Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/iy0ITrm7u1AmEMr-AkJ0FPCN5Yg.roa
File: iy0ITrm7u1AmEMr-AkJ0FPCN5Yg.roa (raw, json)
Hash identifier: o1qEHx7X1eg0f9T7GX43nxs/CsMVROUlFUfTxWCqeL8=
Subject key identifier: 8B:2D:08:4E:B9:BB:BB:50:26:10:CA:FE:02:42:74:14:F0:8D:E5:88
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0190F3494AA1AD31561C3D15D92B32379A5E
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/iy0ITrm7u1AmEMr-AkJ0FPCN5Yg.roa
Signing time: Sat 27 Jul 2024 08:23:04 +0000
ROA not before: Sat 27 Jul 2024 08:23:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12541
IP address blocks: 45.10.104.0/22 maxlen: 22
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/23 maxlen: 23
80.66.122.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.42.71.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
89.45.208.0/24 maxlen: 24
89.45.209.0/24 maxlen: 24
91.132.31.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.34.0/24 maxlen: 24
178.19.35.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.45.0/24 maxlen: 24
178.19.46.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.71.28.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
194.15.140.0/24 maxlen: 24
194.15.146.0/24 maxlen: 24
194.15.182.0/24 maxlen: 24
194.15.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jul 2024 20:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:f3:49:4a:a1:ad:31:56:1c:3d:15:d9:2b:32:37:9a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 27 08:23:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b2d084eb9bbbb502610cafe02427414f08de588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b1:f9:e4:3f:7e:50:58:cc:df:00:0e:a6:57:
cf:13:00:ab:90:84:54:e3:f9:8a:f6:9a:2e:12:b7:
70:10:2f:11:eb:5a:65:b0:4e:b1:68:fb:57:db:04:
bd:b4:0a:53:df:1e:e6:d3:3e:c8:11:ed:1c:cb:12:
22:80:0d:fd:b8:ee:85:fe:76:e8:06:d6:07:df:a4:
84:e6:98:9d:e5:c5:f3:28:32:38:98:7c:69:28:e4:
ba:32:78:b5:1d:ad:c2:68:cc:a3:b7:39:fb:82:d8:
29:6d:3b:4c:e4:e6:12:97:b3:df:38:6e:da:d9:0b:
2f:6f:28:54:8a:00:5c:14:88:ba:f1:4b:6f:e5:58:
12:40:95:a0:e8:bf:3d:6b:81:ee:71:c5:f9:3a:7c:
96:f4:21:b0:63:5d:30:34:44:f1:98:06:76:1f:d7:
50:95:86:56:60:33:4f:87:63:c1:7a:b8:8f:e8:9b:
b2:93:0b:04:e6:56:1e:11:57:6d:56:35:e8:0a:b3:
51:5a:fa:12:1d:7a:b8:87:e1:d1:fc:c4:5e:39:2e:
63:62:9c:92:af:ba:71:44:37:81:59:2b:d7:55:52:
d0:53:35:02:48:5a:39:38:18:6a:ca:ac:7f:2f:c5:
1f:09:08:9d:5a:d6:13:4d:05:fb:a6:28:b0:c3:3d:
e5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2D:08:4E:B9:BB:BB:50:26:10:CA:FE:02:42:74:14:F0:8D:E5:88
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/iy0ITrm7u1AmEMr-AkJ0FPCN5Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.104.0/22
45.83.50.0/23
80.66.112.0/20
89.42.70.0/23
89.44.150.0/23
89.45.208.0/23
91.132.31.0/24
94.198.46.0/23
178.19.32.0/22
178.19.44.0/22
185.71.28.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
194.15.140.0/24
194.15.146.0/24
194.15.182.0/24
194.15.195.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ac:25:e6:56:2f:be:23:5e:7c:4d:3a:db:5e:53:43:52:18:
23:90:52:cd:1a:8b:e6:94:b1:1a:7d:c1:f0:96:25:42:d0:e0:
e2:d5:63:1f:05:47:ec:62:93:cd:b0:78:7c:78:9d:8a:88:48:
d4:db:13:40:37:3d:e5:6f:5b:d2:7f:09:9f:2b:46:86:9b:c5:
02:0f:32:15:bd:c1:60:41:81:70:b0:bf:e4:60:ad:eb:f4:16:
00:64:c8:b3:7a:6e:68:cd:47:9a:3d:a0:ae:43:02:84:ea:da:
d0:5b:1e:f4:3d:25:83:f2:29:56:5c:e9:7a:8b:8d:0a:37:e0:
f5:71:0b:ef:e1:02:cd:77:fb:d8:91:ba:60:91:ee:b8:0f:98:
d5:59:3e:1e:2d:3c:a9:8f:62:eb:01:c7:dd:28:73:bf:63:93:
1a:4f:d1:00:2a:f7:58:31:15:53:47:85:63:7a:cb:27:bc:f1:
f0:60:1b:25:c1:37:51:48:67:59:d1:02:33:2c:a7:50:23:4d:
f1:f5:33:9b:85:29:36:40:12:3c:ff:3a:c8:5b:04:60:da:f5:
5e:cf:a7:cc:8e:f9:da:91:64:22:2c:ab:0b:81:9c:cb:76:4d:
15:96:2f:cf:44:65:40:1b:e5:58:1b:8d:db:44:0d:ff:56:c4:
07:d4:ec:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 23:43:49 2024 by rpki-client on console-ams.rpki-client.org