Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ELT3q0ZXmPL3uDPoR-gh8EmM-pg.roa
File: ELT3q0ZXmPL3uDPoR-gh8EmM-pg.roa (raw, json)
Hash identifier: TGxFyuqZYniZB1meVDcCquxi5HW2YOg1U+1aFZC6z20=
Subject key identifier: 10:B4:F7:AB:46:57:98:F2:F7:B8:33:E8:47:E8:21:F0:49:8C:FA:98
Certificate issuer: /CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Certificate serial: 018C55BD568B50A0827F711CB0C611A79BE0
Authority key identifier: 66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ELT3q0ZXmPL3uDPoR-gh8EmM-pg.roa
Signing time: Sun 10 Dec 2023 21:58:41 +0000
ROA not before: Sun 10 Dec 2023 21:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34170
IP address blocks: 158.181.36.0/24 maxlen: 24
158.181.37.0/24 maxlen: 24
158.181.35.0/24 maxlen: 24
158.181.38.0/24 maxlen: 24
158.181.33.0/24 maxlen: 24
158.181.34.0/24 maxlen: 24
158.181.32.0/24 maxlen: 24
158.181.39.0/24 maxlen: 24
158.181.44.0/23 maxlen: 23
158.181.46.0/23 maxlen: 23
80.69.48.0/24 maxlen: 24
80.69.50.0/24 maxlen: 24
80.69.51.0/24 maxlen: 24
80.69.49.0/24 maxlen: 24
80.69.57.0/24 maxlen: 24
80.69.58.0/24 maxlen: 24
80.69.56.0/24 maxlen: 24
80.69.54.0/24 maxlen: 24
80.69.55.0/24 maxlen: 24
80.69.52.0/24 maxlen: 24
80.69.53.0/24 maxlen: 24
80.69.61.0/24 maxlen: 24
80.69.62.0/24 maxlen: 24
80.69.59.0/24 maxlen: 24
80.69.60.0/24 maxlen: 24
80.69.63.0/24 maxlen: 24
92.39.92.0/24 maxlen: 24
92.39.95.0/24 maxlen: 24
92.39.93.0/24 maxlen: 24
92.39.94.0/24 maxlen: 24
92.39.88.0/24 maxlen: 24
92.39.91.0/24 maxlen: 24
92.39.89.0/24 maxlen: 24
92.39.90.0/24 maxlen: 24
91.135.240.0/24 maxlen: 24
91.135.241.0/24 maxlen: 24
91.135.244.0/24 maxlen: 24
91.135.245.0/24 maxlen: 24
91.135.242.0/24 maxlen: 24
91.135.243.0/24 maxlen: 24
91.135.246.0/24 maxlen: 24
91.135.248.0/24 maxlen: 24
91.135.247.0/24 maxlen: 24
91.135.251.0/24 maxlen: 24
91.135.252.0/24 maxlen: 24
91.135.249.0/24 maxlen: 24
91.135.250.0/24 maxlen: 24
91.135.253.0/24 maxlen: 24
91.135.255.0/24 maxlen: 24
91.135.254.0/24 maxlen: 24
185.105.198.0/24 maxlen: 24
185.105.199.0/24 maxlen: 24
185.105.196.0/24 maxlen: 24
185.105.197.0/24 maxlen: 24
212.47.152.0/24 maxlen: 24
212.47.154.0/24 maxlen: 24
212.47.157.0/24 maxlen: 24
212.47.158.0/24 maxlen: 24
212.47.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Dec 2023 08:58:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:55:bd:56:8b:50:a0:82:7f:71:1c:b0:c6:11:a7:9b:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=666034ca6a16bbd0144abdf5cf2458f968b1589c
Validity
