Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ojPiHQXNLyKWXHz5c2rmirO1HO8.roa
File: ojPiHQXNLyKWXHz5c2rmirO1HO8.roa (raw, json)
Hash identifier: /nw/rK6vREDcIO5zN4pCQrHSzs6bEiFuwqlBvm8Nl7s=
Subject key identifier: A2:33:E2:1D:05:CD:2F:22:96:5C:7C:F9:73:6A:E6:8A:B3:B5:1C:EF
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DF412CD9E6E46F3B1BC8708A1AC6A1E18
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ojPiHQXNLyKWXHz5c2rmirO1HO8.roa
Signing time: Thu 29 Feb 2024 08:54:49 +0000
ROA not before: Thu 29 Feb 2024 08:54:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 45.15.239.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.132.39.0/24 maxlen: 24
45.135.35.0/24 maxlen: 24
45.138.7.0/24 maxlen: 24
45.138.156.0/24 maxlen: 24
45.138.212.0/24 maxlen: 24
45.138.215.0/24 maxlen: 24
45.140.65.0/24 maxlen: 24
45.149.130.0/24 maxlen: 24
45.149.131.0/24 maxlen: 24
45.152.118.0/24 maxlen: 24
45.152.119.0/24 maxlen: 24
83.138.52.0/24 maxlen: 24
84.246.82.0/24 maxlen: 24
91.206.69.0/24 maxlen: 24
91.237.104.0/24 maxlen: 24
91.237.105.0/24 maxlen: 24
176.116.5.0/24 maxlen: 24
176.116.20.0/24 maxlen: 24
176.116.23.0/24 maxlen: 24
176.126.112.0/24 maxlen: 24
176.126.115.0/24 maxlen: 24
193.0.245.0/24 maxlen: 24
193.0.246.0/24 maxlen: 24
193.5.1.0/24 maxlen: 24
193.58.171.0/24 maxlen: 24
193.58.178.0/24 maxlen: 24
194.107.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 15:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f4:12:cd:9e:6e:46:f3:b1:bc:87:08:a1:ac:6a:1e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 29 08:54:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a233e21d05cd2f22965c7cf9736ae68ab3b51cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:99:c1:2a:1a:94:80:b8:3f:86:91:91:0f:eb:
ad:21:fd:43:0d:39:96:d5:1a:25:59:f3:f0:3a:1c:
48:20:4c:f0:bf:9e:5f:b9:44:79:73:1b:67:17:fb:
7e:51:a2:4a:0e:b5:01:1d:ae:2e:99:d8:81:c9:d9:
49:4e:bb:45:5b:e2:49:1f:b4:5f:2e:db:4b:23:39:
88:94:27:86:a0:62:9b:cc:00:65:4c:eb:3f:0e:8b:
5a:e0:3c:9b:ef:8a:9c:27:b3:c6:c3:b0:7b:15:3f:
3b:aa:f3:bf:c7:5c:2d:54:e6:e0:46:22:f4:6e:bf:
c6:33:93:92:e0:68:2e:81:80:75:c4:60:70:32:14:
a7:d5:f4:65:46:98:a9:12:b6:ad:c2:7c:8d:18:e6:
98:15:56:90:9e:05:54:2c:87:ae:c9:4f:49:ac:a5:
cf:82:74:ed:5a:80:e6:8e:56:a5:c7:53:84:8f:11:
12:76:29:6f:29:25:d6:23:38:bf:c3:79:5e:60:91:
f8:9d:32:ae:79:9f:4b:63:cd:2e:b9:d5:ba:e5:1a:
0f:7d:af:1f:75:b7:95:da:ad:f6:16:21:2b:97:d0:
76:05:74:a0:8e:de:44:e7:56:de:67:bb:9e:80:02:
5c:91:23:67:45:39:55:62:ff:69:49:17:a9:11:cf:
53:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:33:E2:1D:05:CD:2F:22:96:5C:7C:F9:73:6A:E6:8A:B3:B5:1C:EF
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ojPiHQXNLyKWXHz5c2rmirO1HO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.239.0/24
45.129.1.0/24
45.132.39.0/24
