Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/ecA_eqHvk0U7e8XMntZIEe1lhhc.roa
File: ecA_eqHvk0U7e8XMntZIEe1lhhc.roa (raw, json)
Hash identifier: SzgGHlKoko6O9i2PZbGqnAh3thpwU9qu+MKKR05gkvo=
Subject key identifier: 79:C0:3F:7A:A1:EF:93:45:3B:7B:C5:CC:9E:D6:48:11:ED:65:86:17
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 018CC8DE78178E80BFCD005348C50EB2F48C
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/ecA_eqHvk0U7e8XMntZIEe1lhhc.roa
Signing time: Tue 02 Jan 2024 06:31:12 +0000
ROA not before: Tue 02 Jan 2024 06:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59441
IP address blocks: 185.208.78.0/23 maxlen: 24
185.208.78.0/24 maxlen: 24
185.208.79.0/24 maxlen: 24
185.83.112.0/22 maxlen: 22
185.83.112.0/23 maxlen: 23
185.83.112.0/24 maxlen: 24
185.83.113.0/24 maxlen: 24
185.83.114.0/24 maxlen: 24
185.83.114.0/23 maxlen: 24
185.83.115.0/24 maxlen: 24
5.144.130.0/24 maxlen: 24
5.144.132.0/22 maxlen: 22
5.144.128.0/21 maxlen: 21
5.144.128.0/22 maxlen: 22
5.144.128.0/23 maxlen: 23
5.144.131.0/24 maxlen: 24
5.144.132.0/24 maxlen: 24
5.144.128.0/24 maxlen: 24
5.144.129.0/24 maxlen: 24
5.144.132.0/23 maxlen: 24
5.144.130.0/23 maxlen: 24
5.144.135.0/24 maxlen: 24
5.144.133.0/24 maxlen: 24
5.144.134.0/24 maxlen: 24
5.144.134.0/23 maxlen: 24
185.173.104.0/24 maxlen: 24
185.173.104.0/22 maxlen: 24
185.173.105.0/24 maxlen: 24
185.173.106.0/24 maxlen: 24
185.173.107.0/24 maxlen: 24
45.92.95.0/24 maxlen: 24
45.92.92.0/23 maxlen: 24
45.92.92.0/24 maxlen: 24
45.92.92.0/22 maxlen: 24
45.92.93.0/24 maxlen: 24
45.92.94.0/24 maxlen: 24
45.92.94.0/23 maxlen: 24
185.205.203.0/24 maxlen: 24
45.138.132.0/22 maxlen: 24
45.138.132.0/23 maxlen: 24
45.138.132.0/24 maxlen: 24
45.138.133.0/24 maxlen: 24
45.138.134.0/24 maxlen: 24
45.138.135.0/24 maxlen: 24
193.3.231.0/24 maxlen: 24
185.169.6.0/24 maxlen: 24
2a10:5c40::/29 maxlen: 29
2a05:9a00:4::/48 maxlen: 48
2a05:9a00::/29 maxlen: 29
2a05:9a00:1::/48 maxlen: 48
2a05:9a00:1001::/48 maxlen: 48
2a10:6140::/29 maxlen: 29
2a10:b800::/29 maxlen: 29
2a05:9a00:2::/48 maxlen: 48
2a05:9a00:1002::/48 maxlen: 48
2a07:e440::/29 maxlen: 29
2a05:9a00::/48 maxlen: 48
2a05:9a00:1000::/48 maxlen: 48
2a05:9a00:3::/48 maxlen: 48
2a05:9a00:1003::/48 maxlen: 48
