Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xQPQ5HPt5qOIW9_a8TAsXvyTSpk.roa
File: xQPQ5HPt5qOIW9_a8TAsXvyTSpk.roa (raw, json)
Hash identifier: TBETZ3Xb+bBOCdLMPUn6E3OSKRrmuBdeLvtGJxr3jYc=
Subject key identifier: C5:03:D0:E4:73:ED:E6:A3:88:5B:DF:DA:F1:30:2C:5E:FC:93:4A:99
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D7A93184ED8EF1EF9A79F68FC049DA5D1
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xQPQ5HPt5qOIW9_a8TAsXvyTSpk.roa
Signing time: Mon 05 Feb 2024 18:41:16 +0000
ROA not before: Mon 05 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.84.178.0/24 maxlen: 24
45.129.1.0/24 maxlen: 24
45.129.129.0/24 maxlen: 24
45.129.130.0/24 maxlen: 24
45.129.131.0/24 maxlen: 24
45.132.51.0/24 maxlen: 24
45.138.4.0/24 maxlen: 24
45.138.5.0/24 maxlen: 24
45.138.6.0/24 maxlen: 24
45.142.37.0/24 maxlen: 24
45.146.26.0/24 maxlen: 24
45.159.85.0/24 maxlen: 24
92.119.192.0/24 maxlen: 24
176.222.58.0/24 maxlen: 24
193.32.164.0/24 maxlen: 24
193.32.165.0/24 maxlen: 24
193.32.166.0/24 maxlen: 24
193.32.167.0/24 maxlen: 24
193.36.231.0/24 maxlen: 24
193.53.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 18:11:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7a:93:18:4e:d8:ef:1e:f9:a7:9f:68:fc:04:9d:a5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 5 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c503d0e473ede6a3885bdfdaf1302c5efc934a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:20:5d:2e:b1:55:8f:10:b0:5b:ca:ec:0f:b0:
2d:83:38:6e:11:74:a5:fc:53:ab:ce:04:b4:66:5e:
fc:6a:2c:27:10:d3:d8:38:0a:0d:f5:04:51:6f:5c:
70:ec:c6:f4:e4:c7:c4:63:82:a8:8e:7e:09:be:4d:
b6:3a:d7:b5:e6:17:bb:3b:fa:78:61:88:c2:19:e6:
fb:77:40:91:90:3d:72:7c:94:7f:32:9a:a7:9e:e0:
a2:92:db:94:cd:04:52:98:0e:0f:f0:43:07:8c:22:
f7:07:ae:63:b9:76:13:14:ca:eb:01:46:6a:ab:1e:
bf:e6:78:1c:1d:39:1e:3a:58:12:19:57:64:8c:68:
b6:c8:0f:04:9a:52:4e:c3:83:f9:f2:71:18:d5:15:
b8:f8:13:12:8e:fd:a5:b7:4a:8c:b6:95:57:ac:22:
ba:79:e0:ed:7e:67:31:8f:5b:81:65:20:8e:b5:2f:
61:ea:c4:6b:89:52:ad:4b:dc:86:a1:27:74:58:0d:
13:70:53:55:2a:42:99:02:aa:6e:25:06:01:3c:d9:
33:ee:87:09:a9:f8:0d:f6:31:d1:06:9e:fc:21:6c:
19:6f:80:c7:9d:01:2b:43:3d:a2:7a:3f:ab:3b:dc:
22:69:5d:a7:f7:27:14:db:2a:56:2f:3c:b6:41:fc:
d8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:03:D0:E4:73:ED:E6:A3:88:5B:DF:DA:F1:30:2C:5E:FC:93:4A:99
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/xQPQ5HPt5qOIW9_a8TAsXvyTSpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.178.0/24
45.129.1.0/24
45.129.129.0-45.129.131.255
45.132.51.0/24
45.138.4.0-45.138.6.255
45.142.37.0/24
45.146.26.0/24
45.159.85.0/24
92.119.192.0/24
176.222.58.0/24
193.32.164.0/22
193.36.231.0/24
193.53.169.0/24
Signature Algorithm: sha256WithRSAEncryption
45:83:12:b0:ef:70:05:13:d8:1d:bf:e0:aa:be:0d:9a:27:a2:
21:55:43:01:15:4d:f5:a9:06:c3:12:42:e2:fd:0f:ea:25:9f:
cf:e2:2c:32:8d:8b:d6:0f:03:bb:6e:82:5f:e2:9c:2f:78:66:
6a:4b:bd:32:75:7b:d4:b4:81:28:07:3c:fd:4d:a5:5c:ed:09:
fe:9a:ac:ae:4a:bb:63:71:0e:99:29:d9:25:14:a7:23:9d:af:
36:71:ad:43:c5:bc:99:0b:8e:32:08:26:00:09:9d:4c:29:18:
d3:a3:46:e5:cf:01:44:53:91:a5:87:4f:fb:96:59:03:26:c4:
e9:48:13:a3:1b:09:dd:33:43:0b:04:17:74:48:e9:63:31:18:
69:2c:69:7f:dc:62:3a:f9:71:75:c8:c4:cf:1b:af:9d:64:14:
29:02:65:71:5c:8d:0b:29:a5:3c:69:f2:25:2c:7a:d5:5a:02:
df:46:e1:38:9d:cf:3e:34:34:cf:62:b9:c9:26:46:ef:44:f2:
a3:4f:ec:40:e7:73:e6:b1:f7:37:de:83:78:3c:e6:01:2e:f4:
4f:40:4a:c3:ab:86:0f:72:1b:46:85:96:41:6d:bb:94:94:bc:
e0:18:d5:d7:6c:0f:38:00:5f:cb:fc:4c:dd:09:59:e0:64:c4:
8d:0b:91:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org