Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/Ij77zCfXH1A2g--mI8YBiFX9XAI.roa
File: Ij77zCfXH1A2g--mI8YBiFX9XAI.roa (raw, json)
Hash identifier: oamw5D0jYDpN5Ig28TgGU6P55I25eaUq7zhjwS6q8QE=
Subject key identifier: 22:3E:FB:CC:27:D7:1F:50:36:83:EF:A6:23:C6:01:88:55:FD:5C:02
Certificate issuer: /CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Certificate serial: 01918EF7610DE621B40BFEDE472A30817633
Authority key identifier: DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/Ij77zCfXH1A2g--mI8YBiFX9XAI.roa
Signing time: Mon 26 Aug 2024 13:54:22 +0000
ROA not before: Mon 26 Aug 2024 13:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206805
IP address blocks: 45.84.152.0/23 maxlen: 24
45.84.154.0/24 maxlen: 24
45.84.155.0/24 maxlen: 24
45.145.188.0/23 maxlen: 23
45.145.190.0/23 maxlen: 23
45.145.190.0/24 maxlen: 24
45.145.191.0/24 maxlen: 24
80.85.248.0/23 maxlen: 23
80.85.250.0/23 maxlen: 23
80.85.252.0/24 maxlen: 24
80.85.253.0/24 maxlen: 24
80.85.254.0/23 maxlen: 24
178.159.32.0/23 maxlen: 24
185.159.111.0/24 maxlen: 24
185.228.48.0/22 maxlen: 24
185.247.192.0/22 maxlen: 24
188.64.149.0/24 maxlen: 24
188.64.150.0/23 maxlen: 24
193.19.100.0/23 maxlen: 24
193.246.144.0/24 maxlen: 24
193.246.150.0/24 maxlen: 24
193.246.153.0/24 maxlen: 24
193.246.159.0/24 maxlen: 24
2a0c:ee00::/40 maxlen: 40
2a0c:ee00:100::/40 maxlen: 40
2a0c:ee00:200::/40 maxlen: 40
2a0c:ee00:20c::/48 maxlen: 48
2a0c:ee00:300::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 29 Aug 2024 07:51:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:f7:61:0d:e6:21:b4:0b:fe:de:47:2a:30:81:76:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Validity
Not Before: Aug 26 13:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=223efbcc27d71f503683efa623c6018855fd5c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:92:3f:dc:e6:e3:e5:5b:45:49:1f:db:54:20:
4b:41:24:75:4c:d6:e8:29:63:b0:7c:48:46:0d:fd:
fb:fa:ca:a7:83:e9:dd:0d:e8:11:e1:3a:01:28:94:
a4:82:8f:ae:d2:cc:9e:4e:ed:c7:1e:f9:d4:19:da:
68:cb:88:6f:5f:36:29:e4:a1:4e:80:1c:52:03:53:
09:ae:e2:79:53:d2:11:bb:ae:d3:fe:a9:c9:70:a6:
9e:84:40:29:4a:ed:b6:3f:98:e4:98:ee:d5:1a:b8:
71:c8:db:82:35:e2:40:d6:9b:7a:7e:55:b2:d2:cb:
f4:4f:9c:7c:96:75:02:32:b5:c9:fc:b5:d6:40:8f:
18:47:f3:bb:ed:f1:c8:12:ac:cf:a3:66:bf:80:8e:
1d:80:11:f2:e7:e5:22:ff:47:ae:97:aa:b6:ef:c0:
2d:70:8c:f9:6e:de:26:79:83:f4:33:b1:56:de:3c:
d2:22:7a:d8:30:9e:31:66:b2:3d:6d:9e:70:d9:91:
a5:d7:41:22:5d:26:ba:6f:0a:8e:86:39:e7:34:d5:
e3:6f:1f:7f:13:d3:6b:e8:24:8e:80:c2:9e:38:8c:
bd:20:02:7e:9c:9a:71:f4:8e:2f:32:93:65:8b:e4:
b8:af:d1:4c:48:c3:b1:f8:2d:fd:08:fb:f5:39:b5:
33:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:3E:FB:CC:27:D7:1F:50:36:83:EF:A6:23:C6:01:88:55:FD:5C:02
X509v3 Authority Key Identifier:
keyid:DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/Ij77zCfXH1A2g--mI8YBiFX9XAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/3T1AERdeXfej9X0454FQosBf3R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.152.0/22
45.145.188.0/22
80.85.248.0/21
178.159.32.0/23
185.159.111.0/24
185.228.48.0/22
185.247.192.0/22
188.64.149.0-188.64.151.255
193.19.100.0/23
193.246.144.0/24
193.246.150.0/24
193.246.153.0/24
193.246.159.0/24
IPv6:
2a0c:ee00::/38
Signature Algorithm: sha256WithRSAEncryption
8c:f1:ab:14:e0:b2:b6:29:c0:8b:38:81:68:65:79:9b:46:b8:
f7:e6:37:43:94:99:ba:69:e9:bb:32:56:f1:98:4a:59:77:11:
e8:2e:52:3b:8a:2a:78:a3:7f:22:35:c4:37:8f:9f:a6:04:1f:
14:a7:cd:c0:f5:62:f7:79:03:c4:2f:7f:ed:17:b3:bb:1f:07:
9f:cc:1b:0f:26:13:ba:83:67:ad:89:f7:50:e7:05:70:09:20:
bb:7d:04:c0:11:b7:1c:04:7d:cc:2c:a2:4f:8a:45:cd:2d:ed:
82:df:62:3b:df:8e:b0:cc:0a:8c:a2:e5:07:24:d2:40:f2:b3:
ef:c1:6d:e9:ff:56:2d:c8:8c:94:44:bc:09:45:34:29:fc:09:
70:9f:6b:28:93:95:e1:e3:a8:be:76:62:da:ef:0e:65:79:99:
f9:9d:d9:6a:9a:6a:a8:6a:14:d5:e0:6d:b2:04:65:68:68:c5:
ae:eb:31:6e:3d:04:64:ed:58:3a:d7:da:fc:25:b7:9b:b6:8e:
b9:7c:dd:73:78:4c:15:93:44:9b:b0:48:4b:60:b1:57:3d:d3:
97:ee:23:7a:cb:bb:7d:1d:55:1d:5b:41:2c:90:08:d8:86:c5:
61:22:9f:ee:5b:b3:c2:16:f6:c0:8d:7b:8d:72:ea:c6:b9:32:
6e:ed:a1:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:05 2025 by rpki-client