Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/SqxTanzL81g7JGdKdU9aeZ6JQd8.roa
File: SqxTanzL81g7JGdKdU9aeZ6JQd8.roa (raw, json)
Hash identifier: bu87KQVtKNbeLDrrWMroywL1ng/YMcaCF82dEKofnVk=
Subject key identifier: 4A:AC:53:6A:7C:CB:F3:58:3B:24:67:4A:75:4F:5A:79:9E:89:41:DF
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 01904B69FAC707265CB6A16E13727339FD58
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/SqxTanzL81g7JGdKdU9aeZ6JQd8.roa
Signing time: Mon 24 Jun 2024 18:02:34 +0000
ROA not before: Mon 24 Jun 2024 18:02:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 45.131.228.0/22 maxlen: 24
45.139.228.0/24 maxlen: 24
45.139.230.0/24 maxlen: 24
62.3.60.0/24 maxlen: 24
62.233.52.0/24 maxlen: 24
146.19.123.0/24 maxlen: 24
176.116.11.0/24 maxlen: 24
194.104.239.0/24 maxlen: 24
212.18.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 13:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:69:fa:c7:07:26:5c:b6:a1:6e:13:72:73:39:fd:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jun 24 18:02:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aac536a7ccbf3583b24674a754f5a799e8941df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:42:5e:89:1a:3c:28:c4:22:c9:12:da:71:d9:
0d:f7:e9:48:86:de:b8:ae:ee:0c:b7:b1:0b:88:53:
41:68:02:fd:0e:10:c8:2f:70:1a:b5:f2:21:58:0a:
a6:07:fe:25:6a:d0:99:38:0d:1b:6f:3b:53:ba:60:
cc:d9:f8:ca:3f:1c:c2:7f:df:cc:f3:9d:08:ab:a0:
c7:57:77:07:88:24:d6:9e:a4:55:c1:02:f8:26:d5:
27:4a:16:3d:2f:90:79:12:b7:83:70:4a:84:0e:fb:
86:b3:14:c8:fd:d4:d3:4c:0d:02:24:55:4c:4f:c3:
33:f7:a6:91:65:e7:fb:8b:6f:8c:02:66:65:e8:51:
9b:87:bf:a4:03:94:ac:1f:b3:d4:a2:3b:50:e6:dd:
bb:1f:4e:58:82:c9:04:1a:0b:17:e8:c7:66:85:22:
65:05:76:d1:af:2d:e7:5c:e9:7f:63:fe:f2:c3:61:
2a:ad:f1:ca:f7:87:4e:54:42:9f:39:6f:be:c8:8d:
45:7c:23:a9:8d:3c:0d:96:cb:ff:db:52:c5:62:3e:
d0:dd:dd:d5:3a:e1:0b:51:0a:b5:bf:a5:27:a6:30:
e8:30:db:24:a3:9c:d9:1e:55:5b:2e:c2:6d:e2:fe:
72:3a:43:b3:8c:14:cb:94:b6:ef:e9:30:35:19:0d:
dc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AC:53:6A:7C:CB:F3:58:3B:24:67:4A:75:4F:5A:79:9E:89:41:DF
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/SqxTanzL81g7JGdKdU9aeZ6JQd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.228.0/22
45.139.228.0/24
45.139.230.0/24
62.3.60.0/24
62.233.52.0/24
146.19.123.0/24
176.116.11.0/24
194.104.239.0/24
212.18.124.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:ce:88:33:72:36:d8:26:a4:92:bb:77:5f:cd:cc:0f:6f:2a:
78:4b:a4:74:9a:86:82:db:ab:35:ef:e2:46:da:e1:e8:ad:13:
