Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GxRLPmNtnD0nR4v7cBm6BLURDdU.roa
File: GxRLPmNtnD0nR4v7cBm6BLURDdU.roa (raw, json)
Hash identifier: GAXsYcEbc1VPWaIIcskDMcga8bLiHZIIqPJ9x9zfLsM=
Subject key identifier: 1B:14:4B:3E:63:6D:9C:3D:27:47:8B:FB:70:19:BA:04:B5:11:0D:D5
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0190C5A4DF02FDCAE7CAB23B934AD167CDFE
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GxRLPmNtnD0nR4v7cBm6BLURDdU.roa
Signing time: Thu 18 Jul 2024 11:40:34 +0000
ROA not before: Thu 18 Jul 2024 11:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:2000::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a44::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Aug 2024 10:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c5:a4:df:02:fd:ca:e7:ca:b2:3b:93:4a:d1:67:cd:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jul 18 11:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b144b3e636d9c3d27478bfb7019ba04b5110dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:02:79:a4:52:e4:13:04:e2:1c:b2:2a:f6:af:
03:10:78:eb:e4:1d:4d:b8:58:31:10:c1:af:54:e5:
5e:17:37:0f:34:4d:a1:97:37:ea:f9:8e:a1:77:4d:
69:4d:0a:78:f5:f6:81:99:95:4a:e2:4b:70:1e:16:
2a:c3:55:77:ab:30:ec:4e:a0:8b:d1:3d:be:25:76:
64:76:65:89:7f:ba:4e:d5:5a:79:2d:51:97:de:05:
aa:c1:df:fb:eb:bb:7e:3b:2c:56:f5:aa:1a:39:7a:
6a:8e:d4:16:a0:1a:87:17:89:f1:1f:10:1d:bb:81:
9b:13:93:4e:6a:27:be:ac:18:be:cf:e0:15:55:40:
d7:9e:ba:fa:d6:cd:69:cd:29:c2:86:bd:17:38:12:
af:df:fa:db:7f:63:7b:54:30:1d:46:dd:c0:b0:fb:
92:ff:04:50:5e:d1:06:3e:54:9d:b4:e6:8e:a4:ca:
05:d6:24:72:d0:9b:a6:da:b8:2b:2b:34:cf:f0:31:
44:b2:f9:25:51:db:d6:fe:f6:69:71:1d:39:45:29:
5d:6e:e5:da:5e:31:dc:f2:c7:06:18:d0:b6:8f:51:
1e:89:10:1d:f1:50:f8:1c:b9:a7:0e:f5:14:44:43:
16:2a:f3:cb:bf:fd:b3:00:b7:d8:70:bc:a8:84:cc:
cf:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:14:4B:3E:63:6D:9C:3D:27:47:8B:FB:70:19:BA:04:B5:11:0D:D5
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/GxRLPmNtnD0nR4v7cBm6BLURDdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2000::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2dff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
00:86:96:06:fe:b0:de:44:fd:00:21:dc:8b:64:05:96:8f:2d:
a0:29:9c:ef:51:5e:a1:0e:5d:8a:73:eb:7e:c5:ac:a9:9f:77:
ed:56:1d:89:7b:81:ee:dd:ae:5a:53:2c:35:0d:a3:5b:8a:46:
85:77:66:7f:1d:35:e9:79:ae:70:e2:8d:2d:f0:84:02:e9:3d:
27:de:57:60:87:19:a0:5f:1a:60:15:a7:c3:51:2e:0a:8a:18:
17:f4:6c:a2:db:a7:44:4b:c9:e2:fc:6d:e6:62:ff:d7:65:5f:
59:9c:42:48:54:34:b1:f7:cd:d6:51:37:7d:7b:ac:52:d0:09:
f6:1e:2e:6a:20:a6:c9:89:7b:21:d1:e9:ae:9a:5c:59:0c:9c:
55:1a:1c:b5:c9:0a:9b:5f:5b:0e:ce:6c:bd:a1:02:ae:d4:04:
ca:f9:4a:90:f3:fd:36:db:e4:97:73:df:5f:71:4e:7a:f3:c3:
12:80:48:af:94:eb:92:fb:ca:b9:97:f2:a3:bd:2e:6c:f1:2c:
dd:61:05:c4:c7:a2:ca:e4:cf:18:c7:37:0b:16:4d:62:7f:1f:
e0:20:8e:8b:26:a7:4b:1e:6f:b7:96:f7:98:c6:ba:73:19:59:
7a:bc:26:f3:eb:f2:35:f0:95:8b:50:a3:d5:8c:b9:35:29:18:
a2:c1:7f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:13 2025 by rpki-client