Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8OuAST8ptkqoXgsRwg9Hu0dZXvw.roa
File: 8OuAST8ptkqoXgsRwg9Hu0dZXvw.roa (raw, json)
Hash identifier: ANmUvDOnHMwKe4UK3+2Phf81NsYGaYsps9w4l0/Ub/4=
Subject key identifier: F0:EB:80:49:3F:29:B6:4A:A8:5E:0B:11:C2:0F:47:BB:47:59:5E:FC
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D692B076BBA6D3642D26968A57CEF9B22
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8OuAST8ptkqoXgsRwg9Hu0dZXvw.roa
Signing time: Fri 02 Feb 2024 09:34:04 +0000
ROA not before: Fri 02 Feb 2024 09:34:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 2.59.49.0/24 maxlen: 24
45.10.64.0/22 maxlen: 22
45.10.80.0/22 maxlen: 22
45.132.128.0/24 maxlen: 24
45.132.129.0/24 maxlen: 24
45.138.213.0/24 maxlen: 24
45.138.214.0/24 maxlen: 24
45.139.52.0/24 maxlen: 24
45.139.53.0/24 maxlen: 24
45.139.55.0/24 maxlen: 24
45.146.24.0/24 maxlen: 24
45.146.25.0/24 maxlen: 24
45.146.27.0/24 maxlen: 24
45.147.12.0/24 maxlen: 24
45.147.13.0/24 maxlen: 24
45.147.14.0/24 maxlen: 24
45.147.15.0/24 maxlen: 24
45.149.129.0/24 maxlen: 24
45.152.116.0/24 maxlen: 24
45.152.117.0/24 maxlen: 24
45.159.84.0/24 maxlen: 24
45.159.87.0/24 maxlen: 24
91.206.68.0/24 maxlen: 24
91.236.121.0/24 maxlen: 24
176.222.56.0/24 maxlen: 24
176.222.57.0/24 maxlen: 24
176.222.59.0/24 maxlen: 24
185.188.41.0/24 maxlen: 24
195.216.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 05 Feb 2024 18:41:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:69:2b:07:6b:ba:6d:36:42:d2:69:68:a5:7c:ef:9b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 2 09:34:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0eb80493f29b64aa85e0b11c20f47bb47595efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d2:86:41:26:5a:0c:6e:d9:d3:94:e7:c2:30:
14:3c:4e:6b:9d:ee:fd:7c:b6:9b:63:c0:a3:1d:09:
e6:9a:2f:fa:41:b6:58:9b:05:d7:30:52:1a:e5:ee:
f5:b9:75:4e:8d:b5:9f:35:86:65:ae:a3:6d:31:7b:
59:67:45:24:29:dd:23:07:90:46:16:e4:f8:c9:83:
4e:78:91:ef:e3:10:1b:b0:02:dc:0c:31:fa:9e:a1:
2c:08:7c:72:32:38:b9:a6:a6:7f:3f:92:2c:20:f0:
e4:b8:97:70:d1:e3:c3:09:8c:a4:bf:eb:83:bc:bf:
7e:24:0a:64:0b:d1:88:16:b2:5a:0b:9c:3a:8b:4c:
a3:40:de:21:03:79:ff:0e:42:8f:ee:2c:34:1f:fe:
71:0f:5d:c2:2a:37:56:91:3f:9c:c7:36:83:ef:7c:
ac:30:00:d6:66:df:43:be:d3:5c:ad:2d:e3:65:a0:
a6:cf:b3:00:e1:25:e2:e2:92:55:f0:71:09:32:3c:
ae:40:3c:6f:8a:d1:68:a4:8c:f1:67:96:00:d4:f9:
6d:7f:e6:83:06:45:a2:75:7e:43:08:4d:ae:a7:7f:
fa:f6:39:13:47:79:59:f6:c2:56:16:f3:89:dc:24:
24:6a:d4:c3:11:af:21:23:ab:d4:e6:4c:0f:97:52:
a7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EB:80:49:3F:29:B6:4A:A8:5E:0B:11:C2:0F:47:BB:47:59:5E:FC
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/8OuAST8ptkqoXgsRwg9Hu0dZXvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.49.0/24
45.10.64.0/22
45.10.80.0/22
45.132.128.0/23
45.138.213.0-45.138.214.255
45.139.52.0/23
45.139.55.0/24
45.146.24.0/23
45.146.27.0/24
45.147.12.0/22
45.149.129.0/24
45.152.116.0/23
45.159.84.0/24
45.159.87.0/24
91.206.68.0/24
91.236.121.0/24
176.222.56.0/23
176.222.59.0/24
185.188.41.0/24
195.216.132.0/22
Signature Algorithm: sha256WithRSAEncryption
39:b1:53:0d:33:fd:44:e8:20:a8:22:dc:aa:51:3d:a6:0f:81:
2a:b1:0f:f3:39:c3:05:8e:c4:5f:c1:11:cf:ce:36:41:d3:e1:
a0:0e:59:6c:10:cc:36:9d:46:99:7f:ca:46:59:5b:04:b5:10:
e2:d7:41:54:20:da:d2:5b:77:fb:4b:38:25:26:db:f3:0a:7a:
02:a3:fd:c9:02:bc:2f:91:fb:1c:be:02:d7:3a:d3:0f:ec:36:
14:3e:62:26:07:ff:75:7c:7d:b3:75:78:01:9d:00:95:50:00:
ab:53:b9:a3:df:14:00:04:b0:08:6c:57:dc:39:85:35:ec:8b:
2c:2b:17:35:c3:49:3b:5d:c1:fb:2d:36:ea:af:95:5c:9f:f8:
29:cd:da:37:f5:5f:58:6d:0d:b3:07:1d:14:8d:55:5e:c4:49:
98:51:e9:dc:b9:bc:3d:45:cc:6e:5d:7d:93:24:a7:4a:95:4f:
f9:04:49:3d:d3:72:a1:6a:38:67:9e:2a:99:0c:22:35:67:ec:
97:86:5d:0f:97:ee:95:33:41:7a:8c:b7:97:c5:32:3c:0d:3f:
e3:75:0b:6f:7c:86:2a:3d:09:39:5e:04:f8:3f:d3:78:21:b1:
d3:ba:a6:90:15:ad:55:74:07:21:4e:5a:37:00:05:e2:69:43:
0f:ee:20:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org