Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GEXHcfHnOJK8ehM6w6ibbpSlq4A.roa
File: GEXHcfHnOJK8ehM6w6ibbpSlq4A.roa (raw, json)
Hash identifier: UlGOSGL4zu3ZisD+thXnzVS+NmSrZbtiiQ399CezEYU=
Subject key identifier: 18:45:C7:71:F1:E7:38:92:BC:7A:13:3A:C3:A8:9B:6E:94:A5:AB:80
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D84C45AF713CB1D5E1C904330D8876801
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GEXHcfHnOJK8ehM6w6ibbpSlq4A.roa
Signing time: Wed 07 Feb 2024 18:11:17 +0000
ROA not before: Wed 07 Feb 2024 18:11:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Feb 2024 17:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:c4:5a:f7:13:cb:1d:5e:1c:90:43:30:d8:87:68:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 7 18:11:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1845c771f1e73892bc7a133ac3a89b6e94a5ab80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:69:e4:bd:d3:5c:53:6e:f5:f2:70:c6:4f:ff:
90:2a:c8:78:17:0f:4c:d3:5f:44:ee:17:e9:80:bb:
8b:45:3c:5e:d5:a6:3e:13:32:3c:c6:67:f3:0b:0c:
8b:46:55:19:01:25:51:d7:6e:04:e3:c9:94:1a:96:
f8:21:ee:1e:a1:92:cc:88:36:29:a9:91:13:08:f3:
fc:56:b2:b8:2d:1e:4f:c4:82:e8:6f:5d:af:0d:80:
2e:c6:3e:76:be:4e:8a:5a:ce:b5:5b:20:da:c0:1c:
70:23:c7:b8:18:d4:16:1d:43:83:ab:03:09:ce:b3:
83:71:ee:0c:9a:5a:d8:17:fd:4a:17:a2:ae:71:5b:
f3:95:07:36:9d:2d:a3:9f:c5:46:ec:69:f7:81:fa:
f5:0c:3f:ae:1c:f0:ff:37:b2:32:34:8a:ac:ae:ff:
ff:a5:9c:09:36:b5:20:5d:3c:68:8d:78:b2:06:e0:
25:a2:02:61:1d:49:07:cc:6e:3f:41:3d:d5:86:78:
a8:43:0a:7f:f3:79:98:7c:30:5a:d6:c5:0c:87:9e:
40:65:26:95:74:93:47:43:cc:0b:d3:23:29:15:3d:
64:57:6a:f9:92:91:a5:af:4e:67:1b:de:3d:1c:93:
c5:0f:ef:5b:c3:de:be:8c:e0:4a:8b:5f:1d:78:c3:
3e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:45:C7:71:F1:E7:38:92:BC:7A:13:3A:C3:A8:9B:6E:94:A5:AB:80
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/GEXHcfHnOJK8ehM6w6ibbpSlq4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.138.4.0-45.138.6.255
45.142.37.0/24
45.146.26.0/24
45.159.85.0/24
80.68.150.0/24
91.247.78.0/24
92.119.192.0/24
94.103.179.0/24
176.222.58.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.163.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:b9:1b:7f:f2:89:bd:75:27:65:f3:2e:68:1a:b3:31:a6:97:
68:d4:a9:52:77:97:47:25:4d:46:ab:80:c9:cd:38:c5:8a:b2:
7c:f6:79:50:ad:13:b9:11:83:c0:f7:4e:5e:ef:d0:16:ee:38:
79:cb:9b:61:56:c5:2b:07:df:c2:72:2a:99:6b:52:dc:55:b7:
42:47:90:e7:f9:4e:ac:2d:5c:3a:14:68:e7:77:42:0f:d0:a2:
ba:fd:be:0b:77:b9:3d:62:db:35:e7:18:dc:92:f3:34:73:1c:
55:c1:1a:bf:63:2c:b9:09:c5:45:f9:65:e0:2b:d4:8f:fc:c0:
db:45:22:50:e5:f4:e1:f6:af:ac:0e:cb:e8:99:38:ec:2b:00:
7c:04:df:db:44:e1:9f:ab:51:f9:ab:18:2e:77:99:85:3b:a9:
77:e3:be:8e:0d:98:95:9e:98:92:b9:01:6d:04:0d:9d:79:74:
4b:04:5d:ab:44:14:1f:16:bc:e3:67:f0:60:f4:87:14:7a:84:
6b:df:00:05:37:00:2e:b3:a6:c1:a9:89:9c:45:86:dc:7f:b0:
22:eb:9a:fe:05:ae:f5:cd:5d:72:ca:d9:ee:83:1f:88:9c:a2:
91:f1:2f:00:0d:79:25:0b:a2:85:72:4c:ce:5b:76:cf:bf:c9:
15:07:7a:b4
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgISAY2ExFr3E8sdXhyQQzDYh2gBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjA3MTgxMTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODQ1Yzc3MWYxZTczODkyYmM3YTEzM2FjM2E4OWI2ZTk0YTVhYjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGnkvdNcU2718nDGT/+QKsh4Fw9M
019E7hfpgLuLRTxe1aY+EzI8xmfzCwyLRlUZASVR124E48mUGpb4Ie4eoZLMiDYp
qZETCPP8VrK4LR5PxILob12vDYAuxj52vk6KWs61WyDawBxwI8e4GNQWHUODqwMJ
zrODce4MmlrYF/1KF6KucVvzlQc2nS2jn8VG7Gn3gfr1DD+uHPD/N7IyNIqsrv//
pZwJNrUgXTxojXiyBuAlogJhHUkHzG4/QT3VhnioQwp/83mYfDBa1sUMh55AZSaV
dJNHQ8wL0yMpFT1kV2r5kpGlr05nG949HJPFD+9bw96+jOBKi18deMM+EwIDAQAB
o4ICgzCCAn8wHQYDVR0OBBYEFBhFx3Hx5ziSvHoTOsOom26UpauAMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvR0VYSGNmSG5PSks4ZWhNNnc2aWJicFNscTRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGYBggrBgEFBQcBBwEB/wSBiDCBhTCBggQCAAEwfAMEAC1U
sgMEAC2BATAMAwQALYGBAwQCLYGAAwQALYQzMAwDBAItigQDBAAtigYDBAAtjiUD
BAAtkhoDBAAtn1UDBABQRJYDBABb904DBABcd8ADBABeZ7MDBACw3joDBAC53ikD
BALBIKQDBADBJOcDBADBNakDBADBoxAwDQYJKoZIhvcNAQELBQADggEBAKC5G3/y
ib11J2XzLmgaszGml2jUqVJ3l0clTUargMnNOMWKsnz2eVCtE7kRg8D3Tl7v0Bbu
OHnLm2FWxSsH38JyKplrUtxVt0JHkOf5TqwtXDoUaOd3Qg/Qorr9vgt3uT1i2zXn
GNyS8zRzHFXBGr9jLLkJxUX5ZeAr1I/8wNtFIlDl9OH2r6wOy+iZOOwrAHwE39tE
4Z+rUfmrGC53mYU7qXfjvo4NmJWemJK5AW0EDZ15dEsEXatEFB8WvONn8GD0hxR6
hGvfAAU3AC6zpsGpiZxFhtx/sCLrmv4FrvXNXXLK2e6DH4icopHxLwANeSULooVy
TM5bds+/yRUHerQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org