3d:b9:8c:3d:fa:be:de:85:cf:72:4c:5c:27:2c:7c:b7:24:1e:
12:c9:bf:18:a0:3e:f6:78:78:30:d0:fc:dc:46:98:cb:76:bb:
ae:15:c6:d5:ca:ed:62:67:cc:c9:ff:40:a8:8a:f4:65:62:f5:
79:38:c4:ec:3b:c2:21:5d:c5:ef:44:eb:9a:08:f5:2c:55:da:
25:7c:a4:6a:06:f8:32:c1:f7:48:9c:2a:1d:a3:13:bd:7e:32:
c2:af:81:09:7f:5e:df:6f:dc:c4:35:bd:66:e9:21:5a:75:81:
b7:1a:e9:a6:56:6d:2e:72:63:a8:dc:98:ae:b2:8f:b2:48:42:
71:d6:fc:3f:a0:55:d8:bc:51:f7:02:a0:07:9d:1a:19:79:8d:
8b:17:c7:f6:4d:f5:14:60:70:3d:25:6e:bb:bd:2e:27:33:7c:
dc:4e:52:9a:d8:41:97:a3:a1:9e:69:bc:a1:35:42:c2:a9:8f:
c8:cb:f3:26:69:40:c4:26:ae:0e:8a:12:b4:9c:5c:46:d8:64:
2f:aa:87:5a:97:45:90:ee:11:6a:60:50:b6:df:56:b4:ff:78:
50:b1:84:78
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZBLafrHByZctqFuE3JzOf1YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NjhhMTk5MmJiODAzN2RkZTgxZDBjOGNkYzA2OTVmY2Vl
MTdjMjcwHhcNMjQwNjI0MTgwMjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWFjNTM2YTdjY2JmMzU4M2IyNDY3NGE3NTRmNWE3OTllODk0MWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40JeiRo8KMQiyRLacdkN9+lIht64
ru4Mt7ELiFNBaAL9DhDIL3AatfIhWAqmB/4latCZOA0bbztTumDM2fjKPxzCf9/M
850Iq6DHV3cHiCTWnqRVwQL4JtUnShY9L5B5EreDcEqEDvuGsxTI/dTTTA0CJFVM
T8Mz96aRZef7i2+MAmZl6FGbh7+kA5SsH7PUojtQ5t27H05YgskEGgsX6MdmhSJl
BXbRry3nXOl/Y/7yw2EqrfHK94dOVEKfOW++yI1FfCOpjTwNlsv/21LFYj7Q3d3V
OuELUQq1v6UnpjDoMNsko5zZHlVbLsJt4v5yOkOzjBTLlLbv6TA1GQ3cwQIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFEqsU2p8y/NYOyRnSnVPWnmeiUHfMB8GA1UdIwQY
MBaAFJhooZkruAN93oHQyM3AaV/O4XwnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUdpaG1TdTRBMzNlZ2RESXpjQnBYODdoZkNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82YjIyZTYtMzUyZi00ZTg4LTgyN2It
ZDc4ZDU2MzFkN2Y2LzEvU3F4VGFuekw4MWc3SkdkS2RVOWFlWjZKUWQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC82YjIyZTYtMzUyZi00ZTg4LTgyN2ItZDc4ZDU2MzFkN2Y2
LzEvbUdpaG1TdTRBMzNlZ2RESXpjQnBYODdoZkNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQCLYPkAwQA
LYvkAwQALYvmAwQAPgM8AwQAPuk0AwQAkhN7AwQAsHQLAwQAwmjvAwQA1BJ8MA0G
CSqGSIb3DQEBCwUAA4IBAQDUzogzcjbYJqSSu3dfzcwPbyp4S6R0moaC26s17+JG
2uHorRM9uYw9+r7ehc9yTFwnLHy3JB4Syb8YoD72eHgw0PzcRpjLdruuFcbVyu1i
Z8zJ/0CoivRlYvV5OMTsO8IhXcXvROuaCPUsVdolfKRqBvgywfdInCodoxO9fjLC
r4EJf17fb9zENb1m6SFadYG3GummVm0ucmOo3Jiuso+ySEJx1vw/oFXYvFH3AqAH
nRoZeY2LF8f2TfUUYHA9JW67vS4nM3zcTlKa2EGXo6GeabyhNULCqY/Iy/MmaUDE
Jq4OihK0nFxG2GQvqodal0WQ7hFqYFC231a0/3hQsYR4
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:54 2025 by rpki-client