Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Y-sLDBzKs8iIywuhxSmmv0pMGzc.roa
File: Y-sLDBzKs8iIywuhxSmmv0pMGzc.roa (raw, json)
Hash identifier: se3ybKmn5cfhI+brl9UQffXrhFGPJoc1hUaQgzzZMUo=
Subject key identifier: 63:EB:0B:0C:1C:CA:B3:C8:88:CB:0B:A1:C5:29:A6:BF:4A:4C:1B:37
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 018D0D8D66D34A214B4A206E3DDD34DEF20A
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Y-sLDBzKs8iIywuhxSmmv0pMGzc.roa
Signing time: Mon 15 Jan 2024 14:36:27 +0000
ROA not before: Mon 15 Jan 2024 14:36:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
193.43.146.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
45.67.34.0/24 maxlen: 24
92.119.200.0/22 maxlen: 24
45.93.8.0/24 maxlen: 24
45.93.11.0/24 maxlen: 24
45.93.10.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
45.8.147.0/24 maxlen: 24
45.8.146.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.173.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
141.98.170.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
141.98.168.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.121.0/24 maxlen: 24
188.119.125.0/24 maxlen: 24
188.119.124.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.55.0/24 maxlen: 24
45.89.54.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
5.182.37.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.38.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
193.57.139.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.152.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.155.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
92.118.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 23:35:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0d:8d:66:d3:4a:21:4b:4a:20:6e:3d:dd:34:de:f2:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 15 14:36:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63eb0b0c1ccab3c888cb0ba1c529a6bf4a4c1b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e2:81:d5:f7:c5:c4:e2:17:70:e1:cc:8b:16:
d8:f2:ba:b7:4f:a0:3e:f2:21:78:45:dc:9e:74:16:
e8:1a:25:99:37:ba:88:77:5a:59:a4:b0:fe:44:5c:
76:ef:41:5c:9c:cc:08:18:47:15:aa:a2:8e:3b:47:
c0:8a:e5:fe:93:58:43:a9:08:6d:18:ab:ad:12:c8:
9e:23:5d:ea:1c:52:62:6f:ad:6e:30:9e:40:f5:5b:
2c:43:0f:b4:87:27:83:3c:d9:35:ca:b2:01:1f:88:
cb:a1:a6:a8:83:07:71:55:3b:7f:73:9f:92:e3:35:
a7:b2:44:76:bb:6a:d4:8e:c6:f2:07:a2:41:e5:f6:
79:e4:b6:e0:ab:4b:38:49:0f:5c:72:74:4b:51:f6:
8a:d7:48:cb:fa:5d:76:4b:02:80:e2:39:c2:a4:c7:
31:4c:ac:7c:b2:ee:e1:70:c1:78:8a:fa:e1:37:93:
67:c8:04:89:51:d0:5f:02:ea:da:b1:f4:2e:bd:dd:
b7:3f:ef:3c:5e:23:8f:fb:bc:4a:bc:b3:c7:bd:c0:
40:67:e2:2b:8d:3e:f6:53:42:97:82:ac:f8:d8:7b:
9c:60:13:3d:4e:8e:2f:28:59:55:e1:ca:f2:d5:f0:
f6:a1:17:a4:a8:d4:9c:ee:de:a0:93:45:90:13:56:
f9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EB:0B:0C:1C:CA:B3:C8:88:CB:0B:A1:C5:29:A6:BF:4A:4C:1B:37
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/Y-sLDBzKs8iIywuhxSmmv0pMGzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/22
45.8.144.0/22
45.67.34.0/23
45.84.0.0/23
45.87.152.0/22
45.89.52.0/24
45.89.54.0/23
45.93.8.0/24
45.93.10.0/23
45.159.248.0/22
92.118.88.0/22
92.119.200.0/22
93.185.166.0/24
141.98.168.0-141.98.170.255
185.231.204.0/22
188.119.121.0-188.119.125.255
193.43.146.0/23
193.46.56.0/23
193.57.136.0/22
194.4.48.0/22
194.116.172.0/23
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
d8:71:50:33:f5:6c:74:21:21:57:5f:f8:46:19:36:d0:62:cd:
78:3d:47:ea:1a:4c:9e:b7:72:ff:4a:00:3c:ac:7f:b8:62:a7:
90:ce:84:5a:ba:fd:21:e9:3b:80:fb:04:a1:7d:a8:ac:04:d9:
60:a3:0b:70:3e:14:98:f4:c2:43:1c:84:fd:73:ea:6f:ca:e1:
5d:d2:15:bd:87:68:36:1a:8e:21:e5:ed:49:8c:57:20:98:4f:
73:5e:da:aa:7b:6b:26:50:b3:e2:db:2e:06:18:a2:fc:c2:54:
56:fa:23:db:5a:ef:b9:48:72:ba:3c:a9:89:86:ee:37:2b:ec:
dd:71:7f:7b:da:07:b5:d8:4c:50:9b:66:38:2a:85:bb:0b:15:
8b:f2:f9:eb:b7:99:37:dc:95:57:87:ca:73:14:ce:e5:57:2e:
af:4c:73:07:35:32:42:bd:ed:0a:da:92:f7:51:b6:d6:6b:50:
12:15:94:fb:56:28:5e:59:7d:58:60:0c:e3:64:42:4f:75:67:
b8:97:64:e3:69:dc:f1:c3:47:46:0f:a2:24:b7:b4:d6:a3:76:
82:18:34:29:bc:85:7b:64:a1:28:ad:2a:ac:60:8c:50:a8:8d:
0e:e0:e2:5b:79:54:9b:a9:19:66:5f:4b:d6:37:c3:05:f3:8d:
a0:57:9f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 00:57:04 2024 by rpki-client on console-ams.rpki-client.org