Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XUmxGk1Y6MjTkHu652XiultAWsw.roa
File: XUmxGk1Y6MjTkHu652XiultAWsw.roa (raw, json)
Hash identifier: mKAQrhPQvP+vnZfKwks33tOr10DnRKS85Qhnm17lnmk=
Subject key identifier: 5D:49:B1:1A:4D:58:E8:C8:D3:90:7B:BA:E7:65:E2:BA:5B:40:5A:CC
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190EF8F7164BF85CCE8804119FC786B2C47
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XUmxGk1Y6MjTkHu652XiultAWsw.roa
Signing time: Fri 26 Jul 2024 15:01:13 +0000
ROA not before: Fri 26 Jul 2024 15:01:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12541
IP address blocks: 45.10.104.0/22 maxlen: 22
80.66.112.0/23 maxlen: 23
80.66.115.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jul 2024 07:56:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:8f:71:64:bf:85:cc:e8:80:41:19:fc:78:6b:2c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 26 15:01:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d49b11a4d58e8c8d3907bbae765e2ba5b405acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:69:11:c6:33:03:55:15:20:84:c4:82:45:b0:
14:39:76:00:17:97:3c:c2:0d:95:c7:2f:e4:46:57:
f4:6b:d8:fe:8d:a3:e8:99:14:c2:e7:2b:85:4b:5d:
d0:d7:33:1e:2b:29:57:fb:ba:a9:70:a5:4c:52:38:
f9:67:05:c4:9c:cd:ab:07:40:b7:38:6f:1e:64:f5:
56:c4:2d:6f:14:87:86:f6:50:b1:30:f7:8e:9f:21:
7e:e2:b3:82:51:6f:68:75:9c:4f:d9:7b:ad:dd:8e:
24:a3:39:1f:da:7c:12:49:dd:14:69:0e:53:3a:9f:
52:6b:c4:ce:a9:90:a2:37:4e:7f:c7:4a:c8:93:22:
e5:03:a6:5a:2f:23:de:84:e3:f4:bb:d3:bc:6c:ea:
d6:5e:b0:8d:3c:12:60:75:f4:cc:58:4a:cc:c8:d9:
03:f0:6e:b1:34:c5:8c:e0:09:ae:59:97:4f:2e:4c:
2d:8f:c7:f1:83:00:2d:18:cb:9b:81:79:e0:94:a4:
39:58:a7:69:4e:ee:a0:f7:7c:4b:76:24:9d:45:f8:
57:c8:a4:e5:9a:6d:1a:97:78:55:4e:b3:bd:50:00:
89:a8:16:a4:84:21:ed:02:90:c6:6e:06:8f:7a:49:
6c:e6:a5:5e:64:1d:55:f8:91:ca:84:a8:19:e3:0b:
54:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:49:B1:1A:4D:58:E8:C8:D3:90:7B:BA:E7:65:E2:BA:5B:40:5A:CC
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XUmxGk1Y6MjTkHu652XiultAWsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
80.66.112.0/23
80.66.115.0/24
80.66.120.0/23
89.42.70.0/23
89.44.150.0/24
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.229.213.0-185.229.215.255
185.242.175.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:41:50:78:35:a5:b7:56:26:89:ae:3a:d3:28:5c:c7:ab:0e:
36:00:92:63:e6:9b:16:98:0d:f8:90:75:7d:0c:2f:b9:6c:27:
0d:b8:74:89:6b:15:e9:d6:3b:00:32:ed:ac:1f:27:c3:52:31:
b6:1e:57:4f:31:d4:6d:22:cf:44:e1:2e:f8:ca:be:b6:9b:74:
94:d7:12:a2:51:85:20:fc:6b:4f:25:fb:9b:91:87:9b:f7:ae:
66:7f:5b:72:bd:38:cf:5d:a5:c3:fd:91:72:94:fa:c5:9a:25:
b6:36:20:fa:6d:c2:f8:18:4b:9b:17:95:bb:2e:d0:76:de:d0:
7d:d3:9f:07:f2:04:6c:bb:98:18:18:06:12:c7:1a:dd:ac:bf:
59:0c:22:11:2d:4b:0f:83:8f:19:94:f1:b2:da:41:57:29:88:
12:a8:c6:c6:4c:21:1a:04:9f:5d:fe:d9:d6:74:3d:c4:df:13:
53:c0:4e:35:74:2e:e1:7a:33:77:4b:5b:bc:30:ea:7b:17:1c:
5f:fc:a7:3d:df:49:72:fe:85:df:94:6c:00:2f:8f:f0:67:28:
0d:49:cd:b5:e2:b5:27:91:d0:37:d4:f7:36:13:c4:1a:dc:01:
91:07:99:9e:d8:ab:42:98:65:52:0d:25:74:60:84:e5:32:40:
49:42:f0:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 09:48:36 2024 by rpki-client on console-fra.rpki-client.org