Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPNknpPncNie45M53YCSpgbF3tE.roa
File: hPNknpPncNie45M53YCSpgbF3tE.roa (raw, json)
Hash identifier: DIHx2C1qC4qUki9hlmEbaj0Gb0BkAPcY1XwoOihew+g=
Subject key identifier: 84:F3:64:9E:93:E7:70:D8:9E:E3:93:39:DD:80:92:A6:06:C5:DE:D1
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0191DAF3FF1B5129A8FDFD047FCEE074A27F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPNknpPncNie45M53YCSpgbF3tE.roa
Signing time: Tue 10 Sep 2024 08:01:49 +0000
ROA not before: Tue 10 Sep 2024 08:01:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.10.104.0/22 maxlen: 22
45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/20 maxlen: 20
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.20.0/22 maxlen: 22
185.203.20.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 08:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:da:f3:ff:1b:51:29:a8:fd:fd:04:7f:ce:e0:74:a2:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Sep 10 08:01:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84f3649e93e770d89ee39339dd8092a606c5ded1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b9:c3:dc:53:e5:33:38:1f:f8:3f:14:d2:50:
f4:9e:41:93:82:6e:12:fe:f8:1d:e4:f7:73:8f:a7:
2a:4c:78:c2:1d:5f:17:93:c4:78:f7:41:55:0c:58:
a0:ad:38:b5:60:69:d8:00:24:cd:bf:60:13:51:af:
33:64:23:f3:e0:a1:93:3a:4c:13:7b:3e:f5:d0:01:
d8:f4:e6:88:b1:e5:21:0b:88:a3:9b:15:f0:c5:1f:
3d:fa:d8:2b:0d:3f:ff:be:11:01:63:34:d7:4a:11:
df:6a:18:1f:a7:1c:0f:0f:7a:c6:e9:b7:13:32:09:
20:06:cc:80:d2:50:6b:d4:58:c1:df:1a:4a:f1:d9:
6b:83:41:cc:2e:56:36:57:fa:71:89:c0:bb:52:66:
84:98:82:b9:ae:bd:da:3c:df:82:13:83:a6:ee:22:
d5:8c:b7:8b:9c:a2:f7:50:46:ea:c2:23:ea:24:16:
1b:d3:e0:96:0c:24:dc:ca:e5:2f:2c:ed:a3:07:57:
2a:ab:b2:89:b8:ad:84:73:09:7c:cc:5f:ef:7e:a6:
b2:f2:1f:35:15:77:d8:d4:37:69:24:34:24:ed:5c:
4a:be:40:8a:6e:ed:7e:f1:21:9d:20:2c:b6:ae:f7:
6f:50:bd:65:d1:0f:0f:44:64:5d:d7:c1:9a:c3:13:
32:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F3:64:9E:93:E7:70:D8:9E:E3:93:39:DD:80:92:A6:06:C5:DE:D1
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hPNknpPncNie45M53YCSpgbF3tE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0/20
89.42.70.0/24
89.44.150.0/23
91.132.31.0/24
94.198.46.0/23
178.19.44.0/24
178.19.47.0/24
185.203.20.0/22
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.146.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:57:b1:ee:fa:e8:2f:ac:be:71:1a:e6:4e:7f:8f:7f:05:32:
a5:c8:b2:e5:e1:86:26:a8:ab:dd:57:b9:34:79:8b:c6:48:d7:
85:09:ce:e8:08:fa:e5:26:71:23:76:75:cf:fe:44:01:ef:eb:
1c:19:e7:d1:60:71:d5:60:dd:1c:c0:ec:fd:ed:00:5a:07:89:
5f:6b:70:74:ce:37:f4:f7:cf:0c:e1:15:78:e4:98:6d:06:55:
52:0e:96:88:f2:be:07:bb:95:aa:54:91:62:7c:eb:61:bb:e7:
19:f6:6b:0b:d8:24:dd:b1:e0:a3:43:c1:42:d5:e5:8e:1d:30:
29:9a:2f:8a:b8:52:c5:dd:0d:75:cb:b9:9c:1d:8d:f4:5f:53:
b1:83:c4:f6:22:cd:90:13:cf:d0:d3:ec:9d:d1:7a:1d:20:70:
99:ce:9a:2f:d8:f0:92:46:39:62:4a:ff:34:6c:7d:13:bc:09:
70:e0:2a:61:13:25:d9:5e:c1:76:61:10:62:e5:ce:f5:88:e1:
af:65:26:75:3e:24:ff:e1:02:23:0f:6c:ac:19:53:00:f7:c4:
94:60:26:d3:b8:31:bb:c0:b1:87:7d:82:74:64:9f:0f:c3:77:
5f:77:34:e2:71:0a:06:67:ea:67:86:ec:23:82:14:a1:a7:9a:
1e:27:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 11:26:55 2024 by rpki-client on console-ams.rpki-client.org