:ec:e9:1b:37:
5b:07:16:69:2a:d5:48:f4:62:56:2e:ae:22:34:68:62:60:4a:
f6:d6:79:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:42 2024 by rpki-client on console-fra.rpki-client.org