Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HTlB-WpF7wgDo_IGe5S4KR4bW48.roa
File: HTlB-WpF7wgDo_IGe5S4KR4bW48.roa (raw, json)
Hash identifier: Y4D21x6tCKQ0+3hqK+sIz1YBkJ5yHCxdlvc+5qGOkZs=
Subject key identifier: 1D:39:41:F9:6A:45:EF:08:03:A3:F2:06:7B:94:B8:29:1E:1B:5B:8F
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0191D658F3C92079131FC7FFED836074458C
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HTlB-WpF7wgDo_IGe5S4KR4bW48.roa
Signing time: Mon 09 Sep 2024 10:33:59 +0000
ROA not before: Mon 09 Sep 2024 10:33:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12722
IP address blocks: 5.182.116.0/24 maxlen: 24
45.15.255.0/24 maxlen: 24
45.86.3.0/24 maxlen: 24
45.90.44.0/24 maxlen: 24
45.90.47.0/24 maxlen: 24
45.128.130.0/23 maxlen: 23
46.149.174.0/24 maxlen: 24
62.204.32.0/24 maxlen: 24
83.171.212.0/22 maxlen: 22
178.212.78.0/24 maxlen: 24
185.253.2.0/24 maxlen: 24
188.64.140.0/24 maxlen: 24
188.93.136.0/24 maxlen: 24
212.60.6.0/24 maxlen: 24
212.107.24.0/24 maxlen: 24
212.115.48.0/24 maxlen: 24
212.115.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:58:f3:c9:20:79:13:1f:c7:ff:ed:83:60:74:45:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Sep 9 10:33:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d3941f96a45ef0803a3f2067b94b8291e1b5b8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:25:83:21:b9:c6:7f:55:aa:70:f5:a2:db:f2:
06:f7:a6:93:cf:77:d4:6d:f3:0e:ed:9f:40:02:7e:
d7:78:bf:02:c8:4f:5c:bc:71:b7:a5:ad:e7:1e:fa:
36:27:d2:30:a0:b6:99:e8:c4:94:b2:3e:34:1f:cc:
25:3a:cb:56:a5:b6:a8:c9:36:63:6c:9f:18:16:68:
7f:db:f5:86:c3:b6:9e:b7:6e:ff:ef:34:18:c9:b4:
c5:eb:e7:1f:df:a1:36:32:41:04:ac:eb:aa:5c:33:
d5:e0:38:ae:16:82:6a:fd:88:08:37:90:13:2b:69:
3e:33:8d:6b:91:55:cc:99:e5:2c:79:9d:8f:cd:78:
13:ed:ff:4d:09:26:9a:4f:da:8f:5b:d5:0d:ae:86:
3d:1b:89:47:99:b0:1a:2c:36:cd:74:d5:d2:59:b6:
55:37:82:ae:04:f5:17:06:f3:54:76:93:e7:5d:15:
84:80:da:ee:9b:26:f1:8c:85:8f:62:05:8d:d6:94:
31:7c:4a:44:eb:8d:f0:27:7f:01:f5:c0:68:8e:79:
3a:55:a0:9f:78:70:8b:21:fd:e0:c2:1d:a6:0a:03:
b3:97:90:21:c1:95:6f:11:d4:e4:0d:9b:34:a4:2b:
67:ce:74:a1:5f:ed:20:51:bb:60:2c:a7:49:f0:fc:
26:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:39:41:F9:6A:45:EF:08:03:A3:F2:06:7B:94:B8:29:1E:1B:5B:8F
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/HTlB-WpF7wgDo_IGe5S4KR4bW48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.116.0/24
45.15.255.0/24
45.86.3.0/24
45.90.44.0/24
45.90.47.0/24
45.128.130.0/23
46.149.174.0/24
62.204.32.0/24
83.171.212.0/22
178.212.78.0/24
185.253.2.0/24
188.64.140.0/24
188.93.136.0/24
212.60.6.0/24
212.107.24.0/24
212.115.48.0/24
212.115.50.0/24
Signature Algorithm: sha256WithRSAEncryption
71:7c:29:8b:00:58:31:79:69:6e:e1:e7:51:5e:ed:71:67:5f:
4a:f0:46:5f:8f:b0:52:6e:6f:08:e7:be:b4:cb:e6:fb:d3:7d:
10:25:30:32:d7:7f:c6:3c:14:09:86:f5:8e:dc:21:a6:c6:4f:
af:8e:67:75:a1:63:2a:e1:98:3c:88:c7:8f:43:db:a0:c7:4d:
90:df:f9:33:be:94:fc:11:28:e0:1f:e2:5f:30:5b:47:34:1c:
84:aa:67:d0:9c:16:3c:75:ae:d3:ff:84:1e:80:07:f6:59:c4:
0d:cc:c4:26:34:b7:9e:6e:20:ba:15:81:ba:9a:99:40:ff:85:
75:95:4d:b1:1b:dc:2d:fc:aa:e5:9c:d5:0b:25:1f:68:3a:20:
94:1a:a8:5b:c5:91:2c:5e:e5:2c:43:af:73:4a:b9:13:2f:6b:
be:ee:ed:59:f2:e6:e9:83:c8:1b:c7:47:02:51:55:95:94:ee:
34:1a:cd:d3:62:e7:2e:68:a1:72:f9:67:90:e4:b0:e2:95:c6:
a0:62:c2:b1:61:bb:95:0b:dc:1e:ab:50:24:fa:3e:99:bc:57:
14:3f:5e:d3:c4:11:66:cb:86:40:84:be:ce:57:18:9c:cf:73:
bb:ee:52:54:a1:0d:ef:f2:8a:f8:56:a4:17:1e:e9:28:d3:91:
d2:30:84:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:06 2025 by rpki-client