Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/05oQZ0K5t20mteT6REfh_LyTnRA.roa
File: 05oQZ0K5t20mteT6REfh_LyTnRA.roa (raw, json)
Hash identifier: +GwSMZ+G90B/7B2s2MHIa6NlLt0VWIxM3kPIlN36Jzk=
Subject key identifier: D3:9A:10:67:42:B9:B7:6D:26:B5:E4:FA:44:47:E1:FC:BC:93:9D:10
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DEBD9CF574C0687A9E906BC6B2ACA3648
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/05oQZ0K5t20mteT6REfh_LyTnRA.roa
Signing time: Tue 27 Feb 2024 18:35:36 +0000
ROA not before: Tue 27 Feb 2024 18:35:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
176.126.112.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 08:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:d9:cf:57:4c:06:87:a9:e9:06:bc:6b:2a:ca:36:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 27 18:35:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d39a106742b9b76d26b5e4fa4447e1fcbc939d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:98:33:52:4b:b0:e5:7b:69:f1:57:1e:04:f6:
68:4e:cf:fa:1c:dc:09:f6:da:aa:58:c5:9e:3d:98:
fc:a6:80:54:f2:ae:df:9a:8b:12:a8:bb:d5:0b:2f:
59:c9:43:c3:0e:36:06:bd:98:fa:9c:f5:e1:53:6a:
6f:34:6c:fd:38:2c:9c:2e:87:e2:6d:ae:1b:e0:0b:
0b:66:45:c1:83:e2:8a:5b:1b:e0:57:aa:b9:e2:3f:
f8:a9:19:f3:71:1f:ad:2e:92:03:89:92:67:cb:ba:
84:17:b4:fb:0c:22:6d:d7:e6:23:70:c8:e3:5b:2e:
51:7d:7c:c8:5c:10:e4:b2:40:2e:02:8f:2b:c3:80:
28:ac:a3:4a:b5:95:d5:a5:31:a4:27:a3:fe:eb:d4:
9b:fd:c0:e4:1b:46:85:8c:58:7f:3d:56:9f:20:e0:
6b:d7:1c:0f:ea:5c:de:f6:d8:0e:34:fd:95:d9:ec:
a7:cd:18:1e:c7:d1:99:99:9d:52:85:58:c4:20:ca:
47:4a:37:4a:d5:98:e3:52:9b:c0:66:db:a7:ab:1f:
fd:53:30:80:29:d8:49:8c:bc:1d:3c:52:cd:b1:4a:
19:cd:4d:b6:50:41:6e:e5:ed:7b:5f:e7:2a:06:ba:
7d:02:5d:09:f2:e3:5b:24:43:0e:51:25:49:5b:2f:
ca:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9A:10:67:42:B9:B7:6D:26:B5:E4:FA:44:47:E1:FC:BC:93:9D:10
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/05oQZ0K5t20mteT6REfh_LyTnRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.52.0/24
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.5.0/24
176.116.20.0/24
176.116.23.0/24
176.126.112.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
71:d7:88:f7:c8:22:dd:5c:e6:8f:a4:52:c5:b2:c4:ef:43:db:
6b:79:1c:ae:92:f9:d9:7e:45:91:ff:1c:10:04:b2:9b:a0:f2:
50:de:65:09:72:e0:08:0b:32:3e:61:58:71:a2:b0:23:38:ca:
3a:7f:63:f0:69:67:0e:85:76:b5:77:df:27:4e:6d:5d:82:dc:
0f:a3:51:d5:26:ec:1a:06:a8:17:36:a4:ce:00:c9:91:85:5f:
f6:65:54:b6:fd:e9:ae:51:d2:d8:2d:6f:ad:d3:ba:4a:bb:a4:
27:14:88:76:d8:b1:d2:03:31:ff:da:5a:49:95:a3:71:0a:ec:
b0:2a:70:16:a3:f0:89:2e:17:9f:3c:5a:ff:d7:51:9d:6b:96:
81:2a:5f:5b:01:43:1f:e3:e6:12:74:5b:bc:8c:cf:a5:26:18:
9f:1d:a4:3a:36:cb:af:e2:40:04:5a:a7:7d:bc:0a:e0:c9:b8:
91:81:c4:39:e5:ec:02:97:21:be:13:bc:6a:14:af:66:bc:3f:
87:df:aa:aa:9b:30:96:3a:6e:1d:9b:41:fd:b2:d1:15:43:7f:
8a:cc:8a:20:85:35:86:f4:8f:27:15:07:d3:91:f6:e2:2f:84:
0d:ba:04:0c:e3:c3:e8:57:c2:f4:32:b7:c6:86:9a:f9:04:66:
c8:d1:f6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org