Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/aTn9_FXUcyxgJriUOggFlq1jWdg.roa
File: aTn9_FXUcyxgJriUOggFlq1jWdg.roa (raw, json)
Hash identifier: /4MiUrWiEnXIiIS5Nw4c38Mh//wrIvrSAfp9vo92Af0=
Subject key identifier: 69:39:FD:FC:55:D4:73:2C:60:26:B8:94:3A:08:05:96:AD:63:59:D8
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190EF8F70F1ACBAE736C48C3AF0DF59BC81
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/aTn9_FXUcyxgJriUOggFlq1jWdg.roa
Signing time: Fri 26 Jul 2024 15:01:13 +0000
ROA not before: Fri 26 Jul 2024 15:01:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8903
IP address blocks: 45.10.104.0/22 maxlen: 22
80.66.112.0/23 maxlen: 23
80.66.115.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
85.209.72.0/22 maxlen: 22
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/23 maxlen: 23
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jul 2024 07:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:8f:70:f1:ac:ba:e7:36:c4:8c:3a:f0:df:59:bc:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 26 15:01:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6939fdfc55d4732c6026b8943a080596ad6359d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e4:f2:75:08:a3:6d:33:a2:75:2f:e9:ad:22:
f8:5d:b3:6c:26:f7:62:2c:df:06:ca:32:7f:42:87:
d1:bf:f8:b5:f8:40:3c:70:75:7c:75:29:f9:03:73:
b3:f5:0b:f8:f1:90:6a:8f:67:2b:d3:2b:1b:ea:9d:
ca:63:b7:95:09:65:3a:8b:8c:82:97:9e:63:8d:14:
a1:21:f8:54:a9:6f:4a:75:ab:e6:1d:bf:49:76:dc:
13:bf:0c:4b:4e:47:c7:6c:d7:d0:6f:7d:e5:95:ae:
da:90:99:90:33:92:4e:f8:1f:97:ee:78:31:eb:d8:
77:53:b7:7b:17:55:e0:1a:77:a0:ad:a6:3d:47:0c:
35:f3:e2:d6:61:37:91:6e:37:c3:52:be:e4:0d:18:
17:bf:33:6e:a4:cf:ea:97:76:58:9e:23:66:12:8b:
10:08:71:67:68:8c:b7:70:73:34:59:06:00:06:a7:
53:23:95:99:c5:c3:e4:b1:76:2f:c3:54:a3:1c:87:
e4:13:b9:f5:48:01:23:a3:97:b1:80:60:49:27:6e:
39:05:dc:9a:9a:1e:98:98:f7:96:28:fa:c2:c0:a9:
6e:cb:83:85:4b:cf:71:9b:ed:2e:1b:0b:20:9b:1c:
de:e8:5e:82:35:65:46:89:b9:80:6b:bf:b7:52:86:
9a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:39:FD:FC:55:D4:73:2C:60:26:B8:94:3A:08:05:96:AD:63:59:D8
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/aTn9_FXUcyxgJriUOggFlq1jWdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
80.66.112.0/23
80.66.115.0/24
80.66.120.0/23
85.209.72.0/22
89.42.70.0/23
89.44.150.0/24
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.229.213.0/24
185.229.215.0/24
185.242.175.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:60:56:23:b6:b9:bb:7b:06:37:64:04:36:e8:f9:01:46:93:
8f:68:99:32:1f:07:b7:48:c6:b4:85:8d:76:4b:87:a3:37:90:
af:16:9e:12:b1:2c:b5:b1:e7:26:a4:ce:39:12:9a:15:3b:52:
7a:0c:53:05:32:29:30:bc:f9:22:2e:64:5e:47:dd:36:a4:ec:
ac:aa:da:8a:75:6c:42:cb:56:d0:33:73:df:68:c7:c2:58:a7:
35:76:7c:e2:7a:eb:e4:90:7c:33:e7:44:ca:ba:7c:65:6a:a4:
33:6f:c3:d8:8c:74:57:0b:fe:66:53:13:dc:6b:ed:31:9f:5a:
4c:00:00:06:23:65:1c:d1:e0:21:2f:37:31:00:4c:13:7a:99:
44:ca:d9:87:15:ae:72:79:88:32:ae:54:0c:8a:e6:b7:1d:23:
c6:28:78:95:44:2d:52:48:d0:33:47:5f:9d:97:05:9d:05:03:
25:ed:cc:f4:49:e1:f5:39:cb:91:90:2d:6a:75:f4:88:47:94:
7e:10:35:76:5a:e5:ab:d5:34:82:a8:12:e8:f6:ff:dd:d8:f8:
a9:29:7a:68:24:80:d4:4f:bf:d0:ed:1c:9c:a0:0d:35:f8:9c:
da:5f:8d:b1:43:bd:dc:57:d8:77:3d:8e:2e:5c:3b:be:e5:22:
07:89:60:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 10:01:18 2024 by rpki-client on console-ams.rpki-client.org