2a10:4340::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 26 Jan 2024 14:09:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:78:17:8e:80:bf:cd:00:53:48:c5:0e:b2:f4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Jan 2 06:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79c03f7aa1ef93453b7bc5cc9ed64811ed658617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:49:f7:2e:04:a1:aa:18:7d:9d:da:c0:fa:
09:ec:05:a1:9e:0e:98:98:df:c2:6e:91:1a:c9:c5:
15:5f:eb:e7:cf:3b:4d:a8:95:6d:51:36:19:bf:d2:
33:5a:71:44:e7:16:40:00:39:b9:a7:28:78:2c:7d:
e7:84:1f:72:74:2f:f6:62:2b:1e:7a:87:9c:25:ca:
ad:d8:00:4f:70:34:d3:e9:68:34:70:f3:c0:b2:29:
b0:a0:83:24:0a:52:c3:5c:5c:08:dd:0e:3d:88:64:
fe:de:02:da:85:02:8a:3f:09:9d:7c:27:4f:4a:12:
e3:60:f8:e2:45:84:b3:05:54:bb:cd:51:dc:49:7e:
94:7d:0d:66:e7:7c:ef:3a:39:bf:ae:4b:40:6d:1c:
1a:52:d2:c5:e2:c3:2d:93:86:47:c2:e8:3a:e4:8c:
ee:6f:2b:48:a5:e5:97:61:c2:19:8b:ad:d2:75:66:
22:b4:52:45:ce:e5:69:6a:0d:2f:bb:c5:e6:4e:d7:
8f:8b:e6:5c:11:f2:b0:cf:eb:dc:5e:c4:13:7c:59:
31:5b:1c:19:14:f1:5a:9d:24:0b:cf:4f:8c:41:87:
fd:5e:b4:9a:58:5c:1b:2e:53:17:7a:ee:bf:66:d4:
9c:8f:ef:00:ea:99:da:98:d1:0e:00:39:0d:3f:75:
de:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C0:3F:7A:A1:EF:93:45:3B:7B:C5:CC:9E:D6:48:11:ED:65:86:17
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/ecA_eqHvk0U7e8XMntZIEe1lhhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.128.0/21
45.92.92.0/22
45.138.132.0/22
185.83.112.0/22
185.169.6.0/24
185.173.104.0/22
185.205.203.0/24
185.208.78.0/23
193.3.231.0/24
IPv6:
2a05:9a00::/29
2a07:e440::/29
2a10:4340::/29
2a10:5c40::/29
2a10:6140::/29
2a10:b800::/29
Signature Algorithm: sha256WithRSAEncryption
0e:64:e8:d8:c7:ae:4b:55:68:1d:05:9f:e2:12:3d:b4:2f:ea:
66:cc:fc:6f:28:56:93:f1:98:2e:44:58:7b:25:06:39:ae:62:
ca:8b:79:0b:0d:82:a1:07:1e:95:aa:5c:c5:4f:ae:65:a9:f6:
ec:49:cd:71:62:6a:20:b0:4e:cb:98:3d:35:9c:d8:69:33:0e:
fe:45:76:89:b6:ce:a9:67:b6:fc:9d:fc:31:0e:61:20:f9:1a:
44:2b:45:76:6f:b0:7b:bc:e4:8a:81:a8:5c:5f:6b:b8:7c:54:
eb:5b:f9:50:7d:22:e5:3d:78:34:aa:77:ad:10:03:50:eb:78:
0d:db:cf:1e:b1:9a:9b:0e:79:c7:60:92:b8:21:56:c4:9b:c9:
29:12:81:76:1b:90:f3:a1:63:8a:ab:4d:03:3d:82:8f:0d:16:
04:6b:a4:34:eb:93:a5:9a:c8:6a:6b:d1:9c:f3:33:b4:8a:1c:
41:9c:bd:16:8a:fb:7c:1d:04:7f:e7:2d:33:2b:41:ee:4c:eb:
84:42:4e:41:0d:fe:64:5f:c3:19:07:2b:dd:27:7a:db:10:c9:
1a:26:60:ec:18:26:fd:e8:c2:e6:3c:5f:9b:a2:43:9d:25:a7:
4f:78:70:5f:4d:7a:0f:88:22:a1:75:89:c9:ac:14:3e:05:25:
3a:17:b4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 26 18:26:13 2024 by rpki-client on console-fra.rpki-client.org