Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w5RsdMM_iPDqwXGFGT-hx9ikmXA.roa
File: w5RsdMM_iPDqwXGFGT-hx9ikmXA.roa (raw, json)
Hash identifier: U1/0x3XUsAoZnbPeglNqZVndGARy32MHpD8P7YtnMhE=
Subject key identifier: C3:94:6C:74:C3:3F:88:F0:EA:C1:71:85:19:3F:A1:C7:D8:A4:99:70
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018D5C86447E2A94E6E005FA68EFD6E2AA4D
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w5RsdMM_iPDqwXGFGT-hx9ikmXA.roa
Signing time: Tue 30 Jan 2024 22:38:39 +0000
ROA not before: Tue 30 Jan 2024 22:38:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202766
IP address blocks: 45.80.80.0/24 maxlen: 24
45.80.82.0/23 maxlen: 23
45.80.82.0/24 maxlen: 24
45.80.83.0/24 maxlen: 24
45.83.50.0/23 maxlen: 23
45.83.50.0/24 maxlen: 24
45.83.51.0/24 maxlen: 24
80.66.112.0/23 maxlen: 23
80.66.114.0/24 maxlen: 24
80.66.115.0/24 maxlen: 24
80.66.116.0/24 maxlen: 24
80.66.117.0/24 maxlen: 24
80.66.118.0/24 maxlen: 24
80.66.119.0/24 maxlen: 24
80.66.120.0/24 maxlen: 24
80.66.121.0/24 maxlen: 24
80.66.123.0/24 maxlen: 24
80.66.124.0/24 maxlen: 24
80.66.125.0/24 maxlen: 24
80.66.126.0/24 maxlen: 24
80.66.127.0/24 maxlen: 24
89.42.70.0/24 maxlen: 24
89.44.150.0/24 maxlen: 24
89.44.151.0/24 maxlen: 24
94.198.46.0/24 maxlen: 24
94.198.47.0/24 maxlen: 24
178.19.32.0/24 maxlen: 24
178.19.33.0/24 maxlen: 24
178.19.44.0/24 maxlen: 24
178.19.47.0/24 maxlen: 24
185.203.21.0/24 maxlen: 24
185.203.22.0/24 maxlen: 24
185.203.23.0/24 maxlen: 24
185.229.212.0/22 maxlen: 22
185.229.212.0/24 maxlen: 24
185.229.213.0/24 maxlen: 24
185.229.214.0/24 maxlen: 24
185.229.215.0/24 maxlen: 24
185.242.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 08:18:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5c:86:44:7e:2a:94:e6:e0:05:fa:68:ef:d6:e2:aa:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 30 22:38:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3946c74c33f88f0eac17185193fa1c7d8a49970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:82:97:bb:d4:49:7a:c3:8b:f3:89:d1:ed:22:
33:16:e8:ac:cd:88:99:3c:95:c4:36:64:f4:c4:be:
9c:51:1c:a5:b2:19:d4:7c:db:76:3f:88:24:79:55:
3b:2c:ec:1d:99:1d:02:05:aa:99:8b:37:9b:05:9e:
b3:c1:e9:0a:d4:06:fd:82:05:e3:86:dd:0d:4d:78:
f2:b0:b5:c3:8b:bc:25:43:af:03:78:57:84:3a:35:
71:e3:97:21:5b:c9:76:be:20:54:bc:69:82:be:f7:
20:af:e1:07:27:8e:a9:2f:01:7a:ef:d2:29:e1:cf:
f0:48:b8:4e:59:40:a7:0a:29:77:98:8b:8b:f0:88:
e6:be:b5:d8:3b:9c:be:45:35:05:9b:e8:9b:15:6b:
a2:8f:e7:cd:2a:1a:7b:f1:5c:74:ed:98:47:7e:c0:
ca:d6:78:dc:8d:69:32:ec:28:23:8f:1e:e3:43:bd:
66:e8:ce:13:ce:d9:7e:72:ad:77:c7:0b:96:01:e4:
7a:85:82:18:c6:4a:5d:ec:47:94:7c:b4:a9:1d:36:
b8:0e:6d:f3:77:a5:ac:6b:44:d9:89:41:a7:b7:72:
7a:c6:e7:80:68:cc:c3:29:48:2e:74:69:f7:e6:0a:
af:be:91:7e:e4:03:a5:27:74:66:24:d4:da:64:77:
40:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:94:6C:74:C3:3F:88:F0:EA:C1:71:85:19:3F:A1:C7:D8:A4:99:70
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/w5RsdMM_iPDqwXGFGT-hx9ikmXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.80.0/24
45.80.82.0/23
45.83.50.0/23
80.66.112.0-80.66.121.255
80.66.123.0-80.66.127.255
89.42.70.0/24
89.44.150.0/23
94.198.46.0/23
178.19.32.0/23
178.19.44.0/24
178.19.47.0/24
185.203.21.0-185.203.23.255
185.229.212.0/22
185.242.175.0/24
Signature Algorithm: sha256WithRSAEncryption
02:05:e8:57:51:49:b0:da:f2:cb:79:5f:e6:8a:a3:01:16:14:
d6:50:7d:21:e9:96:36:d8:0a:87:d3:04:cd:f8:73:37:23:4b:
0e:9a:f4:df:d3:18:a6:b1:53:7b:f5:10:0f:ae:fc:e0:4e:de:
ea:d3:a4:20:c4:ba:58:1b:08:fc:1b:6f:ac:75:9d:43:1a:75:
86:07:b1:8e:85:c4:37:13:9e:9d:f6:36:73:1f:6d:d3:0f:2c:
96:45:0e:fc:a1:a5:4b:b7:81:77:73:c2:bb:91:fe:9e:12:c2:
dd:76:34:5e:6e:aa:98:f3:5f:bc:3f:be:bb:1b:de:26:d2:39:
2e:f3:5d:5a:53:18:3d:e3:9f:97:e2:14:0c:47:60:3a:ba:c3:
e3:02:ea:ae:87:54:b6:de:eb:f9:91:c4:60:21:72:aa:d6:41:
c4:71:40:03:99:bc:7f:81:b9:07:df:d3:e7:9c:d0:f4:dd:9f:
99:c1:aa:6d:5e:cb:29:55:4b:c0:ea:4d:d9:d5:c5:75:4f:8b:
7c:72:69:30:20:38:2b:64:58:53:2a:c3:78:ef:21:94:f9:54:
a3:67:d6:61:20:22:ba:f6:ff:21:67:8f:31:cc:a0:fa:30:ce:
4b:b9:95:49:c5:3f:3d:3a:31:60:be:d0:97:23:74:c0:7e:87:
bb:df:ac:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 11:39:48 2024 by rpki-client on console-fra.rpki-client.org