Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/LpYM6ue0_PvHan5preBu7hrZkM4.roa
File: LpYM6ue0_PvHan5preBu7hrZkM4.roa (raw, json)
Hash identifier: Hk7zmL8hpOjkWCXC2BvMz4g2NTXXBx4AT1V6hXdrgbU=
Subject key identifier: 2E:96:0C:EA:E7:B4:FC:FB:C7:6A:7E:69:AD:E0:6E:EE:1A:D9:90:CE
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0191FB116C940103EAFB9D0C23E4E1EA853C
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/LpYM6ue0_PvHan5preBu7hrZkM4.roa
Signing time: Mon 16 Sep 2024 13:41:48 +0000
ROA not before: Mon 16 Sep 2024 13:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 45.116.105.0/24 maxlen: 24
45.116.106.0/23 maxlen: 24
107.150.169.0/24 maxlen: 24
107.150.173.0/24 maxlen: 24
110.172.180.0/22 maxlen: 24
114.69.236.0/22 maxlen: 24
118.91.180.0/22 maxlen: 24
162.218.177.0/24 maxlen: 24
162.218.178.0/24 maxlen: 24
167.160.1.0/24 maxlen: 24
167.160.2.0/24 maxlen: 24
185.192.213.0/24 maxlen: 24
185.192.214.0/24 maxlen: 24
185.203.149.0/24 maxlen: 24
185.203.150.0/24 maxlen: 24
185.212.173.0/24 maxlen: 24
185.212.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 05:09:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fb:11:6c:94:01:03:ea:fb:9d:0c:23:e4:e1:ea:85:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Sep 16 13:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e960ceae7b4fcfbc76a7e69ade06eee1ad990ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:05:8a:d7:5d:61:cc:82:73:81:6b:4b:4c:2c:
3a:34:bf:d8:5c:0c:7a:22:6b:aa:f2:68:b6:7d:a7:
5f:e8:24:93:14:d8:b4:73:86:ab:0b:32:fe:b0:d3:
71:b3:a5:a0:67:b9:de:74:8d:bc:b7:a9:78:60:39:
01:f4:f9:55:68:1e:36:42:f0:99:03:c3:ea:40:9a:
32:81:ca:e2:2f:eb:04:75:df:bb:03:22:ef:49:43:
30:3f:41:b5:2d:c4:30:db:fb:50:24:89:18:e1:eb:
5e:22:91:11:99:74:70:89:4d:ac:db:a1:5a:1e:96:
2c:e3:1e:57:03:82:fd:05:39:9c:f8:14:0c:1c:9e:
62:4f:3a:cf:d3:29:08:d8:57:7f:7c:c8:63:14:15:
a7:77:87:0c:53:27:c2:4f:57:7c:0f:b3:ef:51:2e:
a4:e9:bb:0a:b3:8e:72:b0:c8:d2:b4:78:aa:92:60:
37:67:d9:55:74:cd:f9:60:be:2b:85:22:f0:59:22:
b2:d3:4e:18:79:3b:2c:5a:37:b3:d4:43:89:2d:31:
d1:b4:c5:1f:8e:78:95:43:66:42:76:64:02:5d:1d:
85:ea:5c:b5:5a:71:7d:21:9c:e5:7c:6b:88:12:73:
10:11:4d:98:1a:e9:d3:3a:49:e2:8c:38:b9:ca:f6:
5f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:96:0C:EA:E7:B4:FC:FB:C7:6A:7E:69:AD:E0:6E:EE:1A:D9:90:CE
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/LpYM6ue0_PvHan5preBu7hrZkM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.116.105.0-45.116.107.255
107.150.169.0/24
107.150.173.0/24
110.172.180.0/22
114.69.236.0/22
118.91.180.0/22
162.218.177.0-162.218.178.255
167.160.1.0-167.160.2.255
185.192.213.0-185.192.214.255
185.203.149.0-185.203.150.255
185.212.173.0-185.212.174.255
Signature Algorithm: sha256WithRSAEncryption
cf:95:0a:9d:e5:f6:b4:cf:bb:dc:c0:d9:68:55:21:30:88:ed:
3b:f4:33:fd:14:8c:35:39:a9:ea:d8:a4:57:4a:79:bc:c6:76:
62:3f:b2:4a:96:17:51:10:19:50:36:ce:ba:75:0b:5f:e3:47:
5c:83:d4:ef:c4:49:d4:08:48:49:da:f8:95:da:74:b9:05:5d:
9c:f8:91:45:dd:6e:c7:b5:67:c7:93:0e:2d:d4:ef:a9:84:bd:
53:b8:65:f5:67:10:be:dc:50:b6:80:29:e4:e0:1c:0b:a2:b5:
0c:cf:1a:70:d4:8b:f9:05:61:60:7d:2f:28:2c:0f:95:c4:b6:
dc:d2:88:51:3d:d5:48:cf:88:4d:a9:04:f5:35:36:7f:28:91:
1a:25:bf:c3:11:5c:b1:f6:d2:d7:3c:87:a2:5a:19:7a:2b:9e:
0f:e8:9f:ae:90:27:3a:ec:af:4b:99:66:ad:e0:8b:16:65:8d:
c5:4a:40:31:fe:0f:42:61:c9:0d:10:74:8c:e7:3a:c1:61:4f:
01:6c:05:48:1e:fe:b4:4f:25:b6:02:f1:80:15:38:8b:47:12:
40:fa:59:16:9a:5f:7b:49:d3:9d:0f:66:e1:36:c2:fc:a9:e1:
97:be:5a:78:ce:cd:49:5d:cd:22:8b:35:47:f8:b4:7d:58:80:
4e:62:eb:ef
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Sep 17 06:36:03 2024 by rpki-client on console-fra.rpki-client.org