Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ReeP0z_YBc80BEGzbnobxK5ziLc.roa
File: ReeP0z_YBc80BEGzbnobxK5ziLc.roa (raw, json)
Hash identifier: e0zKT8jL+PXqa7aD6JiFGnX4M/3QoWWErVrkEJnLAao=
Subject key identifier: 45:E7:8F:D3:3F:D8:05:CF:34:04:41:B3:6E:7A:1B:C4:AE:73:88:B7
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019169AA701EDAFC529E8215554BAEDEF683
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ReeP0z_YBc80BEGzbnobxK5ziLc.roa
Signing time: Mon 19 Aug 2024 08:04:23 +0000
ROA not before: Mon 19 Aug 2024 08:04:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.10.104.0/22 maxlen: 22
45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.20.0/22 maxlen: 22
185.203.20.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 08:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:aa:70:1e:da:fc:52:9e:82:15:55:4b:ae:de:f6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 19 08:04:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45e78fd33fd805cf340441b36e7a1bc4ae7388b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:20:0a:2a:be:40:76:5b:e0:0c:b8:ad:29:8e:
b6:b3:d3:42:92:67:40:3d:87:65:a0:e8:18:28:e1:
03:65:78:0d:3f:7b:b4:a5:62:ca:4c:ad:29:b6:ad:
f1:e3:54:70:00:2e:dd:a5:cc:6c:58:61:f8:97:37:
44:56:20:e2:52:a2:70:04:7b:5c:e6:3a:ed:b0:b2:
89:f7:f0:ec:b3:37:da:5e:c5:62:aa:08:be:20:f8:
57:79:cf:f9:27:15:e9:a5:e1:07:6c:10:a3:e4:2f:
06:87:c1:1d:b4:d2:04:73:2a:38:d5:7f:c5:43:fe:
04:d4:1f:8e:9f:99:57:2d:71:99:1c:cc:b8:0d:1a:
ce:d1:59:d2:9a:c6:03:8e:6c:81:30:e4:f8:f7:15:
9e:d1:1e:6d:8d:17:e7:f9:20:a4:7e:7d:78:67:2c:
e3:4d:d6:78:fb:e9:4d:ed:d2:50:29:b7:0a:32:08:
13:41:08:96:35:60:3c:c4:c8:28:f5:71:fd:25:aa:
b5:e2:42:33:7f:6b:8d:ca:54:b3:54:1f:d0:5f:1f:
0f:1e:95:be:23:f9:1b:ab:f6:b4:e6:00:65:52:78:
76:70:ba:72:09:49:60:3f:c0:7d:c6:92:ef:ea:51:
b3:f4:3c:0f:a6:64:ab:df:f9:42:bb:6f:1c:32:af:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E7:8F:D3:3F:D8:05:CF:34:04:41:B3:6E:7A:1B:C4:AE:73:88:B7
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ReeP0z_YBc80BEGzbnobxK5ziLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
91.132.31.0/24
94.198.46.0/23
178.19.33.0/24
178.19.44.0/24
178.19.47.0/24
185.203.20.0/22
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.146.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:6f:7c:65:07:fa:ae:65:09:5a:6a:29:8e:2e:48:1b:9a:98:
a7:9d:d9:45:40:24:60:03:70:f6:b1:dd:88:e2:ec:89:d7:3c:
69:63:a6:93:a2:74:e7:fb:70:92:3e:78:64:c3:af:d4:73:38:
bf:ab:54:9b:f4:23:31:cc:a2:87:0a:21:28:be:35:ea:7d:5b:
27:dd:4c:ff:8a:de:26:93:ae:36:ac:a0:3d:36:97:36:d9:87:
ac:9c:b3:6f:79:2b:6b:8b:37:64:6a:ee:27:95:bc:fd:14:f2:
8e:81:9b:2b:09:df:51:ae:f2:bd:93:ec:48:3e:28:a3:58:a7:
79:00:d9:2b:7e:94:29:53:19:89:55:cd:69:0d:bd:d6:3d:4c:
12:b2:ec:35:6f:98:08:e7:49:e1:c1:b4:c6:9e:d4:23:cf:a6:
0f:f7:15:21:df:c5:25:4d:64:a3:b9:ca:d2:1a:bf:e2:a4:f1:
b7:58:bf:1f:7d:d2:18:82:98:cb:ed:7a:b9:48:c7:72:2f:a5:
a8:03:18:22:07:87:94:d3:e5:07:db:df:ee:8b:a9:be:1a:b3:
76:01:a4:8e:5f:8a:9d:cb:53:75:6e:15:36:de:34:a7:03:aa:
04:84:ec:1a:37:e5:97:2d:cb:a3:c5:3c:7d:c0:51:b7:e2:fd:
95:aa:25:dd
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZFpqnAe2vxSnoIVVUuu3vaDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjQwODE5MDgwNDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWU3OGZkMzNmZDgwNWNmMzQwNDQxYjM2ZTdhMWJjNGFlNzM4OGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiAKKr5AdlvgDLitKY62s9NCkmdA
PYdloOgYKOEDZXgNP3u0pWLKTK0ptq3x41RwAC7dpcxsWGH4lzdEViDiUqJwBHtc
5jrtsLKJ9/DsszfaXsViqgi+IPhXec/5JxXppeEHbBCj5C8Gh8EdtNIEcyo41X/F
Q/4E1B+On5lXLXGZHMy4DRrO0VnSmsYDjmyBMOT49xWe0R5tjRfn+SCkfn14Zyzj
TdZ4++lN7dJQKbcKMggTQQiWNWA8xMgo9XH9Jaq14kIzf2uNylSzVB/QXx8PHpW+
I/kbq/a05gBlUnh2cLpyCUlgP8B9xpLv6lGz9DwPpmSr3/lCu28cMq9powIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFEXnj9M/2AXPNARBs256G8Suc4i3MB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvUmVlUDB6X1lCYzgwQkVHemJub2J4SzV6aUxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAi0K
aAMEAC1QUAMEAS1QUgMEAS1TMgMEBFBCcAMEAFkqRgMEAVkslgMEAFuEHwMEAV7G
LgMEALITIQMEALITLAMEALITLwMEArnLFAMEArnl1AMEALnyrwMEAMGy1AMEAMGy
2gMEAMG6AQMEAMG6CwMEAMIPkgMEAMIPwzANBgkqhkiG9w0BAQsFAAOCAQEAX298
ZQf6rmUJWmopji5IG5qYp53ZRUAkYANw9rHdiOLsidc8aWOmk6J05/twkj54ZMOv
1HM4v6tUm/QjMcyihwohKL416n1bJ91M/4reJpOuNqygPTaXNtmHrJyzb3kra4s3
ZGruJ5W8/RTyjoGbKwnfUa7yvZPsSD4oo1ineQDZK36UKVMZiVXNaQ291j1MErLs
NW+YCOdJ4cG0xp7UI8+mD/cVId/FJU1ko7nK0hq/4qTxt1i/H33SGIKYy+16uUjH
ci+lqAMYIgeHlNPlB9vf7oupvhqzdgGkjl+KnctTdW4VNt40pwOqBITsGjflly3L
o8U8fcBRt+L9laol3Q==
-----END CERTIFICATE-----
Generated at Tue Sep 10 10:22:48 2024 by rpki-client on console-fra.rpki-client.org