Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Redvm0kFhHOxpEiS3AROC63ji2A.roa
File: Redvm0kFhHOxpEiS3AROC63ji2A.roa (raw, json)
Hash identifier: +M96F4cXhQJMO8sdmX8UOWLrvBa6jMlZus4FWqFn03c=
Subject key identifier: 45:E7:6F:9B:49:05:84:73:B1:A4:48:92:DC:04:4E:0B:AD:E3:8B:60
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018CF72D27C41E4413ED2521BE41F153BF1A
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Redvm0kFhHOxpEiS3AROC63ji2A.roa
Signing time: Thu 11 Jan 2024 06:19:40 +0000
ROA not before: Thu 11 Jan 2024 06:19:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44889
IP address blocks: 212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.78.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.79.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.16.92.0/23 maxlen: 23
212.16.94.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.22.0/24 maxlen: 24
212.80.23.0/24 maxlen: 24
212.80.20.0/24 maxlen: 24
212.80.21.0/24 maxlen: 24
212.80.29.0/24 maxlen: 24
185.143.72.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
185.143.73.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.134.0/24 maxlen: 24
46.38.135.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.133.0/24 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.144.0/21 maxlen: 21
46.38.144.0/23 maxlen: 23
46.38.140.0/24 maxlen: 24
46.38.150.0/24 maxlen: 24
46.38.152.0/22 maxlen: 22
46.38.156.0/23 maxlen: 23
46.38.158.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
46.38.132.0/24 maxlen: 24
46.38.130.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked on Wed 31 Jan 2024 06:50:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:2d:27:c4:1e:44:13:ed:25:21:be:41:f1:53:bf:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 11 06:19:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45e76f9b49058473b1a44892dc044e0bade38b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:0a:a8:55:52:28:4b:0f:da:5c:50:e6:eb:
19:a7:c9:6e:e5:1a:15:b4:d6:5b:47:b5:33:b1:8a:
a6:ee:44:18:93:59:67:fb:27:b9:37:d3:29:88:7d:
2b:ff:e1:fa:ed:ce:16:94:09:8d:ff:e9:7b:ce:fa:
66:3d:fa:f2:8c:ac:d9:be:cd:bb:22:36:d5:24:bb:
ec:2d:30:c9:48:fd:24:57:d1:b2:a8:4a:00:e4:12:
e9:01:29:35:47:dc:c2:7f:aa:75:72:26:21:4a:c3:
8e:45:3f:8e:14:2a:1a:69:66:25:40:89:b5:b8:cb:
6f:26:e0:20:2e:4f:24:8e:f0:b6:a8:bd:6e:54:bf:
d8:c4:53:9f:10:a8:03:fc:8f:67:50:41:e3:4d:b3:
cf:30:71:a7:8a:0a:cf:69:e2:68:cf:16:80:66:a0:
8c:a4:b5:c0:ff:09:71:cc:f3:2d:6d:a0:eb:d3:a4:
e3:cd:1a:0d:43:51:d2:ad:4f:1c:80:1c:bf:f1:40:
9d:42:d8:bc:67:60:ac:a2:ff:ce:81:ef:7c:bb:66:
90:78:9e:59:1c:b7:44:da:1e:4c:e9:ea:c0:c2:9a:
ae:26:d6:8c:13:55:8c:f1:ce:ac:22:ef:6d:65:4d:
19:12:af:77:fd:56:d5:16:78:e1:e1:9c:cc:16:ad:
40:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:E7:6F:9B:49:05:84:73:B1:A4:48:92:DC:04:4E:0B:AD:E3:8B:60
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/Redvm0kFhHOxpEiS3AROC63ji2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0-46.38.141.255
46.38.144.0-46.38.158.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
9f:0c:dd:fa:d1:5f:6f:63:c9:e9:e9:a8:84:6e:d6:5e:b0:3e:
b6:f5:f6:fd:4d:3d:6a:46:af:ab:72:c3:8b:cb:ca:62:fa:34:
44:c3:65:33:e1:49:d9:76:e2:d0:62:c8:46:7e:4a:0e:70:50:
8e:0e:5c:0b:ef:2c:ab:cf:a6:35:08:1d:39:9f:56:36:e1:d1:
e0:89:c0:d8:2c:63:ae:2b:a8:96:2d:d5:3f:15:db:85:50:f8:
4f:bc:ab:4f:cd:ae:28:86:e7:35:ed:69:23:2c:b2:75:a1:f7:
ed:0a:e3:0a:6d:75:b3:b6:eb:8a:a2:fd:67:bf:45:59:0f:41:
66:56:28:30:01:39:44:c4:90:9c:e3:95:9c:69:aa:07:74:50:
e5:0e:49:4e:91:16:d7:02:bc:2d:69:1d:ec:e6:a9:09:40:00:
6c:a3:db:a7:0f:55:1e:85:84:cd:50:fe:83:d2:39:80:86:f3:
20:51:97:c2:4c:67:6a:b2:12:de:19:ff:7f:05:7d:58:29:2d:
9f:c7:38:85:29:40:fd:92:80:9d:4a:75:1b:5c:24:34:b1:ce:
9a:68:0c:88:fa:a5:38:d4:85:55:87:bc:88:ee:40:30:32:2f:
46:91:c8:0a:57:10:31:1f:8e:09:c0:ec:f4:1d:4c:92:0d:e7:
aa:ee:e7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:06 2024 by rpki-client on console-ams.rpki-client.org