Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l17UomYgKH85SDF2YgeLvWqW15Q.roa
File: l17UomYgKH85SDF2YgeLvWqW15Q.roa (raw, json)
Hash identifier: n6nzcfCCCeblsBB6SnHYA2azijm2P3PvNQHYvJ3mPu4=
Subject key identifier: 97:5E:D4:A2:66:20:28:7F:39:48:31:76:62:07:8B:BD:6A:96:D7:94
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018CCADD218E402C3FAA2E2C2F59FA4AB162
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l17UomYgKH85SDF2YgeLvWqW15Q.roa
Signing time: Tue 02 Jan 2024 15:48:58 +0000
ROA not before: Tue 02 Jan 2024 15:48:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
193.37.139.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:2328::/48 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2700::/40 maxlen: 48
2a0c:9a40:2300::/40 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2800::/40 maxlen: 48
2a0c:9a40:2200::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 48
2a0c:9a40:2d00::/40 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2b00::/40 maxlen: 48
2a0c:9a40:2100::/40 maxlen: 48
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:1080::/48 maxlen: 48
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Apr 2024 11:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:dd:21:8e:40:2c:3f:aa:2e:2c:2f:59:fa:4a:b1:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 15:48:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=975ed4a26620287f3948317662078bbd6a96d794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b5:08:1f:c7:a5:e8:3f:0f:47:ba:38:4d:fb:
97:ae:bc:92:9d:87:46:90:2a:18:40:89:36:47:cd:
a2:1c:4c:70:19:ec:f8:49:25:68:f3:11:8c:09:21:
26:ab:4c:e5:12:dc:bf:c9:c3:b4:08:62:08:2b:e1:
d6:98:c5:c3:31:04:93:16:32:ed:cc:ea:d2:8b:d8:
12:ed:72:1d:3d:0e:b8:cb:41:c9:ed:45:65:f3:00:
f1:fb:94:af:c4:23:d8:bd:0f:cc:6e:07:3a:37:1d:
33:61:e9:3e:e7:d2:c4:1d:40:e1:24:af:e3:b3:2c:
de:b1:8e:68:2f:c4:1e:4d:74:5b:fe:b3:f3:37:ae:
48:36:d3:7e:f0:d7:0f:b7:04:ba:27:ce:aa:63:75:
68:1a:9f:ce:ad:7c:33:b9:43:46:da:52:73:bd:a7:
87:d4:c7:b3:60:4d:ec:bb:59:19:47:37:4f:e7:c3:
0c:7d:c8:1b:41:f0:17:c6:7c:1d:96:5f:25:c0:b3:
b9:96:b5:06:15:06:de:fa:59:6b:52:25:57:2c:a3:
44:d1:3c:96:f5:08:4e:3b:81:2f:e7:14:61:c3:7e:
3f:5b:a9:cd:ab:5f:35:84:df:f5:ab:83:67:9c:b2:
e4:d6:b0:fb:e5:b4:a0:c5:ff:9d:59:2a:22:5d:01:
39:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5E:D4:A2:66:20:28:7F:39:48:31:76:62:07:8B:BD:6A:96:D7:94
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/l17UomYgKH85SDF2YgeLvWqW15Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.37.139.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::-2a0c:9a40:2dff:ffff:ffff:ffff:ffff:ffff
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
83:c9:ed:34:d1:ef:a4:30:a2:9a:86:04:bf:c8:f1:75:90:74:
b7:2a:38:23:f0:90:01:25:3a:ef:63:80:60:1e:e8:d9:23:c6:
4e:a0:c9:b1:f7:50:07:1f:18:1c:01:c8:98:8b:ed:d3:8f:12:
51:b5:4a:dd:0b:77:15:92:94:60:6f:29:74:41:18:66:c9:fe:
28:35:13:05:8b:e1:58:d5:56:bc:5a:7a:c8:5a:f9:0b:02:97:
2a:d3:c8:d3:a6:27:60:84:d0:e0:6a:a0:72:22:01:b6:58:f1:
b3:63:e4:e8:59:e2:ec:85:56:1d:eb:ef:0b:84:1b:0c:c1:5e:
ce:3f:57:c2:b5:67:c1:13:1d:37:87:2f:aa:73:79:27:8a:4e:
ec:46:fc:28:b2:eb:23:9d:e8:02:b1:3c:22:4a:96:f5:69:71:
cc:74:bc:39:50:e8:db:58:fe:44:6e:fe:9e:68:57:e2:98:44:
19:39:e5:15:6a:72:d3:66:f8:3c:1b:79:ce:44:49:e1:20:a6:
be:0d:58:97:0d:e7:60:8b:e2:c4:dd:1f:57:8d:f4:9a:40:80:
50:aa:38:b2:9b:8b:bc:1c:1b:aa:78:3d:fd:7d:6c:af:13:68:
6f:96:af:f9:e6:92:8a:38:b4:e1:0d:71:a9:11:d6:af:4f:71:
aa:0a:d0:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 1 13:54:47 2024 by rpki-client on console-fra.rpki-client.org