Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M3t1Xn7LtaNsFfYp4jM-1WrK0js.roa
File: M3t1Xn7LtaNsFfYp4jM-1WrK0js.roa (raw, json)
Hash identifier: CYPjo5fUO+nX6mYRwwMCy6yBKOWPKy5qvIvbMb/GXNs=
Subject key identifier: 33:7B:75:5E:7E:CB:B5:A3:6C:15:F6:29:E2:33:3E:D5:6A:CA:D2:3B
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018FE837E3BD1077830C7AE7EE6F46BA700A
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M3t1Xn7LtaNsFfYp4jM-1WrK0js.roa
Signing time: Wed 05 Jun 2024 11:45:27 +0000
ROA not before: Wed 05 Jun 2024 11:45:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35346
IP address blocks: 45.67.116.0/24 maxlen: 24
91.242.64.0/18 maxlen: 24
91.242.70.0/23 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.74.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.108.0/22 maxlen: 22
91.242.112.0/20 maxlen: 24
178.175.176.0/22 maxlen: 24
194.114.144.0/24 maxlen: 25
194.114.144.128/27 maxlen: 27
2a07:5540::/29 maxlen: 29
2a07:c040::/29 maxlen: 29
2a09:700::/29 maxlen: 29
2a09:15c0::/29 maxlen: 29
2a09:3ac0::/29 maxlen: 29
2a09:4440::/29 maxlen: 29
2a09:4c40::/29 maxlen: 29
2a09:63c0::/29 maxlen: 29
2a09:7640::/29 maxlen: 29
2a09:7b40::/29 maxlen: 29
2a09:7f00::/29 maxlen: 29
2a09:a480::/29 maxlen: 29
2a09:bdc0::/29 maxlen: 29
2a09:ca40::/29 maxlen: 29
2a09:e400::/29 maxlen: 29
2a09:f6c0::/29 maxlen: 29
2a09:f940::/29 maxlen: 29
2a09:fdc0::/29 maxlen: 29
2a0a:3700::/29 maxlen: 29
2a0a:3780::/29 maxlen: 29
2a0a:6000::/29 maxlen: 29
2a0a:ef00::/29 maxlen: 29
2a0b:280::/29 maxlen: 29
2a0b:5d00::/29 maxlen: 29
2a0c:380::/29 maxlen: 29
2a0c:3600::/32 maxlen: 32
2a0c:3780::/29 maxlen: 29
2a0c:57c0::/29 maxlen: 29
2a0c:ae00::/29 maxlen: 29
2a0d:1a00::/29 maxlen: 29
2a0d:dac0::/29 maxlen: 29
2a0d:fb00::/29 maxlen: 29
2a0e:f80::/29 maxlen: 29
2a0e:2080::/29 maxlen: 29
2a0e:2500::/29 maxlen: 29
2a0e:3380::/29 maxlen: 29
2a0e:3540::/29 maxlen: 29
2a0e:3c40::/29 maxlen: 29
2a0e:7880::/29 maxlen: 29
2a0e:b000::/29 maxlen: 29
2a0e:c3c0::/29 maxlen: 29
2a0e:c700::/29 maxlen: 29
2a0e:c800::/29 maxlen: 29
2a0e:d180::/29 maxlen: 29
2a0e:d880::/29 maxlen: 29
2a0e:e540::/29 maxlen: 29
2a0e:e8c0::/29 maxlen: 29
2a0e:e940::/29 maxlen: 29
2a0e:f540::/29 maxlen: 29
2a0f:740::/29 maxlen: 29
2a0f:1b40::/29 maxlen: 29
2a0f:3900::/29 maxlen: 29
2a0f:4840::/29 maxlen: 29
2a0f:6200::/29 maxlen: 29
2a0f:82c0::/29 maxlen: 29
2a0f:9380::/29 maxlen: 29
2a0f:b200::/29 maxlen: 29
2a0f:da00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 02 Aug 2024 15:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:37:e3:bd:10:77:83:0c:7a:e7:ee:6f:46:ba:70:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jun 5 11:45:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=337b755e7ecbb5a36c15f629e2333ed56acad23b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a8:6a:41:bd:5a:05:30:4a:1b:c9:93:2a:bd:
