Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/NnWw3gXX5CJBUouxexjGuBww-Ck.roa
File: NnWw3gXX5CJBUouxexjGuBww-Ck.roa (raw, json)
Hash identifier: 007iEBDGmxHA4RCcov8kUzs/lIy9vnpkWqGOe4/z9jw=
Subject key identifier: 36:75:B0:DE:05:D7:E4:22:41:52:8B:B1:7B:18:C6:B8:1C:30:F8:29
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DCC6505896836E40787FEC6D087221434
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/NnWw3gXX5CJBUouxexjGuBww-Ck.roa
Signing time: Wed 21 Feb 2024 15:59:49 +0000
ROA not before: Wed 21 Feb 2024 15:59:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.135.34.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
62.3.23.0/24 maxlen: 24
77.246.244.0/24 maxlen: 24
80.68.148.0/24 maxlen: 24
80.68.150.0/24 maxlen: 24
89.107.12.0/24 maxlen: 24
91.247.78.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
93.93.206.0/24 maxlen: 24
94.103.179.0/24 maxlen: 24
146.19.76.0/24 maxlen: 24
176.116.12.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
185.81.71.0/24 maxlen: 24
185.207.213.0/24 maxlen: 24
185.222.41.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
193.58.176.0/24 maxlen: 24
193.58.177.0/24 maxlen: 24
193.163.16.0/24 maxlen: 24
194.104.142.0/24 maxlen: 24
195.225.99.0/24 maxlen: 24
212.52.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cc:65:05:89:68:36:e4:07:87:fe:c6:d0:87:22:14:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 21 15:59:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3675b0de05d7e42241528bb17b18c6b81c30f829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:7c:c0:c5:0b:74:f8:02:9e:5e:d4:dd:50:
8a:cd:99:41:c7:87:88:fe:71:20:89:e3:95:26:04:
10:bf:f3:80:99:f1:c8:18:86:dd:3c:0c:22:a8:e0:
21:24:49:d7:f5:36:86:e4:c6:f6:e7:75:c8:94:2f:
1c:13:5c:80:fb:11:36:63:17:df:d1:88:9a:2e:23:
f4:c0:26:e9:86:38:e2:43:aa:08:0c:2a:1e:ae:d8:
73:f1:1c:05:81:a8:08:68:9f:a1:20:51:b0:06:53:
e2:c6:ee:8d:dd:19:8c:5a:85:c6:34:7f:0d:1f:0e:
c5:d4:9c:25:93:0a:7f:7f:b3:3d:ad:fa:3b:a4:70:
5d:92:cd:b5:cf:f5:9e:97:89:f1:7e:71:3d:a2:43:
1e:bc:15:36:c9:31:22:39:8e:ab:7e:79:86:79:4b:
cb:19:ae:73:0a:2a:65:9a:2a:5b:6b:b4:36:81:8c:
c3:9a:c9:24:22:e5:4f:c3:80:f1:41:90:35:64:ee:
f9:da:fb:e4:e6:75:fd:71:c2:7b:cb:2f:17:af:d5:
d4:3c:d2:e6:89:be:96:0c:dd:ab:17:8e:3e:2b:1d:
7b:b5:e8:ae:be:e2:29:4b:76:59:11:c9:4c:dc:18:
0c:bd:ba:01:b7:e6:97:56:3c:89:c8:a8:53:47:fb:
11:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:75:B0:DE:05:D7:E4:22:41:52:8B:B1:7B:18:C6:B8:1C:30:F8:29
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/NnWw3gXX5CJBUouxexjGuBww-Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.135.34.0/24
45.138.4.0-45.138.6.255
45.140.66.0/23
45.142.37.0/24
45.146.26.0/24
45.159.85.0/24
62.3.23.0/24
77.246.244.0/24
80.68.148.0/24
80.68.150.0/24
89.107.12.0/24
91.247.78.0/24
92.119.192.0/24
93.93.206.0/24
94.103.179.0/24
146.19.76.0/24
176.116.12.0/24
176.222.58.0/24
185.81.71.0/24
185.207.213.0/24
185.222.41.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
193.58.176.0/23
193.163.16.0/24
194.104.142.0/24
195.225.99.0/24
212.52.31.0/24
Signature Algorithm: sha256WithRSAEncryption
49:19:6f:6c:c0:f0:db:fe:53:a5:e7:61:6b:8e:c4:19:fe:24:
a6:8c:76:43:48:c1:f5:87:8e:64:41:bc:37:fb:4c:b6:6c:4e:
fa:3f:64:5c:26:ac:56:bb:83:31:73:00:6f:a3:81:46:cb:0b:
99:bf:97:17:68:8c:05:03:02:a5:69:73:da:3a:db:58:7c:33:
69:45:f0:23:b9:69:f2:f0:3c:b7:dc:ea:82:ff:e7:da:88:3f:
a9:25:a4:71:f2:d7:f7:14:32:68:b8:db:8f:c2:4e:49:7e:ee:
e2:4c:98:17:51:33:24:4e:e1:0c:49:f8:47:79:f8:d2:5d:ea:
ee:48:ba:d0:f2:85:90:70:a6:7d:d0:03:5c:02:f9:6c:91:a8:
3d:de:16:01:b4:66:13:c9:ca:8b:b3:43:55:0d:40:7b:6f:bc:
49:20:26:83:b4:12:7f:1a:cc:31:2f:83:e1:68:b1:24:6a:c0:
0f:2b:a0:70:44:81:d0:1e:30:f3:17:99:8b:2b:55:e7:07:c1:
2f:18:6d:62:be:c3:29:12:49:0a:e6:8e:8f:56:30:61:d2:93:
09:93:b3:d8:b4:2a:30:90:bd:f6:28:b3:f4:69:9e:77:b7:4a:
04:cb:0d:bd:98:df:e6:8f:e7:b1:7e:72:4c:81:c6:53:e2:8f:
c7:40:5e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org