Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2JLVHlwRjVW4tEju_MAOMPGuEzI.roa
File: 2JLVHlwRjVW4tEju_MAOMPGuEzI.roa (raw, json)
Hash identifier: BIIs7TOuLpvsAD4dNYq6hKfBcsT2A94ta5jkkXtRldk=
Subject key identifier: D8:92:D5:1E:5C:11:8D:55:B8:B4:48:EE:FC:C0:0E:30:F1:AE:13:32
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018DA1904078143222B48ABE52291EC36A15
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2JLVHlwRjVW4tEju_MAOMPGuEzI.roa
Signing time: Tue 13 Feb 2024 08:23:21 +0000
ROA not before: Tue 13 Feb 2024 08:23:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 12:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a1:90:40:78:14:32:22:b4:8a:be:52:29:1e:c3:6a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Feb 13 08:23:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d892d51e5c118d55b8b448eefcc00e30f1ae1332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:64:47:9a:26:59:1c:19:dd:08:d9:d5:f2:5c:
ad:67:d8:4d:8d:cf:e3:ce:53:b7:e1:92:b4:76:1d:
ec:3b:13:e6:38:2d:da:8a:c5:cc:cc:72:7f:12:5e:
ad:a5:23:ac:3b:a3:74:bd:6b:3a:21:01:43:de:46:
56:28:d2:c1:3d:5f:70:fc:fd:58:7a:50:69:92:06:
90:d7:6e:33:75:14:20:95:c2:87:0d:20:54:bb:bb:
d2:db:e9:ab:69:8c:80:1e:e5:c2:47:c7:60:84:4f:
3c:51:c1:68:33:7d:8a:69:45:64:bb:17:ce:c7:72:
44:8b:81:cf:d1:80:3c:36:da:23:60:42:ac:c2:f8:
82:40:8c:08:b9:85:a0:50:67:43:e6:ba:02:32:68:
6a:35:47:e3:b8:d6:6c:06:e1:e3:12:79:66:f9:78:
33:c0:28:56:b9:0c:7d:8a:5d:58:f6:fb:19:97:89:
84:7d:36:fd:4f:77:26:f6:0a:09:f6:84:0b:06:c1:
ba:6c:fe:46:2c:c7:2a:81:b7:f3:10:d2:8a:bc:19:
b1:af:ae:68:37:53:c5:17:f3:34:40:79:7a:fd:8a:
5a:b6:8f:93:de:e9:c6:3c:a9:85:ae:43:f1:c5:64:
1d:84:06:c7:c4:73:8e:5a:0f:5b:50:21:62:1b:09:
16:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:92:D5:1E:5C:11:8D:55:B8:B4:48:EE:FC:C0:0E:30:F1:AE:13:32
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/2JLVHlwRjVW4tEju_MAOMPGuEzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:c8:0c:3e:52:e1:2a:d6:b9:f8:5b:3c:9d:c9:de:b4:1d:6d:
95:bd:80:78:80:5c:e1:6b:be:7f:63:5d:a2:b8:49:e0:f2:a6:
fa:5d:23:cc:e2:cf:25:0a:9d:04:e0:37:cd:20:7f:19:c1:72:
d4:4e:68:d8:24:db:41:44:6e:df:e8:94:fd:bd:d7:64:82:d0:
1e:be:34:e2:cf:49:fd:0c:ad:ff:27:c5:a8:a0:68:2d:14:3a:
a7:4d:33:81:96:67:01:95:e4:e4:53:cb:77:c1:19:33:37:ce:
c5:64:ac:fc:0e:bf:12:7c:4d:44:01:37:8d:85:e8:96:c8:b2:
81:31:45:75:d8:97:25:31:3d:12:f8:1f:df:28:88:7e:ad:2d:
13:4e:2c:d3:b8:76:ea:0c:28:e0:44:3f:cc:d9:cb:ec:83:0d:
79:9c:5a:6f:7c:cf:4a:cf:38:df:26:cd:a0:2a:e2:2a:6e:18:
c2:95:cd:03:8c:10:c0:a2:83:14:69:67:47:dd:59:57:b4:e2:
2b:5e:be:35:a6:61:1d:b6:27:91:30:b1:45:97:ef:b1:f4:84:
95:1d:f0:de:0b:f3:ee:b3:17:04:72:c5:4f:82:72:7b:27:e2:
45:34:fe:b5:2e:ac:6b:df:8d:fa:28:6f:5d:6a:06:77:b6:1f:
f2:93:37:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 16 15:29:05 2024 by rpki-client on console-ams.rpki-client.org