Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/JAqGLnIaIVGV9BVQi-RDEZc2kow.roa
File: JAqGLnIaIVGV9BVQi-RDEZc2kow.roa (raw, json)
Hash identifier: im2OiLSRD1gIZ4lJsn6LrU9FG/HAUJ4fnIGl1FOyC6U=
Subject key identifier: 24:0A:86:2E:72:1A:21:51:95:F4:15:50:8B:E4:43:11:97:36:92:8C
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 018572B442CAB3AA8B3454173A8B39154BC9
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/JAqGLnIaIVGV9BVQi-RDEZc2kow.roa
Signing time: Mon 02 Jan 2023 13:38:14 +0000
ROA not before: Mon 02 Jan 2023 13:38:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15625
IP address blocks: 145.221.179.0/24 maxlen: 24
145.221.177.0/24 maxlen: 24
145.221.178.0/24 maxlen: 24
145.221.176.0/24 maxlen: 24
145.221.180.0/24 maxlen: 24
145.221.186.0/24 maxlen: 24
145.221.184.0/24 maxlen: 24
145.221.185.0/24 maxlen: 24
145.221.182.0/24 maxlen: 24
145.221.183.0/24 maxlen: 24
145.221.181.0/24 maxlen: 24
145.221.189.0/24 maxlen: 24
145.221.190.0/24 maxlen: 24
145.221.188.0/24 maxlen: 24
145.221.193.0/24 maxlen: 24
145.221.208.0/24 maxlen: 24
145.221.212.0/24 maxlen: 24
145.221.213.0/24 maxlen: 24
145.221.210.0/24 maxlen: 24
145.221.211.0/24 maxlen: 24
145.221.209.0/24 maxlen: 24
145.221.219.0/24 maxlen: 24
145.221.217.0/24 maxlen: 24
145.221.215.0/24 maxlen: 24
145.221.216.0/24 maxlen: 24
145.221.214.0/24 maxlen: 24
145.221.221.0/24 maxlen: 24
145.221.220.0/24 maxlen: 24
145.221.222.0/24 maxlen: 24
145.221.128.0/17 maxlen: 17
156.114.130.0/24 maxlen: 24
156.114.128.0/19 maxlen: 19
156.114.131.0/24 maxlen: 24
156.114.128.0/24 maxlen: 24
156.114.128.0/18 maxlen: 18
156.114.129.0/24 maxlen: 24
156.114.132.0/24 maxlen: 24
145.221.252.0/24 maxlen: 24
145.221.253.0/24 maxlen: 24
145.221.255.0/24 maxlen: 24
145.221.254.0/24 maxlen: 24
145.221.0.0/17 maxlen: 17
145.221.0.0/16 maxlen: 16
145.221.92.0/24 maxlen: 24
145.221.99.0/24 maxlen: 24
145.221.38.0/24 maxlen: 24
145.221.36.0/24 maxlen: 24
145.221.37.0/24 maxlen: 24
145.221.40.0/24 maxlen: 24
145.221.41.0/24 maxlen: 24
145.221.39.0/24 maxlen: 24
145.221.43.0/24 maxlen: 24
145.221.42.0/24 maxlen: 24
156.114.155.0/24 maxlen: 24
156.114.163.0/24 maxlen: 24
156.114.164.0/24 maxlen: 24
156.114.161.0/24 maxlen: 24
156.114.162.0/24 maxlen: 24
156.114.160.0/19 maxlen: 19
156.114.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:42:ca:b3:aa:8b:34:54:17:3a:8b:39:15:4b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Jan 2 13:38:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=240a862e721a215195f415508be443119736928c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:94:c1:7e:66:50:03:c8:85:d6:b5:a1:49:
04:64:3a:e2:60:6d:ed:66:83:bc:47:aa:e1:3e:50:
31:0d:6d:77:c5:96:af:99:cd:90:0c:aa:ee:6e:d7:
ed:89:e7:cd:41:43:ed:cb:a5:7c:3b:b7:a0:1a:47:
7b:2f:19:85:92:93:7b:44:c6:75:87:b5:67:f3:af:
ef:10:f8:9a:b9:16:b7:07:35:1f:c2:c6:23:63:7e:
25:60:61:08:10:47:cc:94:98:ed:8c:27:54:31:26:
ea:64:c0:17:b7:13:dc:b3:66:64:8a:af:2c:7a:73:
54:a2:b6:65:58:31:db:d0:de:63:7e:39:cb:f0:bf:
70:7c:f4:ec:80:ad:0b:78:d6:4d:07:74:8a:e2:a1:
13:e7:a7:f4:ad:71:a6:16:f5:e4:bd:c8:04:18:45:
a4:69:be:4e:09:96:cf:ea:22:48:22:0c:e6:1d:03:
3d:6d:3f:a7:7f:e7:49:39:47:4d:9c:cc:4a:1b:1b:
39:5a:ae:aa:55:e5:ec:46:07:32:d8:c9:90:17:86:
45:48:e8:8b:49:ca:a9:55:9f:1b:82:7e:a2:a2:1f:
12:ac:7b:24:a5:d4:c1:45:16:4d:51:78:a7:a5:82:
5e:31:a9:52:19:ce:0c:1a:f7:70:05:2d:5c:ea:0f:
da:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0A:86:2E:72:1A:21:51:95:F4:15:50:8B:E4:43:11:97:36:92:8C
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/JAqGLnIaIVGV9BVQi-RDEZc2kow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.221.0.0/16
156.114.128.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:6d:73:27:7c:19:61:7b:5c:52:c1:c0:93:45:f6:28:63:35:
d1:8d:b4:a1:ce:1e:3e:4e:67:c5:6b:44:cd:9d:2f:cc:f3:23:
06:f6:1d:be:7d:ae:94:50:96:5f:e9:83:3d:64:42:f7:c7:f4:
c5:27:ab:41:14:97:bb:32:9f:d5:6a:36:95:b0:1b:c9:15:e6:
c8:24:20:15:a5:03:b9:b5:9d:5a:0a:44:cc:49:82:46:90:37:
34:d3:1b:86:42:2a:27:38:0b:70:16:53:e9:5d:04:b4:49:c5:
f9:08:c1:1a:97:79:4c:b6:6a:8d:45:b5:4c:38:0d:f4:29:e4:
4f:d5:c6:e9:18:25:48:80:ad:f6:5f:be:d6:45:29:15:08:e3:
95:95:68:1a:58:b0:e8:7f:63:c5:51:23:99:55:e5:bf:f8:10:
13:a4:82:bc:38:98:d7:e7:c0:57:20:9d:78:65:4a:2d:f6:ad:
fe:ae:87:7f:3d:77:d7:46:ba:5a:27:2e:43:e9:16:76:75:fa:
7e:10:a5:36:04:a6:fb:f3:f7:4d:55:64:d9:69:1c:dd:0c:64:
62:b3:a5:24:c9:0e:0a:3b:02:6d:dd:66:36:df:9f:fd:27:f2:
3a:cb:92:29:e3:66:4d:c1:0f:35:a5:d1:d5:a5:b0:59:98:53:
97:e5:66:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:22 2024 by rpki-client on console-fra.rpki-client.org