Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcovOC0CEZntTcyKWLcaPL6z04Y.roa
File: ZcovOC0CEZntTcyKWLcaPL6z04Y.roa (raw, json)
Hash identifier: JtpQxvhuZhtl60V40kiwniMl9RFgmT4a8R59P5jIG4U=
Subject key identifier: 65:CA:2F:38:2D:02:11:99:ED:4D:CC:8A:58:B7:1A:3C:BE:B3:D3:86
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019108092DEE3C76F1F9548F505A9485ED5F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcovOC0CEZntTcyKWLcaPL6z04Y.roa
Signing time: Wed 31 Jul 2024 09:05:04 +0000
ROA not before: Wed 31 Jul 2024 09:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12541
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 08:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:09:2d:ee:3c:76:f1:f9:54:8f:50:5a:94:85:ed:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 31 09:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65ca2f382d021199ed4dcc8a58b71a3cbeb3d386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:67:d0:0e:a4:32:81:cf:26:5f:e9:45:ed:49:
2e:95:98:2c:c3:d7:9e:4d:4d:84:46:40:87:62:67:
22:5a:e1:c5:f4:5d:50:2e:0b:28:76:8d:92:13:f9:
2e:72:84:10:4e:e0:cb:34:86:5d:3a:be:50:da:34:
ea:4b:37:26:5d:95:f5:67:b7:0c:0b:42:37:4f:65:
45:05:46:01:fc:29:55:b3:9f:73:43:4f:4b:66:dc:
d0:42:5d:2a:0b:26:21:7a:8f:38:f8:40:69:a4:bb:
6f:f8:12:58:ad:01:c9:5a:88:dd:0c:fe:a5:92:29:
e7:80:05:34:51:d9:c9:13:f9:5d:62:31:c3:7d:b6:
20:fa:cb:f7:eb:77:85:be:06:18:f2:52:5f:64:96:
95:bc:13:8d:74:59:a6:70:67:7f:5e:dd:d4:9e:43:
05:ad:fc:23:63:eb:85:ce:c8:f5:82:b9:7f:7c:4b:
9e:9f:b2:a0:6a:75:e8:fc:9a:66:43:d6:28:df:11:
6d:b1:2b:da:b6:46:85:ae:16:e5:3d:7b:ca:66:ec:
f0:62:64:12:65:8b:2b:0f:58:56:90:1b:17:d4:8e:
4c:20:0f:cf:8c:b3:95:03:53:1f:4f:19:89:89:72:
1f:bb:52:8d:36:d6:24:29:65:c7:07:34:76:c5:03:
49:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:CA:2F:38:2D:02:11:99:ED:4D:CC:8A:58:B7:1A:3C:BE:B3:D3:86
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/ZcovOC0CEZntTcyKWLcaPL6z04Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/23
80.66.112.0/20
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
16:67:6e:5f:4a:a6:e6:db:46:75:68:0c:4d:34:85:fc:d6:76:
1d:ff:60:e2:ff:4a:d3:02:31:ff:69:07:e6:15:9c:cf:6c:31:
4e:43:de:3d:1f:d2:72:67:53:56:0c:bf:dd:96:e6:c5:c0:71:
31:20:6d:3c:22:14:c0:a3:af:f7:8c:33:c0:a3:a3:83:48:1f:
1d:0e:d6:41:ff:f6:7a:f4:7f:16:ff:1e:dc:63:78:b8:9c:3f:
25:0f:40:51:e0:25:08:e9:a9:11:38:ab:8a:6e:c1:fb:fb:ea:
7f:77:b1:41:f1:34:38:67:26:56:20:be:10:4e:a7:85:26:ed:
f8:e8:47:be:15:d5:b7:77:87:88:5b:1e:42:f0:f0:a5:6b:64:
4a:84:bb:5a:29:2d:f0:ef:f5:ee:6c:f6:84:2f:37:6e:b3:df:
ed:b4:d6:54:5d:78:80:45:59:1d:d4:aa:8a:ab:74:fa:54:e1:
a2:58:b3:b0:38:e3:e0:fa:68:01:69:78:aa:63:26:6e:3d:cd:
0f:cd:4f:dc:e0:03:c1:f1:4f:4c:28:57:02:11:0d:d8:4b:52:
5c:4e:28:70:80:58:ee:ac:09:37:86:6b:f8:32:f9:a6:34:85:
7e:34:92:51:f6:fc:c0:e9:69:7c:e9:43:7c:57:92:a4:15:b9:
64:92:ff:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 10:52:58 2024 by rpki-client on console-fra.rpki-client.org