Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/FS77L3SBvHzeDSmHpGUQVwJY82g.roa
File: FS77L3SBvHzeDSmHpGUQVwJY82g.roa (raw, json)
Hash identifier: zDTHIe5gHOQJ/LOVNsRWD4JtdT+N/3XD45qaARhiez8=
Subject key identifier: 15:2E:FB:2F:74:81:BC:7C:DE:0D:29:87:A4:65:10:57:02:58:F3:68
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190FB210AA5BEDB55375545626968411E85
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/FS77L3SBvHzeDSmHpGUQVwJY82g.roa
Signing time: Sun 28 Jul 2024 20:56:04 +0000
ROA not before: Sun 28 Jul 2024 20:56:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8903
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
85.209.72.0/22 maxlen: 22
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/23 maxlen: 23
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 19:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fb:21:0a:a5:be:db:55:37:55:45:62:69:68:41:1e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 28 20:56:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=152efb2f7481bc7cde0d2987a46510570258f368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fb:42:79:5f:ab:3c:79:3b:a5:6b:ef:bb:5f:
72:2c:fa:f5:2e:b9:8e:ad:ca:bb:e6:18:f5:4f:2c:
63:62:ef:39:f4:08:db:4b:7c:66:7e:93:97:ef:6f:
98:8c:18:c9:bc:78:8c:50:1a:87:46:56:a1:c0:39:
ed:bc:34:1b:d3:fc:5f:37:49:41:4c:e9:90:49:ad:
42:a1:d3:62:ec:42:4b:fd:f5:d3:c5:36:6c:1e:41:
c4:e3:0d:75:70:a9:42:45:97:a9:8f:18:39:da:b3:
81:37:c8:0d:97:81:77:a2:39:d7:d5:28:16:21:1e:
d5:8b:93:69:ab:0c:23:b7:d4:fb:b3:a1:45:e0:0b:
f2:e8:32:ef:4c:17:bc:0d:45:38:c0:75:cf:4b:0a:
c1:b1:5e:c2:c7:92:4c:33:8a:21:fa:c3:52:e3:f5:
43:a1:5b:c0:86:9f:4e:6a:4e:9c:73:f1:2e:d4:95:
b8:a9:16:67:00:ba:3f:14:e0:52:c8:a7:2d:04:b4:
4f:fe:f3:53:b7:7c:cf:90:21:d7:a3:5b:40:a1:c9:
c6:15:89:0f:62:40:ca:d4:63:b4:7a:4b:12:cc:55:
c7:b8:28:b7:59:e6:2e:02:f6:56:47:99:32:d0:9e:
63:59:66:59:5b:a3:78:e8:b2:87:6d:de:91:15:02:
78:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2E:FB:2F:74:81:BC:7C:DE:0D:29:87:A4:65:10:57:02:58:F3:68
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/FS77L3SBvHzeDSmHpGUQVwJY82g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/24
80.66.112.0/20
85.209.72.0/22
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/23
185.229.215.0/24
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:02:b3:38:d4:f7:9e:02:06:be:4c:5c:ff:25:60:4e:17:65:
fa:09:f2:0a:65:67:21:5d:ce:dd:43:12:0c:0f:82:4e:ac:3a:
d9:5b:e7:50:ce:9a:4c:10:06:b4:35:f4:ad:89:d3:38:98:c7:
55:6f:fe:bf:1d:a1:d5:4c:e1:6b:4e:da:53:1b:2e:a1:12:2b:
90:ad:f0:17:4a:54:31:b0:63:ec:d9:71:c9:c8:bc:9f:0e:06:
a2:fb:60:b5:4f:71:99:e5:bc:d3:24:9f:30:0e:8e:29:c1:16:
f9:fa:dc:1a:8a:e5:4e:92:fc:25:24:31:ec:8e:15:e3:6c:cc:
8e:7b:a6:a4:db:4b:ee:ed:61:9c:0b:4f:aa:77:ed:0f:0a:70:
28:5f:92:26:d6:5d:15:bf:45:03:e0:d3:5f:dd:f6:f3:7f:0c:
04:aa:b8:9e:3a:f8:65:e2:7c:e4:36:d0:69:d9:1f:d3:3a:18:
5e:a7:30:d3:5b:18:29:6d:16:50:09:3c:b6:a2:62:de:b5:09:
2a:83:66:87:43:7e:4f:70:37:61:46:53:25:a3:bf:4e:1c:0b:
3f:40:82:ce:aa:94:ac:f8:f8:1e:31:ff:0d:52:30:55:da:2a:
2f:15:8e:06:44:fc:29:a8:c6:c1:42:a3:67:b6:53:d9:95:e8:
7a:7f:b8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 29 21:54:47 2024 by rpki-client on console-ams.rpki-client.org