Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/uzfB8t5GAy52fVIpFyRfy8Xxs0E.roa
File: uzfB8t5GAy52fVIpFyRfy8Xxs0E.roa (raw, json)
Hash identifier: sGnQ2abOxxu2OZphv1H9RLk/NGLaH8xuYGIYE7caDoo=
Subject key identifier: BB:37:C1:F2:DE:46:03:2E:76:7D:52:29:17:24:5F:CB:C5:F1:B3:41
Certificate issuer: /CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Certificate serial: 01915258D6F1F6706D378F32C5E87FC31CF1
Authority key identifier: C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/uzfB8t5GAy52fVIpFyRfy8Xxs0E.roa
Signing time: Wed 14 Aug 2024 19:23:59 +0000
ROA not before: Wed 14 Aug 2024 19:23:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211381
IP address blocks: 45.88.76.0/24 maxlen: 24
45.88.105.0/24 maxlen: 24
45.91.200.0/24 maxlen: 24
45.91.201.0/24 maxlen: 24
45.132.107.0/24 maxlen: 24
77.83.175.0/24 maxlen: 24
92.119.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 11:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:52:58:d6:f1:f6:70:6d:37:8f:32:c5:e8:7f:c3:1c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1d369e66cdbe30d7b3aff6081f20c17a98fdc5b
Validity
Not Before: Aug 14 19:23:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb37c1f2de46032e767d522917245fcbc5f1b341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ab:70:8a:8a:39:56:81:6d:43:9b:fc:fb:c6:
e7:20:ea:7c:ce:ec:5c:87:34:37:f5:07:59:8e:60:
12:e3:91:07:50:cb:40:5e:9a:5e:f5:14:68:81:a4:
05:bc:16:7e:fe:3e:5f:2b:5a:de:56:45:af:6e:36:
9b:72:59:e0:44:e2:14:df:ae:f5:a4:b3:65:14:39:
fa:28:31:7c:86:26:74:f8:ff:67:a9:5c:9e:ba:a5:
d9:c5:ab:7f:9f:88:59:5b:6e:ae:eb:81:3d:fa:db:
cf:e3:9c:28:09:63:09:c4:ce:e7:32:55:95:56:55:
55:0f:47:cb:8f:0e:fb:b8:bb:01:92:4b:c9:81:17:
f7:71:ce:d1:ef:e0:b6:ff:c9:51:78:75:f3:b7:43:
ed:99:ab:44:d4:19:6c:7b:cb:37:ce:d6:89:6d:ae:
d8:43:95:7c:5f:58:39:f8:8c:6d:da:c1:7b:9c:fe:
b4:b4:44:e3:b7:ce:f6:4a:84:80:89:67:25:6d:a1:
69:ec:7b:0d:77:ac:10:01:da:9a:ce:71:c9:4a:e6:
b1:43:44:03:5d:7f:26:4f:58:e9:70:97:fd:1f:ad:
d1:4e:25:82:d5:ce:1e:5b:d0:a1:35:2e:07:18:5a:
88:82:40:3b:bd:6f:60:fa:67:9e:3d:02:b3:4c:df:
c5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:37:C1:F2:DE:46:03:2E:76:7D:52:29:17:24:5F:CB:C5:F1:B3:41
X509v3 Authority Key Identifier:
keyid:C1:D3:69:E6:6C:DB:E3:0D:7B:3A:FF:60:81:F2:0C:17:A9:8F:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/uzfB8t5GAy52fVIpFyRfy8Xxs0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/224351-3a47-4014-b395-a63479610968/1/wdNp5mzb4w17Ov9ggfIMF6mP3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.76.0/24
45.88.105.0/24
45.91.200.0/23
45.132.107.0/24
77.83.175.0/24
