Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/EP120zw5ZmGGedp3R4h1vVBKKpI.roa
File: EP120zw5ZmGGedp3R4h1vVBKKpI.roa (raw, json)
Hash identifier: ws8+0l5WAHgYQpqeBi4y17zawX/JbXrPZ+IzpCVISkE=
Subject key identifier: 10:FD:76:D3:3C:39:66:61:86:79:DA:77:47:88:75:BD:50:4A:2A:92
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 019054D27AAFF0D11B85B6021C1B844EC6DF
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/EP120zw5ZmGGedp3R4h1vVBKKpI.roa
Signing time: Wed 26 Jun 2024 13:53:18 +0000
ROA not before: Wed 26 Jun 2024 13:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204601
IP address blocks: 45.81.224.0/22 maxlen: 22
45.82.68.0/22 maxlen: 22
45.82.176.0/22 maxlen: 22
45.87.0.0/22 maxlen: 22
45.136.84.0/24 maxlen: 24
45.136.85.0/24 maxlen: 24
45.136.86.0/24 maxlen: 24
45.136.87.0/24 maxlen: 24
45.137.64.0/22 maxlen: 22
46.18.107.0/24 maxlen: 24
46.21.250.0/24 maxlen: 24
77.220.214.0/24 maxlen: 24
77.220.215.0/24 maxlen: 24
81.31.197.0/24 maxlen: 24
91.201.25.0/24 maxlen: 24
91.208.127.0/24 maxlen: 24
91.209.226.0/24 maxlen: 24
91.228.56.0/24 maxlen: 24
94.124.78.0/24 maxlen: 24
178.159.38.0/24 maxlen: 24
178.159.39.0/24 maxlen: 24
178.159.42.0/24 maxlen: 24
178.159.43.0/24 maxlen: 24
185.23.108.0/24 maxlen: 24
185.51.121.0/24 maxlen: 24
185.51.246.0/24 maxlen: 24
185.51.247.0/24 maxlen: 24
185.107.237.0/24 maxlen: 24
185.204.109.0/24 maxlen: 24
185.232.164.0/24 maxlen: 24
185.235.128.0/24 maxlen: 24
185.235.129.0/24 maxlen: 24
185.235.130.0/24 maxlen: 24
185.235.131.0/24 maxlen: 24
185.241.52.0/24 maxlen: 24
185.241.53.0/24 maxlen: 24
185.241.54.0/24 maxlen: 24
185.241.55.0/24 maxlen: 24
185.244.216.0/22 maxlen: 22
185.244.216.0/24 maxlen: 24
185.244.217.0/24 maxlen: 24
185.250.204.0/24 maxlen: 24
185.250.205.0/24 maxlen: 24
185.250.206.0/24 maxlen: 24
185.250.207.0/24 maxlen: 24
193.22.21.0/24 maxlen: 24
193.56.8.0/24 maxlen: 24
193.163.7.0/24 maxlen: 24
193.163.113.0/24 maxlen: 24
194.29.53.0/24 maxlen: 24
212.8.244.0/24 maxlen: 24
212.8.246.0/24 maxlen: 24
212.23.221.0/24 maxlen: 24
212.86.101.0/24 maxlen: 24
212.86.102.0/24 maxlen: 24
212.86.108.0/24 maxlen: 24
212.86.109.0/24 maxlen: 24
212.162.152.0/22 maxlen: 24
213.166.68.0/24 maxlen: 24
213.166.69.0/24 maxlen: 24
213.166.70.0/24 maxlen: 24
213.166.71.0/24 maxlen: 24
2a07:5980::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jul 2024 09:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:54:d2:7a:af:f0:d1:1b:85:b6:02:1c:1b:84:4e:c6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jun 26 13:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10fd76d33c3966618679da77478875bd504a2a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:58:e6:44:31:95:01:a7:48:65:32:5b:9e:9a:
