Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/xZDUOx1p-8DhyUJ6kZZRfEFDrnA.roa
File: xZDUOx1p-8DhyUJ6kZZRfEFDrnA.roa (raw, json)
Hash identifier: ASEBEiHcHzmtho8zxk4sprmJzN/d47NWETdKy77BPH0=
Subject key identifier: C5:90:D4:3B:1D:69:FB:C0:E1:C9:42:7A:91:96:51:7C:41:43:AE:70
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E3542E218FB3ABA5D00886AC22BE2
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/xZDUOx1p-8DhyUJ6kZZRfEFDrnA.roa
Signing time: Tue 02 Jan 2024 08:33:15 +0000
ROA not before: Tue 02 Jan 2024 08:33:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 45.131.111.0/24 maxlen: 24
45.131.108.0/24 maxlen: 24
92.118.207.0/24 maxlen: 24
45.142.104.0/24 maxlen: 24
45.142.107.0/24 maxlen: 24
37.221.92.0/24 maxlen: 24
185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.137.203.0/24 maxlen: 24
45.137.201.0/24 maxlen: 24
45.84.198.0/24 maxlen: 24
45.84.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jan 2024 12:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:35:42:e2:18:fb:3a:ba:5d:00:88:6a:c2:2b:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c590d43b1d69fbc0e1c9427a9196517c4143ae70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f0:06:58:f3:1b:6f:31:de:21:f5:92:f8:ad:
52:c3:45:45:0e:d0:dd:f4:ea:a3:3e:bb:30:89:b1:
a4:ba:0b:20:53:b1:db:fe:c2:d2:af:92:df:55:d6:
0b:33:d1:95:45:b3:5d:91:bf:a8:a6:79:7a:64:ed:
a7:f0:2f:1a:47:f9:fb:99:80:cf:9a:2a:e3:aa:25:
61:a5:9d:87:e2:95:49:f9:85:8e:74:05:52:e0:16:
ca:c5:e0:4b:32:c6:cb:7c:b1:d6:31:86:b0:c2:20:
35:d3:53:c1:9f:8e:78:1f:a8:07:0e:a3:cd:61:7f:
0a:9b:f3:a4:fd:21:e3:2d:24:ac:3d:aa:32:a0:f3:
b6:ef:69:9e:94:69:17:50:30:7a:bd:f6:34:a9:59:
49:d2:2a:1a:3f:93:a8:fe:31:5c:a6:78:63:f3:6a:
b1:0a:3b:5d:64:c8:b7:c7:f9:5c:cf:1b:fb:db:d8:
a8:0a:b3:e9:46:bb:c9:8d:73:35:5d:01:a4:3d:17:
0e:12:3c:ac:a8:5a:9f:c3:81:d6:61:d5:1d:61:c1:
fc:9e:96:4c:88:96:92:8b:94:99:19:d5:98:50:74:
76:bc:e0:f5:70:4e:45:d3:18:ff:f2:79:e0:4e:56:
bb:42:18:53:66:eb:77:18:94:5d:ba:82:ee:7e:7e:
b6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:90:D4:3B:1D:69:FB:C0:E1:C9:42:7A:91:96:51:7C:41:43:AE:70
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/xZDUOx1p-8DhyUJ6kZZRfEFDrnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
37.221.92.0/24
45.13.227.0/24
45.84.196.0/24
45.84.198.0/24
45.131.108.0/24
45.131.111.0/24
45.137.201.0/24
45.137.203.0/24
45.142.104.0/24
45.142.107.0/24
45.147.7.0/24
45.151.56.0/24
92.118.207.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4d:16:4e:2a:4a:f1:73:7d:49:15:b0:ff:6b:14:34:85:3e:
76:79:56:90:45:13:38:0f:4e:80:71:8b:b6:d5:88:88:f7:3b:
28:3d:10:cf:14:96:4b:7e:9b:cc:21:59:1f:b0:61:b0:6c:c2:
d7:47:9a:cc:4c:ef:e4:5d:20:49:78:37:f3:fe:5c:29:aa:f8:
c8:3c:60:b5:60:53:79:fe:2c:91:03:07:a9:3b:c5:8f:0c:28:
3d:52:9f:cc:7f:e9:e7:37:7a:8b:3b:0a:d8:2a:3c:e0:8f:95:
0b:d1:22:60:fd:d2:37:4d:8d:21:6a:ea:f0:9b:b9:53:c7:ec:
41:de:ce:64:8a:ed:27:01:ee:d8:b7:ab:cb:9b:9b:7c:c7:9e:
3a:68:e3:8c:d0:2f:4f:4d:58:ec:29:5a:0d:13:4e:4b:2e:b0:
8d:54:9e:b7:c8:8d:91:7b:91:36:2c:72:83:30:f1:78:93:01:
f2:1e:95:8f:f2:1b:9e:5d:30:6d:64:16:d6:dc:b3:ae:cf:62:
ab:74:c0:b6:1f:11:ad:a8:23:c8:57:24:7d:97:d5:81:21:fd:
1c:e0:c7:35:d7:17:d1:10:62:61:ee:1c:4d:49:ee:35:35:ba:
08:94:7c:75:15:07:7f:72:5b:fe:4a:1b:33:ce:83:74:e3:d2:
ad:2f:66:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org