92.119.114.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7c:10:75:b5:dd:1c:b1:f4:7f:75:7a:ca:b5:b2:bc:df:a0:
61:1a:ff:07:c9:3a:fd:ca:5f:98:b9:7e:22:f0:5f:d7:25:68:
8a:e0:e4:55:c8:20:bf:cf:36:e5:67:12:24:e2:ae:70:77:b6:
bd:e7:80:c4:f5:98:b8:01:29:8f:5c:8f:62:1a:79:11:1c:04:
5a:8c:c0:14:14:c9:b8:c6:2c:13:b3:41:bf:7f:c4:3a:ac:e8:
5d:69:cd:3e:d8:05:5c:2b:7b:1e:05:f8:ec:46:09:79:5c:f3:
90:0b:e7:e1:79:93:13:08:01:9c:e2:ea:e3:51:be:c5:2c:65:
d9:cb:53:2c:52:4c:87:1d:be:94:89:0c:f5:c6:3c:24:72:4d:
d7:43:af:55:06:fa:82:19:f5:9d:d2:33:5d:fb:e2:0f:2b:9f:
c8:ae:9d:ec:80:bf:cf:13:f5:c3:47:1d:ab:5a:c6:bf:7e:4b:
cf:8a:0c:db:da:18:b0:8b:16:ff:bd:53:1b:14:01:7d:d9:c6:
35:69:30:2c:5d:72:2e:ae:69:18:c3:4a:06:6c:ae:93:9f:c8:
a1:b7:1b:7c:0a:10:8a:ca:9f:c5:97:da:a7:e5:bd:5a:a8:13:
6e:c8:44:ca:0c:26:ad:26:cc:cc:9c:a5:d9:9d:6e:e2:ab:09:
14:2a:24:4a
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAZFSWNbx9nBtN48yxeh/wxzxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxZDM2OWU2NmNkYmUzMGQ3YjNhZmY2MDgxZjIwYzE3YTk4
ZmRjNWIwHhcNMjQwODE0MTkyMzU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjM3YzFmMmRlNDYwMzJlNzY3ZDUyMjkxNzI0NWZjYmM1ZjFiMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqtwioo5VoFtQ5v8+8bnIOp8zuxc
hzQ39QdZjmAS45EHUMtAXppe9RRogaQFvBZ+/j5fK1reVkWvbjabclngROIU3671
pLNlFDn6KDF8hiZ0+P9nqVyeuqXZxat/n4hZW26u64E9+tvP45woCWMJxM7nMlWV
VlVVD0fLjw77uLsBkkvJgRf3cc7R7+C2/8lReHXzt0PtmatE1Blse8s3ztaJba7Y
Q5V8X1g5+Ixt2sF7nP60tETjt872SoSAiWclbaFp7HsNd6wQAdqaznHJSuaxQ0QD
XX8mT1jpcJf9H63RTiWC1c4eW9ChNS4HGFqIgkA7vW9g+meePQKzTN/FRwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFLs3wfLeRgMudn1SKRckX8vF8bNBMB8GA1UdIwQY
MBaAFMHTaeZs2+MNezr/YIHyDBepj9xbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd2ROcDVtemI0dzE3T3Y5Z2dmSU1GNm1QM0ZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yMjQzNTEtM2E0Ny00MDE0LWIzOTUt
YTYzNDc5NjEwOTY4LzEvdXpmQjh0NUdBeTUyZlZJcEZ5UmZ5OFh4czBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yMjQzNTEtM2E0Ny00MDE0LWIzOTUtYTYzNDc5NjEwOTY4
LzEvd2ROcDVtemI0dzE3T3Y5Z2dmSU1GNm1QM0ZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALVhMAwQA
LVhpAwQBLVvIAwQALYRrAwQATVOvAwQAXHdyMA0GCSqGSIb3DQEBCwUAA4IBAQBU
fBB1td0csfR/dXrKtbK836BhGv8HyTr9yl+YuX4i8F/XJWiK4ORVyCC/zzblZxIk
4q5wd7a954DE9Zi4ASmPXI9iGnkRHARajMAUFMm4xiwTs0G/f8Q6rOhdac0+2AVc
K3seBfjsRgl5XPOQC+fheZMTCAGc4urjUb7FLGXZy1MsUkyHHb6UiQz1xjwkck3X
Q69VBvqCGfWd0jNd++IPK5/Irp3sgL/PE/XDRx2rWsa/fkvPigzb2hiwixb/vVMb
FAF92cY1aTAsXXIurmkYw0oGbK6Tn8ihtxt8ChCKyp/Fl9qn5b1aqBNuyETKDCat
JszMnKXZnW7iqwkUKiRK
-----END CERTIFICATE-----
Generated at Thu Aug 15 16:42:32 2024 by rpki-client on console-fra.rpki-client.org