e4:8c:52:15:88:18:5b:4b:95:6d:8c:57:0a:c9:01:
ec:f8:89:34:6a:76:b4:44:e4:cc:cc:63:e8:7d:7e:
8f:5e:b4:66:49:5c:3c:12:bc:d2:f3:9d:89:16:5c:
90:aa:74:f9:bd:98:24:ab:ad:95:8d:c5:30:5d:c1:
89:30:67:3d:be:a0:11:e2:e5:6b:3c:bd:d3:94:c2:
be:36:6c:47:bf:f4:bd:57:b5:b0:5c:f2:65:fe:ae:
c5:ed:8b:ad:c5:6f:52:22:05:ff:b4:e3:55:15:28:
d3:b2:e6:bd:2e:80:a2:b3:4b:b4:7b:75:4b:a4:6a:
36:44:89:5c:c9:97:c3:31:8f:e0:36:fc:11:ec:75:
ea:17:67:d8:6c:2f:23:94:b8:71:38:b2:5e:b3:1b:
13:bc:d5:31:54:de:d4:6b:cb:82:bc:4f:89:cd:41:
04:e2:20:58:75:fd:c8:df:79:48:15:08:ec:0c:f5:
2f:7e:26:1f:5d:0e:27:87:69:4e:15:2c:a6:23:35:
d2:10:62:0c:58:43:57:65:c1:a0:b7:c2:d0:70:c1:
99:ff:42:7a:ce:af:3f:ab:cc:d8:a9:14:ac:15:87:
40:00:b3:a7:b5:90:62:2e:88:55:87:b9:ba:00:08:
62:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:FD:76:D3:3C:39:66:61:86:79:DA:77:47:88:75:BD:50:4A:2A:92
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/EP120zw5ZmGGedp3R4h1vVBKKpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.224.0/22
45.82.68.0/22
45.82.176.0/22
45.87.0.0/22
45.136.84.0/22
45.137.64.0/22
46.18.107.0/24
46.21.250.0/24
77.220.214.0/23
81.31.197.0/24
91.201.25.0/24
91.208.127.0/24
91.209.226.0/24
91.228.56.0/24
94.124.78.0/24
178.159.38.0/23
178.159.42.0/23
185.23.108.0/24
185.51.121.0/24
185.51.246.0/23
185.107.237.0/24
185.204.109.0/24
185.232.164.0/24
185.235.128.0/22
185.241.52.0/22
185.244.216.0/22
185.250.204.0/22
193.22.21.0/24
193.56.8.0/24
193.163.7.0/24
193.163.113.0/24
194.29.53.0/24
212.8.244.0/24
212.8.246.0/24
212.23.221.0/24
212.86.101.0-212.86.102.255
212.86.108.0/23
212.162.152.0/22
213.166.68.0/22
IPv6:
2a07:5980::/29
Signature Algorithm: sha256WithRSAEncryption
33:f1:dc:d9:56:5b:6d:a1:1c:09:e7:d3:bb:f2:03:83:5a:d7:
75:2d:9d:8c:5b:0a:cb:e2:0a:eb:29:72:6f:40:27:c3:68:df:
60:0d:da:36:ec:f1:17:51:cf:44:7e:75:3a:c4:8e:72:46:e8:
e7:97:92:2e:c3:6a:d5:78:ec:78:6a:76:cc:65:d8:89:66:12:
3c:11:89:1e:7b:15:ba:a9:aa:75:1d:db:3a:ac:c2:05:03:92:
c8:b2:d5:62:52:f1:b3:cb:1b:25:91:1a:69:cb:53:16:bf:f2:
44:42:39:5e:06:1b:35:a6:6e:a1:07:81:b6:82:e3:56:d7:81:
84:d1:6e:5e:66:a2:e6:36:df:a8:a3:6d:b4:c8:0f:7a:17:5f:
db:65:91:fa:a5:24:28:73:7c:af:f7:42:c1:a3:d4:0d:de:e3:
1f:03:6a:bf:9e:1c:27:bc:b9:8b:00:d1:ed:9e:ad:68:93:0f:
87:17:3f:92:5b:bc:aa:f6:b2:1b:c3:a1:f8:9c:1d:20:2e:ad:
9c:d2:2e:73:d6:df:fe:25:e6:57:ed:ff:34:79:c9:71:e0:7f:
fe:c1:f4:7f:56:85:b2:80:80:09:ae:e5:a8:28:1e:93:43:97:
c4:b1:d8:92:6a:55:48:39:2e:29:49:f8:ed:5b:fa:b8:e0:c7:
68:23:cb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:20 2025 by rpki-client