Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XVmHNVELuRcChgw9GXE-PA9FYDw.roa
File: XVmHNVELuRcChgw9GXE-PA9FYDw.roa (raw, json)
Hash identifier: FNnkwJNCeAl2xXzVctO6nrBpYxy1LfJj/N6eEGmtX3U=
Subject key identifier: 5D:59:87:35:51:0B:B9:17:02:86:0C:3D:19:71:3E:3C:0F:45:60:3C
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019108092D6274B9D7E92AB3147F8E6A83A2
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XVmHNVELuRcChgw9GXE-PA9FYDw.roa
Signing time: Wed 31 Jul 2024 09:05:04 +0000
ROA not before: Wed 31 Jul 2024 09:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8903
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
85.209.72.0/22 maxlen: 22
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/23 maxlen: 23
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 08:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:09:2d:62:74:b9:d7:e9:2a:b3:14:7f:8e:6a:83:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 31 09:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d598735510bb91702860c3d19713e3c0f45603c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3f:af:78:14:2c:a1:3c:03:72:65:40:8c:08:
21:c4:79:ba:c5:b6:e4:96:9f:99:bd:13:81:7e:2c:
94:95:22:62:df:77:d7:6a:c5:eb:57:6e:27:6c:5c:
5c:b5:9d:4f:3f:fc:81:97:b2:e5:14:14:ac:0e:ce:
15:02:76:3c:31:06:3c:4a:49:75:27:99:d4:25:54:
9a:e8:ef:62:ce:64:27:30:82:c3:39:ea:44:0c:c9:
53:58:77:78:c1:f3:6e:8e:cc:ec:75:3d:2c:a7:86:
cf:f9:80:b5:1d:d6:25:3a:43:ca:f6:3f:32:44:88:
9b:20:02:c2:36:48:ac:aa:99:e3:b7:1c:03:5c:88:
76:d5:16:ff:ef:45:c2:67:18:7c:20:4b:32:47:1a:
c6:c1:b7:82:58:e0:01:77:a6:55:d2:46:63:e4:89:
bf:76:3d:18:04:b7:63:56:f4:ca:11:5a:5c:3b:06:
20:c7:7e:ac:d5:03:5b:df:57:4a:74:81:43:5e:92:
2b:5d:0d:91:22:e7:d5:72:88:f9:72:77:e8:be:1b:
87:a7:f4:51:f4:0a:a6:3f:b3:5a:7b:bb:94:29:d7:
a5:57:be:f2:98:59:93:6c:8b:c5:e8:5e:b6:b0:b8:
55:91:e7:dc:9d:16:e8:75:19:a6:7c:0c:5f:f4:a9:
a9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:59:87:35:51:0B:B9:17:02:86:0C:3D:19:71:3E:3C:0F:45:60:3C
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/XVmHNVELuRcChgw9GXE-PA9FYDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/23
80.66.112.0/20
85.209.72.0/22
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
93:7e:60:71:87:2e:87:d7:25:0e:5b:24:c9:8b:92:5a:e7:71:
97:d8:7a:34:be:2f:6b:08:19:81:99:4f:f5:74:40:21:82:5c:
ae:b0:84:65:cc:47:8f:56:3d:fc:eb:72:56:6b:ef:1e:f2:76:
81:4a:03:35:b5:b0:e6:9a:fe:72:53:78:36:4a:ad:62:ff:ba:
31:6c:e6:ae:e5:30:e1:09:e0:98:e6:d3:1f:82:27:a3:f8:12:
a9:d6:1c:6e:88:15:7d:59:4e:b6:2c:44:01:c1:2c:ba:7a:e7:
af:93:a5:41:2b:32:e5:4f:90:e7:4d:99:60:8d:1b:8d:94:de:
03:6e:39:1a:57:9c:e0:81:4e:37:b9:94:58:dc:21:6b:a5:88:
29:a1:52:e7:f3:c6:bb:91:1b:d1:a9:80:3b:35:17:62:1f:82:
6c:4c:57:82:c2:70:c5:ad:29:11:34:c9:e9:a7:57:66:98:b9:
de:7c:28:61:d6:a9:8d:f3:65:fe:30:f4:79:5b:71:ed:54:72:
d5:b2:bb:df:8e:1f:46:4e:f0:c0:69:8b:c0:21:cf:8a:9e:7f:
02:c3:45:09:19:4a:94:ff:21:c0:7a:11:e7:7b:f2:d6:b1:91:
22:b2:e6:82:d3:46:86:38:81:d5:a7:3b:58:c1:61:20:e0:f3:
29:89:47:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 10:52:58 2024 by rpki-client on console-fra.rpki-client.org