Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dw7IEF4PDPAhNEO72fCzEN4YBLA.roa
File: dw7IEF4PDPAhNEO72fCzEN4YBLA.roa (raw, json)
Hash identifier: j54/ZM9tkfCkmQU3o/sfnFzi0AwkuisNyzr5Lph0h78=
Subject key identifier: 77:0E:C8:10:5E:0F:0C:F0:21:34:43:BB:D9:F0:B3:10:DE:18:04:B0
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0192B3D115BFE2B3AAAFD25300F2B3A7E70D
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dw7IEF4PDPAhNEO72fCzEN4YBLA.roa
Signing time: Tue 22 Oct 2024 10:41:17 +0000
ROA not before: Tue 22 Oct 2024 10:41:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1034::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1074::/48 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:2000::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2e00::/40 maxlen: 48
2a0c:9a40:8a90::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Oct 2024 20:52:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b3:d1:15:bf:e2:b3:aa:af:d2:53:00:f2:b3:a7:e7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Oct 22 10:41:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=770ec8105e0f0cf0213443bbd9f0b310de1804b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:42:9a:8a:36:18:21:80:0d:97:6f:e2:ef:
7d:0f:b7:fe:67:32:50:81:64:a9:56:0d:c3:98:d7:
81:1a:49:5d:6b:b7:40:cf:9a:2b:ca:2a:c9:4e:de:
20:11:e3:34:85:9a:8a:34:05:ad:0f:ef:52:49:5c:
1d:d2:be:97:51:0b:5d:9f:c3:b5:d9:f0:ea:e9:04:
23:79:0c:9f:06:28:35:c2:68:38:a3:93:55:99:fd:
2a:84:b6:d3:f9:8c:9a:16:3d:95:e5:2b:1f:54:7e:
9a:54:14:47:19:f5:ce:90:57:f1:60:6c:85:ab:00:
09:47:54:30:20:48:90:2e:bc:fd:86:98:2b:39:18:
fa:30:e1:b4:6c:19:45:b6:d4:be:57:e8:28:0c:c6:
19:b6:f3:f8:03:0e:c3:7d:60:be:10:8d:52:61:c6:
e3:42:1a:b1:11:af:01:a0:8e:bc:72:0f:33:d9:ab:
77:43:ba:d4:38:19:6e:a9:5f:4f:3a:cc:0e:6e:23:
dc:65:cd:59:4d:ff:f4:6c:f2:bf:a8:f2:cc:76:e5:
4f:c1:79:19:9e:0b:cf:3b:f8:5f:37:da:5d:b2:60:
93:ba:49:2e:b2:2a:f1:96:3f:d4:ef:d3:48:57:4b:
6b:84:b3:1b:e4:46:49:08:ad:7e:34:5e:4c:41:70:
8c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0E:C8:10:5E:0F:0C:F0:21:34:43:BB:D9:F0:B3:10:DE:18:04:B0
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/dw7IEF4PDPAhNEO72fCzEN4YBLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2000::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2eff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:8a90::/48
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
38:a8:83:60:8d:ca:3d:55:49:2a:37:2b:d6:65:d3:1b:4f:44:
4b:35:e3:74:4f:b0:0d:86:3c:5e:6b:aa:16:8f:18:00:74:49:
e2:7e:a0:4f:d1:41:7e:02:04:3c:b3:df:78:82:10:50:04:54:
d6:d9:48:83:8f:14:2e:3d:29:fa:2f:98:93:ba:9b:64:99:4c:
5b:50:b1:48:e9:4f:f3:38:b9:91:d2:a8:71:f1:f0:9c:66:ad:
3b:10:7a:10:5c:83:3c:b4:60:28:e7:26:f4:8e:2b:a6:c2:4f:
54:f5:d7:38:f6:73:ea:e0:10:70:81:fb:ac:16:6b:da:c4:70:
20:f1:81:58:7b:10:0a:b0:f4:56:87:f1:6d:f1:ad:30:b6:0c:
91:93:29:29:00:45:ff:89:13:7c:b7:d5:11:ea:d2:db:70:2c:
4c:ee:1d:49:8b:3b:a5:a4:a4:a8:6c:92:3c:73:0f:dc:2d:cb:
60:6e:5f:87:f9:d0:5f:fa:8f:7f:ea:ee:cc:c8:a0:6d:5a:2d:
12:df:4e:63:ed:3f:fc:61:17:23:71:46:be:81:01:26:4a:14:
ba:0e:2f:71:f9:8d:97:29:dd:4a:09:d6:69:89:0d:56:06:9f:
e8:f2:ca:66:a7:a8:1a:38:dd:61:69:09:16:96:0e:7c:95:0d:
d3:0e:a3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:31:25 2025 by rpki-client