Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HVHdlLetHlzRMf2t_ygcPw58gCs.roa
File: HVHdlLetHlzRMf2t_ygcPw58gCs.roa (raw, json)
Hash identifier: i//5BmBBfOK1ko7XDFOawX2Ri0ni/Qimq1LHEWRBHPE=
Subject key identifier: 1D:51:DD:94:B7:AD:1E:5C:D1:31:FD:AD:FF:28:1C:3F:0E:7C:80:2B
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190FFF932F75B5B1F8835BE372EF983177C
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HVHdlLetHlzRMf2t_ygcPw58gCs.roa
Signing time: Mon 29 Jul 2024 19:30:39 +0000
ROA not before: Mon 29 Jul 2024 19:30:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.10.104.0/22 maxlen: 22
45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.20.0/22 maxlen: 22
185.203.20.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 08:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ff:f9:32:f7:5b:5b:1f:88:35:be:37:2e:f9:83:17:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 29 19:30:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d51dd94b7ad1e5cd131fdadff281c3f0e7c802b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:ac:bb:d3:eb:19:da:2a:ca:66:ef:fe:bc:
ac:80:7b:93:58:14:35:17:f7:68:c3:7a:93:0f:b1:
93:9e:7c:76:40:36:01:09:0a:90:71:65:33:fe:70:
2f:be:42:5f:d4:5d:b0:2b:d2:c9:ce:9b:c9:00:38:
2e:5d:6b:7b:eb:48:00:ee:28:40:36:6a:77:11:10:
0b:64:f9:a4:f0:d4:c8:7a:c4:16:26:4e:ee:01:7b:
3a:2b:96:ac:7c:c0:9f:1d:c8:82:6e:da:ff:f2:3b:
7c:fa:84:87:e0:ee:bc:76:44:05:7e:aa:df:1f:0b:
7a:03:74:5e:e3:e0:6d:96:d3:f5:57:7d:a3:ce:bd:
55:bf:12:c2:a9:2e:52:33:e2:06:ce:58:22:dc:a6:
32:b1:14:ba:6f:98:ac:cb:76:c0:60:fd:be:a3:84:
7b:3c:7e:ae:34:4f:2b:c9:30:f0:17:50:a5:32:fa:
12:4d:70:fc:f6:60:3e:dc:56:94:0e:5e:26:6f:68:
c4:36:02:a2:86:fc:3b:b2:69:38:fe:1c:02:6a:f2:
b5:ee:d6:7f:38:e9:c3:16:b2:d1:68:c8:1b:df:8d:
84:fa:c2:f3:cf:44:35:de:2a:2d:bd:b1:ef:b2:47:
8f:b8:64:d7:19:7f:df:e2:a7:06:1d:eb:f4:46:b0:
cb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:DD:94:B7:AD:1E:5C:D1:31:FD:AD:FF:28:1C:3F:0E:7C:80:2B
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/HVHdlLetHlzRMf2t_ygcPw58gCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.203.20.0/22
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.146.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:99:f7:bb:ac:a3:72:3b:87:14:b0:b3:e1:66:15:72:56:12:
06:c7:97:c4:33:22:6f:9f:ff:07:29:11:8b:ef:28:4f:6a:e5:
13:7e:d9:36:58:b9:00:b7:33:eb:00:0c:7f:79:c0:6e:4b:a2:
fa:8b:05:51:f0:ce:e3:b9:6f:38:b7:15:f6:ed:2d:45:a8:c9:
79:25:ca:d2:3e:6e:b5:94:0d:7a:c3:e1:87:86:66:6e:41:7e:
4e:e8:c7:15:56:bb:88:7c:2f:19:e9:c5:79:97:88:c1:50:63:
79:95:52:ed:c1:06:19:7b:f0:ec:e0:9c:f1:3f:8e:47:76:09:
e0:28:3e:3d:fc:7a:71:4e:9c:61:c5:48:45:16:96:79:3c:99:
a2:a0:57:03:86:d8:c4:95:2f:f4:a6:4f:a5:12:cb:91:00:6f:
da:2a:29:ff:d1:b1:7a:0a:6a:19:8e:1f:9e:8e:75:03:00:ff:
91:fe:f7:d8:69:16:72:14:6a:6c:f6:34:4d:a1:ae:15:b4:8c:
41:4f:9c:5a:55:34:cf:e5:4e:2d:a6:5a:89:26:f4:bc:7a:c3:
27:6a:ac:49:37:dd:e2:38:45:8f:47:3d:bb:47:6b:84:ca:21:
d3:10:63:bc:28:4a:c7:ac:cb:e4:4b:12:fb:11:38:39:70:14:
ff:77:b1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 10:52:58 2024 by rpki-client on console-fra.rpki-client.org