Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SEn1o8W86ByTsln6YYJxXFDRL_E.roa
File: SEn1o8W86ByTsln6YYJxXFDRL_E.roa (raw, json)
Hash identifier: dDaSmLkspV2HlrplM7mqDghO+tfsHtOEerv73X4b26M=
Subject key identifier: 48:49:F5:A3:C5:BC:E8:1C:93:B2:59:FA:61:82:71:5C:50:D1:2F:F1
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 019165017FAAF6406FEC86457F15DDB5FDE8
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SEn1o8W86ByTsln6YYJxXFDRL_E.roa
Signing time: Sun 18 Aug 2024 10:21:22 +0000
ROA not before: Sun 18 Aug 2024 10:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:2000::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2e00::/40 maxlen: 48
2a0c:9a44::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 28 Aug 2024 22:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:65:01:7f:aa:f6:40:6f:ec:86:45:7f:15:dd:b5:fd:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Aug 18 10:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4849f5a3c5bce81c93b259fa6182715c50d12ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:9e:f5:b9:e8:08:b1:21:43:59:54:43:71:
ea:c2:4b:ff:85:35:fa:20:d9:af:ac:40:29:db:ec:
34:7b:e2:49:2d:13:74:b2:e7:09:46:23:0f:8e:06:
3e:42:5d:00:c7:21:9b:2f:8b:b2:ac:f8:ae:ff:1a:
ec:af:91:4a:e8:39:8a:0e:58:db:ac:e4:35:b5:74:
86:b2:64:8a:7f:04:b3:a0:a3:d3:3e:6c:8e:20:c6:
0a:a5:d0:e0:5b:5f:36:2f:06:76:a9:dc:dd:cc:a7:
6a:22:b8:a7:26:ad:50:08:d1:bb:f5:3e:04:0c:bb:
3e:bb:19:70:36:9c:ce:36:90:68:26:58:65:b3:33:
02:f1:eb:a0:66:e4:7a:6c:60:b9:2b:9b:52:41:4c:
eb:fa:76:26:4b:b7:d0:b5:ef:7d:ca:4e:24:f5:ba:
a0:ab:1c:44:e0:5b:ba:9b:87:f7:66:dd:a1:f8:0d:
35:92:b3:3e:50:70:c9:50:cc:c7:65:a1:a8:94:1e:
50:77:8a:85:84:11:2e:2c:da:81:a9:36:2c:33:bd:
12:c7:6a:85:50:12:f4:b8:9e:4e:84:a0:88:4e:03:
42:0d:4e:fb:e6:c7:30:26:42:05:6c:9d:fc:d8:b7:
47:4a:56:fa:2a:3b:d1:e7:d7:25:5c:c9:5c:78:a2:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:49:F5:A3:C5:BC:E8:1C:93:B2:59:FA:61:82:71:5C:50:D1:2F:F1
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/SEn1o8W86ByTsln6YYJxXFDRL_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2000::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2eff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
9b:65:a2:fb:35:c8:55:23:35:f9:6c:13:36:f0:ee:24:11:d9:
78:0f:e8:7b:c2:7d:f2:c2:1b:05:a9:63:1b:d8:72:ae:04:e4:
9b:a9:43:a6:32:62:37:1f:39:01:bc:cd:49:46:3c:dc:00:66:
8b:71:7e:ab:be:28:95:7d:bd:14:fb:a2:7c:da:68:44:d2:61:
0c:62:a5:78:20:e9:86:8e:5e:0e:43:d9:9a:4b:08:5f:b0:f9:
ec:79:8a:b0:e2:8d:74:50:24:c9:22:e7:5b:20:c4:31:9d:05:
7b:d8:97:33:6f:d8:68:4a:0c:e3:f0:79:0c:56:77:b0:83:fc:
eb:bd:cb:ef:9c:04:83:66:c5:5f:e4:dc:76:f7:50:f2:97:b7:
0c:cb:0a:57:79:7b:e9:91:41:0e:5e:d8:b3:12:fb:f8:58:24:
9a:de:27:f1:92:8b:3e:6d:46:5e:69:6c:05:1b:79:36:38:5a:
6e:45:03:d6:6e:ba:8d:44:9b:ca:47:31:dc:42:4d:c7:e6:f1:
f9:a5:b3:3f:d3:f8:f9:2a:f8:a6:a5:1c:c2:cc:86:96:89:9c:
5c:a4:26:89:d9:36:73:5f:90:81:77:8a:95:76:af:f1:0b:59:
c9:a2:54:9a:72:00:6b:f8:20:5d:7f:61:0b:07:74:ee:11:2f:
e5:62:61:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:17:10 2025 by rpki-client