Not Before: Dec 10 21:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10b4f7ab465798f2f7b833e847e821f0498cfa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6a:e5:f1:8d:2a:bb:1b:12:64:20:3b:c5:26:
a3:11:93:09:62:28:53:8f:81:d3:af:8f:f3:eb:ff:
54:9b:36:af:a7:bb:e8:81:55:52:48:ad:de:57:ef:
bb:94:85:02:d0:74:08:15:4b:80:f4:b6:5f:52:8e:
75:6c:1a:b7:06:0c:26:ea:8f:52:dd:43:e7:2d:df:
7e:32:b0:b3:bd:97:e9:f9:bc:96:0d:c8:ba:ef:9d:
c7:a9:1d:e4:5c:f1:6c:8f:a4:80:42:11:1e:c5:d8:
39:fe:3a:1f:38:b0:5d:5a:22:0a:4b:0c:df:24:45:
a6:dd:f8:be:bf:1c:1b:6e:6c:e7:23:20:13:cf:09:
56:05:b6:a1:27:be:ff:bb:7c:3f:d7:59:f8:7b:29:
09:53:10:d8:67:96:ca:42:9f:9f:50:2b:59:f7:64:
ef:61:7a:b9:71:cb:99:b6:32:e5:c1:94:2c:a3:0d:
c9:a4:35:fc:f9:5d:a4:f5:ff:de:26:b9:3a:ea:8f:
11:2c:1c:73:62:9a:a8:91:3f:5f:80:99:66:bc:06:
18:71:3f:65:cd:fb:0a:52:a0:27:bc:9a:19:01:b0:
3c:e9:88:a9:10:29:03:88:f6:b5:d3:20:d7:d5:d0:
d4:7f:31:2a:23:f4:03:8a:8b:59:ec:20:1a:f9:80:
dd:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B4:F7:AB:46:57:98:F2:F7:B8:33:E8:47:E8:21:F0:49:8C:FA:98
X509v3 Authority Key Identifier:
keyid:66:60:34:CA:6A:16:BB:D0:14:4A:BD:F5:CF:24:58:F9:68:B1:58:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmA0ymoWu9AUSr31zyRY-WixWJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ELT3q0ZXmPL3uDPoR-gh8EmM-pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f4b733-29ad-4d56-b9d2-5d48bcd7c1dc/1/ZmA0ymoWu9AUSr31zyRY-WixWJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.69.48.0/20
91.135.240.0/20
92.39.88.0/21
158.181.32.0/21
158.181.44.0/22
185.105.196.0/22
212.47.152.0/24
212.47.154.0/24
212.47.157.0-212.47.159.255
Signature Algorithm: sha256WithRSAEncryption
9a:ec:77:18:aa:e1:b5:b6:32:56:c8:8e:56:80:6c:3b:74:b1:
8f:0c:5b:8c:ea:3a:76:fe:10:dd:bd:b0:b3:38:17:37:0e:b9:
2c:7a:39:f3:82:92:18:e0:04:6a:99:c2:f4:b3:72:d1:45:fc:
bc:5d:67:67:24:63:29:77:91:d9:2b:d4:1f:cb:f2:4f:ad:4a:
54:00:f3:8c:3f:f1:39:fd:78:cc:d6:df:d0:62:f7:1b:0a:d2:
68:df:e1:6f:ed:1e:35:bc:b3:a9:d1:50:76:4d:a6:98:c3:cb:
bc:fd:08:ed:0a:0c:0d:2b:96:6b:e3:55:d8:02:04:3b:61:fa:
b7:2f:49:da:c7:7b:ea:32:db:23:5d:4d:55:09:02:a3:88:02:
92:aa:94:05:f5:16:83:76:28:33:a8:0b:89:a2:50:32:af:89:
55:8e:b7:04:26:01:de:7c:b1:07:d5:f1:de:2b:6e:f0:cd:3c:
36:f6:25:3b:ce:02:57:d1:2a:44:3f:b6:84:ae:c3:1f:87:cc:
e7:27:14:f1:71:98:dc:3d:76:4f:ac:6f:68:a2:79:0b:e3:7c:
c1:17:87:3c:75:61:39:b0:bb:8b:93:7d:f2:32:bc:6a:0e:76:
6a:19:7e:f3:f1:3f:a0:da:e5:bb:f8:8b:80:50:58:09:90:5c:
f5:10:bd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:51 2024 by rpki-client on console-ams.rpki-client.org