cd:4b:91:5c:8a:ac:bf:fc:a4:bf:97:b9:25:30:31:
f0:8d:60:c5:a2:a0:56:58:b0:15:b3:e6:d9:0d:24:
a2:04:db:a8:74:9e:fb:c6:be:95:19:cc:20:b3:69:
9f:20:00:e4:f3:2b:cc:3e:a3:da:35:e8:ec:3c:b8:
bc:95:29:d3:08:a3:e0:d1:52:42:16:ab:e6:32:53:
b1:84:d9:da:81:83:26:73:bf:7a:b5:29:dc:04:7d:
59:cf:2a:76:64:b5:fb:a2:fd:a8:bc:93:d7:47:de:
c6:02:83:58:7c:db:f0:f5:68:66:2b:af:4e:7f:1e:
75:34:ac:04:d0:33:8b:fa:2c:5e:61:39:81:60:e3:
92:fe:eb:53:bd:68:de:c9:9f:13:34:cd:cd:d8:cd:
0b:f5:a6:72:54:80:8c:22:bd:a1:50:6a:d5:86:81:
db:77:81:94:f3:3c:b2:ae:ad:f4:3c:3a:d3:fb:73:
47:5a:02:a9:24:3f:9f:c6:62:aa:e9:77:04:19:b3:
5a:7a:2d:c7:4c:cb:fe:33:e1:28:6d:69:13:94:0d:
90:a4:ec:45:1c:8d:a3:dc:a8:30:2b:5a:39:04:5d:
9d:7e:f3:9d:ef:04:bc:2e:2b:63:f4:a9:f8:b0:9b:
97:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7B:75:5E:7E:CB:B5:A3:6C:15:F6:29:E2:33:3E:D5:6A:CA:D2:3B
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/M3t1Xn7LtaNsFfYp4jM-1WrK0js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
91.242.64.0/18
178.175.176.0/22
194.114.144.0/24
IPv6:
2a07:5540::/29
2a07:c040::/29
2a09:700::/29
2a09:15c0::/29
2a09:3ac0::/29
2a09:4440::/29
2a09:4c40::/29
2a09:63c0::/29
2a09:7640::/29
2a09:7b40::/29
2a09:7f00::/29
2a09:a480::/29
2a09:bdc0::/29
2a09:ca40::/29
2a09:e400::/29
2a09:f6c0::/29
2a09:f940::/29
2a09:fdc0::/29
2a0a:3700::/29
2a0a:3780::/29
2a0a:6000::/29
2a0a:ef00::/29
2a0b:280::/29
2a0b:5d00::/29
2a0c:380::/29
2a0c:3600::/32
2a0c:3780::/29
2a0c:57c0::/29
2a0c:ae00::/29
2a0d:1a00::/29
2a0d:dac0::/29
2a0d:fb00::/29
2a0e:f80::/29
2a0e:2080::/29
2a0e:2500::/29
2a0e:3380::/29
2a0e:3540::/29
2a0e:3c40::/29
2a0e:7880::/29
2a0e:b000::/29
2a0e:c3c0::/29
2a0e:c700::/29
2a0e:c800::/29
2a0e:d180::/29
2a0e:d880::/29
2a0e:e540::/29
2a0e:e8c0::/29
2a0e:e940::/29
2a0e:f540::/29
2a0f:740::/29
2a0f:1b40::/29
2a0f:3900::/29
2a0f:4840::/29
2a0f:6200::/29
2a0f:82c0::/29
2a0f:9380::/29
2a0f:b200::/29
2a0f:da00::/29
Signature Algorithm: sha256WithRSAEncryption
09:16:9c:13:94:29:93:b7:f6:b2:44:9e:30:38:f5:72:d4:4e:
39:f5:7b:3d:35:a3:b3:98:f4:6f:21:37:66:20:52:00:8e:ed:
54:78:50:d5:83:d3:cd:cc:be:54:db:5a:51:1c:2b:1f:96:3d:
a4:49:de:d9:c8:31:16:9a:56:ab:33:70:56:ae:db:1b:7c:6f:
be:f1:06:9f:7b:2a:08:53:ee:36:25:2d:50:34:6d:aa:ae:2a:
47:23:0d:1e:65:9a:b5:cc:19:39:d7:39:5b:1d:15:c9:d1:b1:
ea:dd:34:ab:28:e5:0e:9a:b1:94:61:10:57:11:d6:e3:fc:ea:
e0:9a:40:28:0e:8f:47:9e:61:1d:7a:50:ea:2a:5c:df:f1:ba:
51:0c:87:74:d5:c7:1c:c0:c3:00:50:87:9f:e0:fd:8f:fd:4d:
9b:4e:8f:b0:41:ff:a8:96:61:be:2d:25:bc:79:51:89:8b:2f:
c7:82:b8:f1:99:fb:83:d3:38:8b:70:22:ee:c8:89:82:a2:e6:
aa:0a:44:39:fe:3b:2e:ea:f7:51:03:98:b2:1a:cb:d8:9f:19:
46:a9:68:ee:48:ae:41:13:63:9d:a7:8e:08:03:42:cd:36:c6:
29:7f:a5:a7:bb:d2:db:5e:fe:ec:91:54:c3:75:6f:3e:8f:37:
ba:fd:3c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 17:58:38 2024 by rpki-client on console-fra.rpki-client.org