Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SrNAhI70hNJuCjH0BVbyCf2gE2k.roa
File: SrNAhI70hNJuCjH0BVbyCf2gE2k.roa (raw, json)
Hash identifier: J3gmeeDEwvJRKKwb9txBhvY4bgi6OhpNZh4Bq4EKpIk=
Subject key identifier: 4A:B3:40:84:8E:F4:84:D2:6E:0A:31:F4:05:56:F2:09:FD:A0:13:69
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190FB160F25205610FA922CDC7B00ED9C00
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SrNAhI70hNJuCjH0BVbyCf2gE2k.roa
Signing time: Sun 28 Jul 2024 20:44:05 +0000
ROA not before: Sun 28 Jul 2024 20:44:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.20.0/22 maxlen: 22
185.203.20.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jul 2024 20:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fb:16:0f:25:20:56:10:fa:92:2c:dc:7b:00:ed:9c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 28 20:44:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ab340848ef484d26e0a31f40556f209fda01369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f2:40:6a:46:21:37:08:2a:3e:eb:d9:88:32:
c3:b5:c2:bc:93:a4:ff:08:58:cd:95:21:fd:53:76:
03:1f:e9:e2:51:02:47:94:5d:c9:1b:05:31:bc:34:
c2:bd:a4:dc:22:28:e9:8c:1c:f5:ad:55:a7:94:6a:
6d:04:00:82:b5:44:4b:84:c7:03:94:5f:6a:b2:79:
21:75:6c:85:d0:33:3d:be:e2:c2:07:54:ac:b2:e4:
81:9d:58:99:9a:60:f1:e6:e6:9a:97:18:61:4c:8c:
c6:81:e4:9a:4a:c4:7d:69:db:4b:6f:37:ea:b3:ae:
37:6e:cc:25:4d:c7:95:a9:97:72:a1:c8:ca:22:52:
af:76:3f:21:db:99:6d:0b:f1:25:c4:92:8d:39:23:
44:39:50:a7:f9:c6:86:d1:44:22:77:8f:9d:b6:ec:
bf:48:0e:87:30:68:38:99:0e:50:af:e9:69:0c:9c:
05:99:6e:df:87:3b:35:0f:90:9b:28:d0:f4:ac:bb:
4a:b4:73:42:78:26:45:62:48:17:02:d9:8d:df:7e:
d4:ce:29:58:b7:b9:e0:6b:a5:8f:f3:b8:07:9f:a8:
42:eb:41:fc:81:44:1d:7d:23:3b:b1:67:5b:e5:0a:
5d:89:87:db:6a:5d:5e:68:46:3d:4d:ea:19:d5:78:
e1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B3:40:84:8E:F4:84:D2:6E:0A:31:F4:05:56:F2:09:FD:A0:13:69
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/SrNAhI70hNJuCjH0BVbyCf2gE2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.203.20.0/22
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:d1:f7:8b:84:6b:92:52:5f:1a:a0:71:3a:9f:e3:3f:ef:66:
26:99:b0:c5:f6:8a:95:f4:50:f7:94:41:20:2b:5c:67:65:7a:
16:af:f1:d6:d2:32:f9:7a:90:67:dc:a3:d2:67:be:10:47:8f:
f3:f3:d2:83:00:57:6c:16:58:9e:d2:15:f3:c3:8c:67:a5:db:
7d:fd:fc:cf:9d:bd:e7:1e:13:e3:ba:7d:f6:e7:27:7e:41:bf:
2e:20:36:1e:cf:19:ab:4c:0d:08:06:cc:ba:fb:60:70:d4:8d:
a4:b2:3f:94:22:b0:0d:9d:78:42:3a:52:74:65:62:d2:00:bd:
81:63:8b:41:74:94:fe:31:61:8c:db:17:bd:40:fb:4d:bf:3f:
52:9a:e4:c8:ff:aa:76:08:d2:a7:e8:1e:d1:d1:b1:a5:45:98:
e1:34:41:57:7c:70:ab:08:0d:7e:df:bb:4c:79:5f:af:c7:e5:
29:d5:02:1f:3d:76:40:e0:05:22:75:e7:f9:33:f3:1d:71:73:
1a:61:24:b7:55:69:94:f8:59:a0:13:f1:80:96:b5:58:f1:e0:
8e:67:3a:bf:7e:40:4a:83:74:15:5b:e4:93:8c:de:bf:2f:ff:
d0:45:a1:1b:64:c5:c3:c4:b5:9b:6c:fb:18:34:a6:e1:9b:27:
70:42:af:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:17 2025 by rpki-client