Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/mePWnRfxtqZL4chi7lUSLQWhU8k.roa
File: mePWnRfxtqZL4chi7lUSLQWhU8k.roa (raw, json)
Hash identifier: EtEtNOfLqWG/YTt+l2Dx674oeQxo2RpteqTZCu5f3wU=
Subject key identifier: 99:E3:D6:9D:17:F1:B6:A6:4B:E1:C8:62:EE:55:12:2D:05:A1:53:C9
Certificate issuer: /CN=85aaadc568f6c928fd764d421d42c71cf5791954
Certificate serial: 018F8557094C00266E9B07C8926873D27E22
Authority key identifier: 85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/mePWnRfxtqZL4chi7lUSLQWhU8k.roa
Signing time: Fri 17 May 2024 06:57:04 +0000
ROA not before: Fri 17 May 2024 06:57:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44092
IP address blocks: 45.145.200.0/22 maxlen: 22
45.145.200.0/24 maxlen: 24
45.145.201.0/24 maxlen: 24
45.145.202.0/24 maxlen: 24
45.145.203.0/24 maxlen: 24
77.242.128.0/20 maxlen: 24
77.242.128.0/24 maxlen: 24
77.242.129.0/24 maxlen: 24
77.242.130.0/24 maxlen: 24
77.242.131.0/24 maxlen: 24
77.242.132.0/24 maxlen: 24
77.242.133.0/24 maxlen: 24
77.242.134.0/24 maxlen: 24
77.242.135.0/24 maxlen: 24
77.242.136.0/24 maxlen: 24
77.242.137.0/24 maxlen: 24
77.242.138.0/24 maxlen: 24
77.242.139.0/24 maxlen: 24
77.242.140.0/24 maxlen: 24
77.242.141.0/24 maxlen: 24
77.242.142.0/24 maxlen: 24
77.242.143.0/24 maxlen: 24
85.208.200.0/22 maxlen: 22
85.208.200.0/24 maxlen: 24
85.208.201.0/24 maxlen: 24
85.208.202.0/24 maxlen: 24
85.208.203.0/24 maxlen: 24
89.37.70.0/23 maxlen: 24
89.37.70.0/24 maxlen: 24
89.37.71.0/24 maxlen: 24
178.23.8.0/21 maxlen: 24
185.56.156.0/22 maxlen: 24
185.171.232.0/22 maxlen: 22
185.171.232.0/24 maxlen: 24
185.171.233.0/24 maxlen: 24
185.171.234.0/24 maxlen: 24
185.171.235.0/24 maxlen: 24
185.178.252.0/22 maxlen: 22
185.191.104.0/22 maxlen: 22
185.191.104.0/24 maxlen: 24
185.191.105.0/24 maxlen: 24
185.191.106.0/24 maxlen: 24
185.191.107.0/24 maxlen: 24
185.215.144.0/22 maxlen: 22
185.215.144.0/24 maxlen: 24
185.215.145.0/24 maxlen: 24
185.215.146.0/24 maxlen: 24
185.215.147.0/24 maxlen: 24
185.219.116.0/22 maxlen: 22
185.219.116.0/24 maxlen: 24
185.219.117.0/24 maxlen: 24
185.219.118.0/24 maxlen: 24
185.219.119.0/24 maxlen: 24
185.248.227.0/24 maxlen: 24
185.255.29.0/24 maxlen: 24
188.191.56.0/22 maxlen: 24
188.191.56.0/24 maxlen: 24
188.191.57.0/24 maxlen: 24
188.191.58.0/24 maxlen: 24
188.191.59.0/24 maxlen: 24
217.28.64.0/22 maxlen: 22
217.28.64.0/24 maxlen: 24
217.28.65.0/24 maxlen: 24
217.28.66.0/24 maxlen: 24
217.28.67.0/24 maxlen: 24
2a02:53e0::/32 maxlen: 32
2a05:3680::/29 maxlen: 29
2a0b:7b80::/29 maxlen: 29
2a0f:de80::/29 maxlen: 29
2a13:56c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 05 Sep 2024 13:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:57:09:4c:00:26:6e:9b:07:c8:92:68:73:d2:7e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85aaadc568f6c928fd764d421d42c71cf5791954