45.135.35.0/24
45.138.7.0/24
45.138.156.0/24
45.138.212.0/24
45.138.215.0/24
45.140.65.0/24
45.149.130.0/23
45.152.118.0/23
83.138.52.0/24
84.246.82.0/24
91.206.69.0/24
91.237.104.0/23
176.116.5.0/24
176.116.20.0/24
176.116.23.0/24
176.126.112.0/24
176.126.115.0/24
193.0.245.0-193.0.246.255
193.5.1.0/24
193.58.171.0/24
193.58.178.0/24
194.107.200.0/24
Signature Algorithm: sha256WithRSAEncryption
08:7c:1d:74:7f:1f:7d:07:99:4c:f0:4c:e3:b0:36:69:aa:33:
57:7a:75:b5:2d:d7:ec:24:58:90:7a:3b:0f:70:36:62:27:3f:
9d:f9:28:8b:49:a4:cb:f0:53:16:2e:e7:5b:13:6e:54:4c:65:
cc:4c:2d:34:ca:5e:3d:c6:39:3a:34:0e:46:d1:c7:ee:62:56:
87:3b:48:15:a1:b3:ff:1b:85:87:78:c6:00:af:ea:c0:df:5c:
ec:58:ae:e9:f5:95:3f:58:06:86:e4:70:74:02:e9:81:61:03:
5c:13:82:80:4b:79:74:60:f5:93:76:fa:c1:e7:4d:f0:e4:49:
23:1b:5c:fd:92:c4:19:c6:10:08:41:95:41:4e:f7:b1:e7:a2:
6b:ea:bf:9a:37:12:82:8c:21:36:8e:1b:2c:c3:63:8d:c8:d5:
7f:49:5e:9d:60:c7:a2:cb:a7:c4:6b:20:1f:a4:42:91:f3:e4:
e9:22:03:34:04:5e:34:f6:e3:f5:c9:91:cb:84:68:39:c4:18:
3b:e8:a0:60:be:dc:b5:b7:40:74:e2:06:32:29:b0:a2:85:c3:
ed:2b:52:62:2d:db:30:7e:d1:c8:2c:33:3b:df:49:7f:ce:9f:
7b:4b:7a:69:cb:52:ae:1f:e1:30:80:d1:30:1e:08:bf:be:d7:
32:d2:f9:75
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgISAY30Es2ebkbzsbyHCKGsah4YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjI5MDg1NDQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjMzZTIxZDA1Y2QyZjIyOTY1YzdjZjk3MzZhZTY4YWIzYjUxY2VmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZnBKhqUgLg/hpGRD+utIf1DDTmW
1RolWfPwOhxIIEzwv55fuUR5cxtnF/t+UaJKDrUBHa4umdiBydlJTrtFW+JJH7Rf
LttLIzmIlCeGoGKbzABlTOs/Dota4Dyb74qcJ7PGw7B7FT87qvO/x1wtVObgRiL0
br/GM5OS4GgugYB1xGBwMhSn1fRlRpipEratwnyNGOaYFVaQngVULIeuyU9JrKXP
gnTtWoDmjlalx1OEjxESdilvKSXWIzi/w3leYJH4nTKueZ9LY80uudW65RoPfa8f
dbeV2q32FiErl9B2BXSgjt5E51beZ7uegAJckSNnRTlVYv9pSRepEc9TDQIDAQAB
o4ICpjCCAqIwHQYDVR0OBBYEFKIz4h0FzS8illx8+XNq5oqztRzvMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvb2pQaUhRWE5MeUtXWEh6NWMycm1pck8xSE84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG7BggrBgEFBQcBBwEB/wSBqzCBqDCBpQQCAAEwgZ4DBAAt
D+8DBAAtgQEDBAAthCcDBAAthyMDBAAtigcDBAAtipwDBAAtitQDBAAtitcDBAAt
jEEDBAEtlYIDBAEtmHYDBABTijQDBABU9lIDBABbzkUDBAFb7WgDBACwdAUDBACw
dBQDBACwdBcDBACwfnADBACwfnMwDAMEAMEA9QMEAMEA9gMEAMEFAQMEAME6qwME
AME6sgMEAMJryDANBgkqhkiG9w0BAQsFAAOCAQEACHwddH8ffQeZTPBM47A2aaoz
V3p1tS3X7CRYkHo7D3A2Yic/nfkoi0mky/BTFi7nWxNuVExlzEwtNMpePcY5OjQO
RtHH7mJWhztIFaGz/xuFh3jGAK/qwN9c7Fiu6fWVP1gGhuRwdALpgWEDXBOCgEt5
dGD1k3b6wedN8ORJIxtc/ZLEGcYQCEGVQU73seeia+q/mjcSgowhNo4bLMNjjcjV
f0lenWDHosunxGsgH6RCkfPk6SIDNAReNPbj9cmRy4RoOcQYO+igYL7ctbdAdOIG
MimwooXD7StSYi3bMH7RyCwzO99Jf86fe0t6actSrh/hMIDRMB4Iv77XMtL5dQ==
-----END CERTIFICATE-----
Generated at Wed Mar 13 19:43:29 2024 by rpki-client on console-fra.rpki-client.org