Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/idSE_Or9ZcDgNHbTxzq72FhE-F0.roa
File: idSE_Or9ZcDgNHbTxzq72FhE-F0.roa (raw, json)
Hash identifier: RDTXWp5kp86YMsKg/ZeOR9f3hCH8xLetQ3m4PsALCso=
Subject key identifier: 89:D4:84:FC:EA:FD:65:C0:E0:34:76:D3:C7:3A:BB:D8:58:44:F8:5D
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190FB210AD803FBEEAE1316CCD18334B344
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/idSE_Or9ZcDgNHbTxzq72FhE-F0.roa
Signing time: Sun 28 Jul 2024 20:56:05 +0000
ROA not before: Sun 28 Jul 2024 20:56:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12541
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
193.178.212.0/24 maxlen: 24
193.178.218.0/24 maxlen: 24
193.186.1.0/24 maxlen: 24
193.186.11.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 08:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fb:21:0a:d8:03:fb:ee:ae:13:16:cc:d1:83:34:b3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 28 20:56:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89d484fceafd65c0e03476d3c73abbd85844f85d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:76:5d:c7:ab:d4:40:86:57:f6:02:72:ad:be:
4c:2d:10:87:83:d0:17:a7:7a:c9:8a:4d:e2:c0:17:
bf:df:68:90:0e:1d:fc:8b:5c:c5:11:71:89:b5:39:
51:ca:82:fb:9c:19:ea:c7:ce:0a:4e:1c:1c:cc:23:
1d:38:b5:b4:ce:63:da:df:d2:cf:7c:b5:05:12:a8:
e2:7f:a0:56:4e:d3:ee:ca:4f:db:3a:66:42:66:e6:
89:eb:c2:4a:c3:d9:97:b5:41:b3:43:b5:60:6b:15:
2b:e8:b3:23:89:f3:02:9d:af:8c:d4:9f:fe:cb:a2:
c0:5d:4a:61:fe:76:a8:7b:33:d5:cb:41:ef:3e:fb:
1c:0f:14:97:22:1f:3e:4e:6f:7f:c9:9f:1c:69:d3:
11:3c:cd:5a:f8:dc:b8:a0:96:e7:a5:f5:d0:ed:05:
44:f2:81:7f:11:53:ee:bd:fc:d1:f8:6b:5a:03:5e:
b5:5b:4e:e8:57:6d:af:f1:03:b1:f0:d0:53:ee:59:
8b:e7:a1:f0:ef:80:c7:4a:b2:da:0a:ef:30:1e:56:
19:57:81:d8:28:dc:8d:36:21:f5:70:1c:07:ff:fe:
6f:91:0d:a1:5a:dd:4e:2f:9c:5f:88:a4:53:fe:74:
1d:01:97:10:12:96:24:30:d7:44:75:ea:93:12:59:
4f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D4:84:FC:EA:FD:65:C0:E0:34:76:D3:C7:3A:BB:D8:58:44:F8:5D
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/idSE_Or9ZcDgNHbTxzq72FhE-F0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/23
80.66.112.0/20
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
193.178.212.0/24
193.178.218.0/24
193.186.1.0/24
193.186.11.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
50:08:f3:8c:f1:cc:58:33:ff:de:a4:e9:41:df:c1:cd:09:e9:
5c:13:39:5b:e1:bf:60:18:29:b3:21:66:8a:97:e6:74:e4:f5:
28:01:6f:c3:db:50:07:73:a1:95:45:74:1b:bd:c9:e5:82:7d:
cd:e4:dc:19:09:21:21:f7:da:55:9f:02:21:ca:49:58:76:13:
3a:60:81:19:b2:b9:6c:d6:b5:4d:eb:d1:b0:a7:52:de:d1:0a:
91:fa:e7:a9:4a:ff:c9:bc:82:f0:f8:37:e9:3a:b8:23:1f:ef:
23:6a:33:7d:05:47:24:42:cb:9c:c6:f2:e9:1e:e1:7c:6d:98:
77:e5:70:0a:44:46:1e:20:04:f0:de:b3:39:d3:96:2c:ab:f2:
50:f8:4f:50:29:c3:6d:bf:ed:26:67:81:72:69:fe:52:df:c7:
0d:62:6b:4d:9c:34:78:e3:10:d0:77:e7:dc:3b:2b:f9:d8:c0:
9a:67:37:98:0c:13:35:a6:a2:a8:8a:a9:15:89:3d:c6:52:b0:
41:ec:2a:a7:3e:7e:41:df:80:d7:dd:08:e3:cd:01:7e:3f:f0:
23:7c:c0:9a:65:69:d5:f2:dd:79:0c:6a:ad:b8:7b:a5:90:91:
cb:cf:8b:26:94:e4:dc:8e:07:1f:79:a8:10:15:0c:ab:ed:2c:
e5:fd:bd:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 10:33:50 2024 by rpki-client on console-fra.rpki-client.org