Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/T51Ev9z0A_KYQV4T2bUhtidT68o.roa
File: T51Ev9z0A_KYQV4T2bUhtidT68o.roa (raw, json)
Hash identifier: IVQx4IkTPTw9L1aT3a4Ngssk5iepyjNeFM7kJuOMg+w=
Subject key identifier: 4F:9D:44:BF:DC:F4:03:F2:98:41:5E:13:D9:B5:21:B6:27:53:EB:CA
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DADBE8B8C96E5DBB8CB24952C3B6132D4
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/T51Ev9z0A_KYQV4T2bUhtidT68o.roa
Signing time: Thu 15 Feb 2024 17:09:22 +0000
ROA not before: Thu 15 Feb 2024 17:09:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 17:53:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ad:be:8b:8c:96:e5:db:b8:cb:24:95:2c:3b:61:32:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 15 17:09:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f9d44bfdcf403f298415e13d9b521b62753ebca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3b:41:e5:3b:70:01:bc:1a:19:bc:80:24:fc:
82:19:03:6a:f2:19:83:5d:51:98:1f:8f:79:f1:be:
6c:a6:24:61:f4:9d:67:aa:97:af:91:c7:bc:be:ed:
20:e6:98:4c:b2:60:76:87:ec:71:34:bd:dc:ba:d1:
47:8c:87:07:97:dc:6d:7a:8f:72:be:6f:61:7f:47:
e6:b5:78:c1:cb:91:a3:ee:6b:12:7a:5b:4c:d9:88:
47:26:d9:75:89:c7:b3:7c:16:32:26:eb:bb:56:2a:
e1:95:6a:24:c6:20:be:d5:a2:0c:f2:27:2a:17:79:
08:ad:4f:3f:7c:9a:ce:11:82:61:a9:8e:09:98:4c:
3f:0c:32:ec:1e:5d:dc:aa:4b:f3:6f:e1:28:7b:ea:
d1:a5:19:88:d8:a1:30:59:f2:5c:14:40:d0:70:bb:
fb:c5:e6:79:8f:e6:02:91:45:8f:7d:e8:23:56:95:
98:c3:07:0f:9f:c1:23:b7:a8:d4:72:76:69:88:f7:
35:76:59:9a:90:87:94:38:44:90:a6:59:ae:e7:fa:
b1:d3:7a:54:e4:3b:6e:75:50:3d:b4:7f:ec:6b:7c:
df:b8:da:02:da:59:0c:93:88:5b:6a:1e:6e:65:b7:
b9:45:3d:03:73:c1:0b:5a:ad:7f:97:ad:90:ab:c6:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:9D:44:BF:DC:F4:03:F2:98:41:5E:13:D9:B5:21:B6:27:53:EB:CA
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/T51Ev9z0A_KYQV4T2bUhtidT68o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.138.7.0/24
45.138.212.0/24
45.138.215.0/24
45.149.130.0/23
45.152.118.0/23
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.20.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:89:3d:9f:c1:1f:98:83:bf:80:f3:b6:8c:35:44:52:73:b4:
45:af:72:35:84:8f:97:c8:b5:2e:3d:77:44:df:89:56:df:44:
9a:48:af:ae:b4:fc:f2:9e:3a:87:7a:0d:7b:4c:8f:1d:52:64:
72:82:00:94:0e:4b:a3:56:4c:83:64:b3:65:88:53:c4:a9:b4:
d7:97:10:a1:ab:d7:27:8b:df:db:e3:47:32:9e:ed:56:a1:5b:
c9:6f:e6:cf:56:f5:f3:38:e3:38:bd:10:ff:71:b8:12:b6:b1:
d7:b5:95:21:ec:b6:b8:6c:3e:da:22:a1:c9:19:76:99:e2:28:
16:39:f0:da:59:13:83:55:9f:4e:5b:fd:ab:41:6a:84:cc:9e:
e7:cc:09:fb:76:97:a4:2b:dd:f1:76:a2:ad:80:1f:94:37:54:
e4:0c:c3:96:06:5f:31:ee:de:71:5a:39:5f:b8:74:a6:b3:8a:
1b:96:cf:50:89:dc:29:2c:4d:ee:f8:fe:2f:4c:c0:ae:68:5d:
85:d7:47:71:e2:29:17:5f:fa:42:a6:8c:1a:78:64:54:93:c1:
74:94:30:23:52:93:b0:0e:9d:8b:ae:37:a9:c2:10:57:03:47:
3f:41:62:a0:d1:55:c4:4c:1c:ec:c8:4e:41:a1:f6:8a:e3:f4:
39:6e:66:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org