Validity
Not Before: May 17 06:57:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99e3d69d17f1b6a64be1c862ee55122d05a153c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ba:9e:fe:1f:cb:39:52:0c:ad:79:82:db:69:
c3:06:95:a1:85:f9:9d:fe:79:26:76:d2:69:d3:33:
fd:63:7d:4f:11:7a:27:b7:a0:40:47:4d:c6:da:38:
ca:f9:6c:be:a8:35:67:2f:49:f2:e1:c8:7d:93:5a:
ba:5b:fa:0a:98:ea:53:e0:c1:16:fb:b0:d0:06:4d:
8a:0c:04:02:f0:2e:ca:88:86:d0:ed:a4:7f:61:12:
17:c3:c6:f5:2c:2a:4a:72:9b:23:39:5a:62:aa:f0:
76:b9:8d:30:90:e3:a5:82:2a:8c:7d:36:10:db:c4:
6f:61:a5:4f:0a:f7:ba:27:9d:2a:64:21:13:fc:3e:
36:0b:84:9c:3e:d8:22:7e:ec:29:3e:98:87:68:33:
5c:75:7a:33:17:ce:a3:af:58:9f:0c:89:b4:97:ca:
03:33:3f:94:f8:fe:95:4e:ac:30:fe:fe:1b:06:3c:
09:79:f1:93:79:13:a4:01:b7:ba:f3:69:ba:8f:59:
cc:f3:19:d6:01:16:f7:95:97:96:b0:bd:e1:75:fd:
81:00:ec:2c:f7:1c:65:05:00:82:c7:bb:2b:49:c9:
d8:4e:3a:87:a3:69:d6:fd:6b:b2:a1:b1:76:a2:78:
1b:0a:55:c4:d4:ed:84:36:b5:52:26:da:b4:52:df:
a3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E3:D6:9D:17:F1:B6:A6:4B:E1:C8:62:EE:55:12:2D:05:A1:53:C9
X509v3 Authority Key Identifier:
keyid:85:AA:AD:C5:68:F6:C9:28:FD:76:4D:42:1D:42:C7:1C:F5:79:19:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haqtxWj2ySj9dk1CHULHHPV5GVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/mePWnRfxtqZL4chi7lUSLQWhU8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/0ebdd4-2617-4d31-a8c3-45ea38da2218/1/haqtxWj2ySj9dk1CHULHHPV5GVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.200.0/22
77.242.128.0/20
85.208.200.0/22
89.37.70.0/23
178.23.8.0/21
185.56.156.0/22
185.171.232.0/22
185.178.252.0/22
185.191.104.0/22
185.215.144.0/22
185.219.116.0/22
185.248.227.0/24
185.255.29.0/24
188.191.56.0/22
217.28.64.0/22
IPv6:
2a02:53e0::/32
2a05:3680::/29
2a0b:7b80::/29
2a0f:de80::/29
2a13:56c0::/29
Signature Algorithm: sha256WithRSAEncryption
11:d7:c6:1b:72:c0:63:1f:34:7f:5c:3a:68:56:cb:7c:0a:43:
59:19:38:8f:6f:c4:e0:01:f2:9d:ee:ff:cf:c7:03:f5:a3:e0:
33:0b:00:30:e1:27:33:01:e1:cb:65:33:e9:fc:17:f3:c1:db:
8c:9d:fe:c9:0c:47:3c:c8:7c:ec:1e:b7:05:c9:2d:5f:0f:27:
82:84:43:8a:d7:10:df:95:50:c5:95:20:88:6e:ab:58:dd:64:
aa:ee:5f:a5:15:70:7a:dd:e0:37:53:e4:0c:72:c5:bc:3e:64:
c2:cc:6a:68:db:34:42:dd:f0:95:54:c9:96:e3:70:cd:3b:da:
83:e6:ed:ff:d2:ee:fe:66:ba:a4:cc:18:1b:6e:d6:5a:10:0b:
73:c0:1a:8d:41:d6:7e:80:88:d3:15:ed:f7:0c:96:a3:c7:1c:
e8:32:c4:f0:b1:52:38:57:c9:3f:9e:6d:14:65:9a:b5:24:cd:
86:56:29:4a:70:f2:b6:8f:b9:50:b4:b4:4a:29:93:08:0d:29:
4e:7b:13:c5:d9:69:22:42:07:5d:34:61:5a:db:e7:68:ac:bc:
b9:60:b8:71:f3:1a:37:00:a4:ff:d7:6b:a8:37:17:63:97:ba:
0c:6c:d7:af:79:85:ac:74:d6:ce:a3:98:bf:c2:27:1f:8b:ec:
ee:70:c8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 14:38:44 2024 by rpki-client on console-fra.rpki-client.org