Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/heNBpJv_8jscCdhOhkbfnbAf1QY.roa
File: heNBpJv_8jscCdhOhkbfnbAf1QY.roa (raw, json)
Hash identifier: gKSY4W9sts/XkV72lWYj8GYLQP//MJYkj+Lkf1+h1Kw=
Subject key identifier: 85:E3:41:A4:9B:FF:F2:3B:1C:09:D8:4E:86:46:DF:9D:B0:1F:D5:06
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01899BB31D1ABAB88330726FE41032E15DBD
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/heNBpJv_8jscCdhOhkbfnbAf1QY.roa
Signing time: Fri 28 Jul 2023 08:52:34 +0000
ROA not before: Fri 28 Jul 2023 08:52:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 94.198.47.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.80.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.80.82.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
185.229.212.0/22 maxlen: 22
185.229.213.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.114.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 10:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:b3:1d:1a:ba:b8:83:30:72:6f:e4:10:32:e1:5d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 28 08:52:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85e341a49bfff23b1c09d84e8646df9db01fd506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:94:30:c1:5d:83:7a:2f:9e:16:5e:12:3b:
0f:14:64:44:00:1a:10:50:43:82:d0:f8:26:c0:cd:
30:4b:35:e4:77:e1:8e:c4:b2:4f:58:a8:77:80:a8:
b9:bd:bb:d4:1b:f8:0e:3f:a6:23:7b:bf:44:cd:8c:
ce:63:d8:8e:1a:38:09:f5:2e:da:ea:a5:a7:7e:35:
d4:c3:06:de:00:90:3f:8a:58:10:88:83:76:f6:eb:
69:32:ac:db:87:cf:18:4e:94:0b:6f:35:40:6d:f8:
78:c8:ba:3b:ed:44:2d:27:33:5c:64:14:85:6c:d4:
d4:14:bf:27:f5:f0:3a:93:53:dd:a7:d9:09:9f:5c:
6d:c6:03:42:a4:9b:1a:7e:96:49:b8:1c:88:1f:0c:
b3:41:45:69:18:28:c4:59:4b:01:4a:15:91:6a:c6:
20:ea:75:32:32:81:6c:9c:9e:33:a1:f7:94:93:46:
a1:51:ee:d1:1a:3a:b8:9b:4e:0c:1f:f4:ab:a4:9e:
c2:ec:ac:ea:f3:48:bd:38:d9:a6:42:db:83:0a:96:
8f:ba:40:8d:33:f1:83:0a:d4:f5:06:7a:81:b7:02:
3a:da:83:b7:e0:fe:2d:19:a6:5a:02:86:de:c6:19:
b8:21:aa:02:32:31:43:04:f7:2a:9b:65:b2:82:2b:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E3:41:A4:9B:FF:F2:3B:1C:09:D8:4E:86:46:DF:9D:B0:1F:D5:06
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/heNBpJv_8jscCdhOhkbfnbAf1QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/24
45.80.82.0/23
80.66.112.0-80.66.121.255
80.66.123.0-80.66.125.255
89.42.70.0/24
89.44.150.0/23
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a1:a5:e4:86:87:15:2d:44:76:a8:ca:8c:b3:28:94:1a:3f:
d3:f9:cb:79:cc:fc:41:15:c0:43:95:ed:ba:37:4b:7e:9e:66:
de:0a:86:be:01:84:e6:23:ea:08:ed:69:d5:cd:89:07:69:46:
24:a2:4b:91:52:f3:83:49:2e:06:99:43:59:36:4f:67:f2:ce:
10:ed:86:47:bd:8e:6a:41:8d:7f:48:08:1c:7c:f2:9f:49:81:
18:e4:1d:35:44:90:ca:ea:8e:de:f4:20:d5:4f:64:55:42:d2:
2f:14:e8:7c:b2:f8:21:30:5e:a9:40:5f:04:ab:9c:4f:d7:5c:
8d:c7:e9:8b:60:d1:af:b0:4f:8d:78:84:25:b4:42:dd:3e:fa:
cd:c9:af:4f:c5:63:34:c4:d7:93:b0:02:27:44:1c:7e:df:4b:
ad:34:35:73:fb:6b:bc:9e:23:30:21:3b:65:03:81:e6:91:11:
c8:00:6d:63:e7:fd:4f:2d:79:e4:ec:15:11:1f:3c:cf:17:98:
55:ae:c7:3b:b0:d5:1e:56:20:f8:8f:90:fb:1a:9c:3b:0d:7c:
46:76:9e:0b:ac:82:9e:76:db:96:5a:ca:fa:97:b4:0d:06:fd:
c3:89:9a:a8:8e:97:5c:9e:74:63:e4:93:d0:4d:16:43:dc:36:
c5:24:fe:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:35 2024 by rpki-client on console-ams.rpki-client.org