Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Avd1dBYvxu626mP7JkAIgIXxS6I.roa
File: Avd1dBYvxu626mP7JkAIgIXxS6I.roa (raw, json)
Hash identifier: n13GWRrGOUSWKkv3ay1EtZcYkUCqRJQnoe65osza0+w=
Subject key identifier: 02:F7:75:74:16:2F:C6:EE:B6:EA:63:FB:26:40:08:80:85:F1:4B:A2
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E33F4172251A858CAAFABB80D6798
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Avd1dBYvxu626mP7JkAIgIXxS6I.roa
Signing time: Tue 02 Jan 2024 08:33:14 +0000
ROA not before: Tue 02 Jan 2024 08:33:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44486
IP address blocks: 212.87.214.0/23 maxlen: 23
185.132.55.0/24 maxlen: 24
185.132.54.0/24 maxlen: 24
45.137.71.0/24 maxlen: 24
45.137.69.0/24 maxlen: 24
45.131.109.0/24 maxlen: 24
45.67.136.0/24 maxlen: 24
45.145.224.0/23 maxlen: 23
45.91.251.0/24 maxlen: 24
5.180.252.0/23 maxlen: 23
46.243.76.0/22 maxlen: 22
5.180.254.0/23 maxlen: 23
5.253.244.0/24 maxlen: 24
45.134.108.0/24 maxlen: 24
45.134.108.0/23 maxlen: 23
45.134.109.0/24 maxlen: 24
45.84.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 14:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:33:f4:17:22:51:a8:58:ca:af:ab:b8:0d:67:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02f77574162fc6eeb6ea63fb2640088085f14ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ef:f2:6c:d8:db:9c:4b:28:cc:dd:71:2d:65:
48:47:56:78:97:5e:d8:a0:52:98:b8:c4:ad:64:37:
d5:9f:70:37:6a:47:34:ff:63:09:d2:56:6e:18:e7:
b4:5c:64:3b:d5:94:7b:8b:d5:95:47:53:98:12:6d:
5c:8e:22:d2:01:83:05:01:f4:c0:fe:c2:9b:9d:77:
d7:0d:ce:8e:00:43:30:ea:3d:4f:d8:a6:af:7a:bc:
5e:7e:b2:94:ad:c2:e7:b1:10:c9:8e:10:98:59:f0:
99:a9:0a:f2:17:f3:48:df:73:bc:ec:ac:7e:d2:08:
fa:11:9f:7e:37:25:5c:20:a0:5a:04:8b:ca:8e:7a:
e5:0f:68:62:5d:bc:98:69:1a:af:ad:7e:6a:2a:6e:
2e:8a:18:95:14:8e:50:a7:76:2f:43:f2:4f:cf:2b:
8d:e2:48:f4:18:16:64:0b:48:8e:c7:fc:eb:10:f5:
22:2f:b1:dd:c9:12:73:21:23:45:38:48:e1:95:7a:
cd:db:0a:23:4b:ce:c5:45:c9:66:0e:b9:0f:38:c0:
7b:e9:85:14:54:41:17:98:49:ee:54:18:4d:2e:e7:
f7:98:41:59:be:05:9c:67:44:cc:49:61:80:3a:c9:
9c:2c:1e:b2:e0:ef:14:25:b8:74:65:ca:dd:76:3b:
64:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F7:75:74:16:2F:C6:EE:B6:EA:63:FB:26:40:08:80:85:F1:4B:A2
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Avd1dBYvxu626mP7JkAIgIXxS6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.253.244.0/24
45.67.136.0/24
45.84.199.0/24
45.91.251.0/24
45.131.109.0/24
45.134.108.0/23
45.137.69.0/24
45.137.71.0/24
45.145.224.0/23
46.243.76.0/22
185.132.54.0/23
212.87.214.0/23
Signature Algorithm: sha256WithRSAEncryption
46:98:2c:57:d6:d1:57:67:c9:24:a2:90:6e:f1:07:b5:57:71:
29:2f:6e:b5:cb:76:84:fe:3f:fc:a1:09:f9:54:14:fa:ff:51:
a8:46:11:25:db:71:17:fb:b3:ec:38:40:af:4c:1a:c5:6e:30:
93:69:6e:f5:37:4b:59:e1:3c:fe:20:b1:5d:eb:ec:e2:d6:b2:
b5:dc:36:bd:7b:51:ef:10:e3:32:eb:1e:16:1f:ca:16:54:4b:
63:ba:76:de:00:1c:b6:b8:6f:f5:1d:dc:c3:76:d4:66:53:39:
91:ef:3d:f1:15:44:1a:6f:77:9a:9a:9c:ea:dc:6e:42:98:5c:
45:e0:d4:d4:b4:ff:14:98:16:5b:4b:8c:1e:cf:6d:f3:f6:3d:
8e:68:33:9c:89:cc:92:39:cb:cb:7f:78:08:0a:09:7b:da:ac:
ac:d9:b8:ae:7e:4a:cd:1f:e3:a2:ce:0d:a9:03:4f:51:79:11:
0b:ae:c0:77:cb:e1:4d:96:9a:f0:e7:08:f8:a4:05:10:ff:ac:
77:c3:63:58:a1:ad:69:4f:6b:83:0e:04:92:61:d1:fb:97:f5:
b6:32:eb:c1:37:2d:60:c0:45:d8:bd:db:62:4c:77:b7:74:f2:
e3:0a:46:be:d3:d4:74:3b:17:03:b8:1f:78:96:51:f7:54:40:
d8:ee:5e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org