Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Au1uC8IeOk9S5x7Gzow26IFg6vw.roa
File: Au1uC8IeOk9S5x7Gzow26IFg6vw.roa (raw, json)
Hash identifier: E5EAl9aMKaIkSbfGb+CoU+MRBXxLZc9Nx+NJrRRLfcI=
Subject key identifier: 02:ED:6E:0B:C2:1E:3A:4F:52:E7:1E:C6:CE:8C:36:E8:81:60:EA:FC
Certificate issuer: /CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Certificate serial: 018CC26D4BD89702E777B61D325B62A4A2EB
Authority key identifier: C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Au1uC8IeOk9S5x7Gzow26IFg6vw.roa
Signing time: Mon 01 Jan 2024 00:29:51 +0000
ROA not before: Mon 01 Jan 2024 00:29:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47890
IP address blocks: 45.129.15.0/24 maxlen: 24
2.57.122.0/24 maxlen: 24
92.118.37.0/24 maxlen: 24
92.118.39.0/24 maxlen: 24
45.138.96.0/24 maxlen: 24
45.138.97.0/24 maxlen: 24
45.138.98.0/24 maxlen: 24
45.138.99.0/24 maxlen: 24
45.13.212.0/24 maxlen: 24
45.13.213.0/24 maxlen: 24
80.94.92.0/24 maxlen: 24
80.94.94.0/24 maxlen: 24
193.47.69.0/24 maxlen: 24
193.32.162.0/24 maxlen: 24
193.32.163.0/24 maxlen: 24
45.148.9.0/24 maxlen: 24
185.232.64.0/24 maxlen: 24
45.148.11.0/24 maxlen: 24
193.46.254.0/24 maxlen: 24
185.232.66.0/24 maxlen: 24
193.46.255.0/24 maxlen: 24
193.29.14.0/24 maxlen: 24
2a0c:9f00::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Jan 2024 20:12:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:4b:d8:97:02:e7:77:b6:1d:32:5b:62:a4:a2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2c12b527a5d1f8b8bcf230eb611f52f11d52bbf
Validity
Not Before: Jan 1 00:29:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02ed6e0bc21e3a4f52e71ec6ce8c36e88160eafc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3b:02:ef:4e:d5:85:74:2c:57:e1:93:97:39:
c7:9c:2a:72:e6:70:e1:1f:90:3c:ea:cf:48:fa:4a:
fd:da:f0:d4:a5:1d:f4:2c:83:25:ab:0e:d7:f5:ab:
50:9f:c7:4d:d9:7d:a4:1a:c9:af:d1:20:6d:92:77:
e8:d6:16:3d:da:f7:a6:93:6d:5f:0d:c0:41:72:59:
0d:91:1b:e2:66:11:0a:e4:01:4a:8b:67:cb:05:c4:
b7:01:c4:8a:d5:c9:6b:0b:4a:fe:b6:97:14:78:34:
43:aa:d2:a0:6c:33:0f:6a:11:d7:7c:05:42:73:35:
14:23:bb:07:47:96:81:8e:8e:f0:21:af:1b:84:9a:
b3:5e:e8:f8:b6:3f:d6:45:7f:b6:16:3a:51:cc:b7:
26:0e:d4:d0:d3:b1:c1:c3:59:1d:59:5d:78:2f:83:
d7:4f:7d:72:bf:c2:fa:2e:a5:36:fb:9e:f9:fa:1f:
71:73:e0:7e:d8:4a:92:91:4b:a8:a9:c1:92:2e:5c:
00:0b:93:e3:d7:28:e4:3a:c0:02:2e:40:1d:4b:cc:
e3:45:77:d9:5c:a8:63:c5:bb:dd:e4:15:0e:bf:31:
ef:a7:fc:d4:bb:ab:59:be:92:d8:ad:80:9e:0e:4e:
2e:10:f0:a6:fe:33:98:c3:70:58:f0:ad:02:0e:1e:
3e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:ED:6E:0B:C2:1E:3A:4F:52:E7:1E:C6:CE:8C:36:E8:81:60:EA:FC
X509v3 Authority Key Identifier:
keyid:C2:C1:2B:52:7A:5D:1F:8B:8B:CF:23:0E:B6:11:F5:2F:11:D5:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wsErUnpdH4uLzyMOthH1LxHVK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/Au1uC8IeOk9S5x7Gzow26IFg6vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3ebb46-b9dd-4695-815c-46ee578a0bfe/1/wsErUnpdH4uLzyMOthH1LxHVK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.122.0/24
45.13.212.0/23
45.129.15.0/24
45.138.96.0/22
45.148.9.0/24
45.148.11.0/24
80.94.92.0/24
80.94.94.0/24
92.118.37.0/24
92.118.39.0/24
185.232.64.0/24
185.232.66.0/24
193.29.14.0/24
193.32.162.0/23
193.46.254.0/23
193.47.69.0/24
IPv6:
2a0c:9f00::/48
Signature Algorithm: sha256WithRSAEncryption
63:91:9d:bc:8c:1b:4b:d4:11:e8:ee:b8:91:07:c7:17:4b:85:
32:5d:fb:d0:6e:07:d2:c0:20:66:fd:2b:c0:de:de:90:64:b8:
10:de:02:f1:a6:5d:9e:60:d8:f0:dd:a8:2b:e5:63:19:cf:22:
b4:8a:78:09:ca:31:14:d2:5f:53:f1:a4:a8:7b:08:5a:f6:f6:
db:58:d7:ce:fc:ed:3d:15:88:c9:af:bd:bd:7e:77:b2:47:a8:
c0:db:cb:3e:8c:1e:0d:f5:69:cf:8e:2c:89:48:51:b2:14:15:
45:e1:19:b6:6c:60:c6:05:78:37:94:b2:c5:90:bb:75:d3:7b:
d7:de:b9:1c:06:e9:c0:43:52:e5:14:24:bc:b3:28:33:cf:70:
7f:b9:6c:70:be:b4:4d:87:b7:76:69:a4:2c:48:28:2b:05:43:
8e:e1:af:94:77:3a:3f:d5:bd:b2:bd:9e:75:44:a1:57:75:76:
8e:40:c3:c0:b8:62:7d:38:af:82:31:b9:57:de:b5:20:48:b9:
57:a2:bf:08:1d:54:39:92:8d:61:aa:ee:c8:f5:bf:db:6e:95:
b3:a6:5d:d6:35:cf:4f:1d:13:0b:79:f3:00:7f:04:34:61:38:
5b:1e:47:76:8a:f9:8d:94:3a:cd:6c:5d:29:47:28:a1:4e:2a:
1b:5e:9b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:41 2025 by rpki-client