Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/11OAFIfsLO8ouYH-uwni_1QK5Zs.roa
File: 11OAFIfsLO8ouYH-uwni_1QK5Zs.roa (raw, json)
Hash identifier: g+hZ86kR+zwo9WhImFIyQUbeqh8w0vOb7OqVz1VYPFo=
Subject key identifier: D7:53:80:14:87:EC:2C:EF:28:B9:81:FE:BB:09:E2:FF:54:0A:E5:9B
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019363F65C1CE7AD59628EEE626B180EF5CA
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/11OAFIfsLO8ouYH-uwni_1QK5Zs.roa
Signing time: Mon 25 Nov 2024 15:35:10 +0000
ROA not before: Mon 25 Nov 2024 15:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.51.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.2.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.9.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
176.126.109.0/24 maxlen: 24
176.126.112.0/24 maxlen: 24
176.126.115.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.33.67.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Dec 2024 20:14:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:f6:5c:1c:e7:ad:59:62:8e:ee:62:6b:18:0e:f5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Nov 25 15:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d753801487ec2cef28b981febb09e2ff540ae59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:99:b2:11:78:7c:9e:d6:f3:c2:b0:42:02:c4:
d0:ec:49:04:91:b8:47:83:dd:4d:b2:14:af:48:d1:
a2:7f:53:4b:3c:61:6b:8d:48:ea:f4:2f:ec:f6:da:
3f:b8:01:06:ff:30:01:01:59:b8:b5:03:af:50:ff:
bc:86:a1:68:06:3c:6c:3f:56:03:e2:5e:aa:7f:01:
a7:8d:55:73:95:c7:1b:44:35:30:56:dd:5d:b9:4f:
5a:bd:20:60:00:db:26:e5:78:33:e3:9c:e5:71:f5:
db:3b:5f:85:06:98:c6:24:7f:6b:be:fc:93:87:36:
ea:1f:98:fe:f8:dc:c0:d7:10:de:75:da:97:c5:4c:
2f:90:e9:bc:05:b4:54:4d:d8:97:d7:2b:a8:f9:b7:
20:07:8d:7d:a0:14:0b:d6:8f:b5:c2:58:21:29:5d:
4a:e1:16:ba:29:47:1c:8b:6b:a3:dd:fd:64:55:9a:
f9:02:87:e6:20:e4:8c:f3:4a:2f:6a:ea:c0:f9:5b:
e4:e3:63:36:41:c7:b2:b2:4e:09:be:96:38:07:1c:
a9:e6:27:4d:78:24:f1:6b:c4:9a:43:b9:97:dd:92:
68:ff:1d:3c:6f:6e:51:68:f6:5f:81:63:f3:46:ca:
de:e4:70:41:26:3d:8f:85:06:ca:40:72:be:0a:7b:
86:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:53:80:14:87:EC:2C:EF:28:B9:81:FE:BB:09:E2:FF:54:0A:E5:9B
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/11OAFIfsLO8ouYH-uwni_1QK5Zs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.51.0-83.138.52.255
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.2.0/24
176.116.5.0/24
176.116.9.0/24
176.116.20.0/24
176.116.23.0/24
176.126.109.0/24
176.126.112.0/24
176.126.115.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.33.67.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
56:6d:5c:fa:32:19:04:94:b3:31:20:6d:d6:8c:2d:cc:d5:a0:
5e:d3:eb:68:df:6d:ad:96:20:04:60:1a:64:03:08:6d:bf:75:
2b:cc:79:79:46:dc:40:85:b9:81:d9:d2:ec:8f:cf:7e:5e:7a:
b8:f5:e1:30:8f:d5:a0:54:7c:a8:2a:ef:56:bf:b0:4f:08:58:
9a:33:64:bc:db:c6:05:cb:ce:06:ee:c7:ed:41:b5:6d:1c:50:
b4:fe:89:78:a1:35:a4:5f:aa:04:f9:f8:e5:d8:bf:bf:ee:bb:
a3:ac:8c:14:42:70:a0:c1:73:2e:3a:fe:63:69:09:62:d3:9e:
29:aa:8a:7a:cf:0e:19:51:f6:4f:b6:f9:e6:f1:85:ff:e4:01:
2f:fd:8e:bc:d2:cd:10:28:91:01:80:50:5f:56:af:0b:97:f5:
39:7a:8b:1f:18:6d:b4:20:c1:be:56:7d:0a:b0:b1:23:f5:a7:
41:11:9e:86:76:b6:32:b5:4f:7d:3f:2b:40:11:f1:01:6f:16:
bd:94:d3:ad:f3:fc:f3:af:31:c0:13:1d:82:da:7b:a4:a4:9f:
dc:18:ed:4e:f2:f6:ae:1e:07:6c:a8:62:69:0d:24:55:2b:c2:
9c:8d:d2:01:52:4a:09:ff:2d:91:3e:a3:3b:7b:23:64:45:68:
b2:a8:9e:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:55:03 2025 by rpki-client