Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/_nEo8ULGtwpJW1ZeHOpPXCSJ_SY.roa
File: _nEo8ULGtwpJW1ZeHOpPXCSJ_SY.roa (raw, json)
Hash identifier: q6XFHyjuN/Q7z21GMI2erevqHegPOMxO6zNxXzJS3t4=
Subject key identifier: FE:71:28:F1:42:C6:B7:0A:49:5B:56:5E:1C:EA:4F:5C:24:89:FD:26
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 018CC3B6F0B2F698AC479B3B5DC7BE4C74CB
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/_nEo8ULGtwpJW1ZeHOpPXCSJ_SY.roa
Signing time: Mon 01 Jan 2024 06:29:55 +0000
ROA not before: Mon 01 Jan 2024 06:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15625
IP address blocks: 145.221.179.0/24 maxlen: 24
145.221.177.0/24 maxlen: 24
145.221.178.0/24 maxlen: 24
145.221.176.0/24 maxlen: 24
145.221.180.0/24 maxlen: 24
145.221.186.0/24 maxlen: 24
145.221.184.0/24 maxlen: 24
145.221.185.0/24 maxlen: 24
145.221.182.0/24 maxlen: 24
145.221.183.0/24 maxlen: 24
145.221.181.0/24 maxlen: 24
145.221.189.0/24 maxlen: 24
145.221.190.0/24 maxlen: 24
145.221.188.0/24 maxlen: 24
145.221.193.0/24 maxlen: 24
145.221.208.0/24 maxlen: 24
145.221.212.0/24 maxlen: 24
145.221.213.0/24 maxlen: 24
145.221.210.0/24 maxlen: 24
145.221.211.0/24 maxlen: 24
145.221.209.0/24 maxlen: 24
145.221.219.0/24 maxlen: 24
145.221.217.0/24 maxlen: 24
145.221.215.0/24 maxlen: 24
145.221.216.0/24 maxlen: 24
145.221.214.0/24 maxlen: 24
145.221.221.0/24 maxlen: 24
145.221.220.0/24 maxlen: 24
145.221.222.0/24 maxlen: 24
145.221.128.0/17 maxlen: 17
156.114.130.0/24 maxlen: 24
156.114.128.0/19 maxlen: 19
156.114.131.0/24 maxlen: 24
156.114.128.0/24 maxlen: 24
156.114.128.0/18 maxlen: 18
156.114.129.0/24 maxlen: 24
156.114.132.0/24 maxlen: 24
145.221.252.0/24 maxlen: 24
145.221.253.0/24 maxlen: 24
145.221.255.0/24 maxlen: 24
145.221.254.0/24 maxlen: 24
145.221.0.0/17 maxlen: 17
145.221.0.0/16 maxlen: 16
145.221.92.0/24 maxlen: 24
145.221.99.0/24 maxlen: 24
145.221.38.0/24 maxlen: 24
145.221.36.0/24 maxlen: 24
145.221.37.0/24 maxlen: 24
145.221.40.0/24 maxlen: 24
145.221.41.0/24 maxlen: 24
145.221.39.0/24 maxlen: 24
145.221.43.0/24 maxlen: 24
145.221.42.0/24 maxlen: 24
156.114.155.0/24 maxlen: 24
156.114.163.0/24 maxlen: 24
156.114.164.0/24 maxlen: 24
156.114.161.0/24 maxlen: 24
156.114.162.0/24 maxlen: 24
156.114.160.0/19 maxlen: 19
156.114.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 06:22:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:f0:b2:f6:98:ac:47:9b:3b:5d:c7:be:4c:74:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: Jan 1 06:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe7128f142c6b70a495b565e1cea4f5c2489fd26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:86:e6:ad:4d:27:29:0c:54:88:de:af:26:af:
f1:76:e1:5d:c8:15:d4:cb:f0:8e:c2:e8:e4:ca:e1:
8e:d7:9b:ea:98:f2:d2:6b:12:b4:14:ed:74:88:2d:
1d:ab:30:68:4e:e8:51:65:20:05:92:73:75:48:26:
07:93:18:ef:3f:74:e8:fc:44:95:21:74:f7:53:0f:
0b:75:de:17:81:11:31:1d:f7:82:8d:08:3b:f2:e0:
00:39:94:0c:5d:ea:b3:15:6f:e9:dd:e3:a7:ba:56:
6b:47:7b:69:dd:e8:9a:27:f3:84:55:43:eb:9c:3d:
e5:20:5c:e1:af:ed:2e:8e:f6:70:a1:bc:5e:27:65:
4e:83:6b:4c:7c:bd:4c:9b:47:d1:e6:3a:f0:71:6b:
ac:7c:91:eb:ed:32:00:f6:48:3d:64:dc:8a:12:2b:
db:7d:5b:39:dd:45:58:4f:17:d0:cb:15:32:50:4d:
b1:9f:1d:41:36:15:23:4c:04:42:6a:9f:63:24:27:
8c:4a:05:72:d3:54:71:7e:fa:91:c2:60:65:5a:e7:
af:89:0f:b4:d1:4d:ed:ac:59:5e:e1:9f:05:78:f0:
48:03:d8:91:5c:47:bd:5b:0f:9f:f4:60:41:d0:9a:
1c:38:22:28:fe:20:77:f2:cf:37:f4:94:7a:2e:eb:
8b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:71:28:F1:42:C6:B7:0A:49:5B:56:5E:1C:EA:4F:5C:24:89:FD:26
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/_nEo8ULGtwpJW1ZeHOpPXCSJ_SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.221.0.0/16
156.114.128.0/18
Signature Algorithm: sha256WithRSAEncryption
67:83:22:d1:54:de:d4:98:63:f0:50:63:c3:54:c1:4a:13:f8:
d9:70:93:86:0e:31:17:af:2f:d7:53:fb:13:6d:69:56:a0:0d:
25:39:ae:2d:8b:1e:45:36:2d:ff:b6:7c:0c:f2:c5:b8:a0:3b:
91:a1:d7:51:21:0f:d5:15:39:cb:2b:56:a6:67:5a:76:da:01:
e0:66:6d:c3:69:65:dd:e1:a6:ed:1f:0e:16:ee:f6:e1:fb:c2:
67:98:55:00:c7:5b:05:27:72:72:95:4a:86:38:97:96:c3:31:
c6:cc:e1:41:69:31:d8:9c:fd:12:7e:4d:95:1f:6a:c7:27:e1:
02:92:3e:1a:82:ca:67:ad:e6:01:8b:d6:a5:a0:fc:11:16:c0:
50:06:60:cb:5e:99:29:34:3b:85:0f:55:ac:28:01:30:f4:de:
9b:fa:65:be:c4:09:65:23:ec:eb:d7:32:54:1a:82:9c:35:e6:
36:e6:96:97:92:38:02:15:a6:55:e7:b6:97:34:53:1e:39:18:
ec:a5:06:aa:2b:13:e6:3a:0f:fc:67:17:3a:f4:b5:7f:04:5f:
2a:6b:52:2c:0c:e7:c2:10:07:96:0d:ab:e5:23:f8:26:25:bd:
9c:03:b7:d8:35:15:bf:df:54:77:ba:a9:05:0c:78:7b:b9:4c:
dd:7a:3f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:13 2024 by rpki-client on console-ams.rpki-client.org