Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/dtHiN_JQ6QcuWzRxTdr5a45GijU.roa
File: dtHiN_JQ6QcuWzRxTdr5a45GijU.roa (raw, json)
Hash identifier: Cvtzf0SwIyTeljqcESDnR2xWYkgZO7AzM+7Muk3gI0A=
Subject key identifier: 76:D1:E2:37:F2:50:E9:07:2E:5B:34:71:4D:DA:F9:6B:8E:46:8A:35
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 0192137551BF210B4D057325153D2418BA14
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/dtHiN_JQ6QcuWzRxTdr5a45GijU.roa
Signing time: Sat 21 Sep 2024 07:21:48 +0000
ROA not before: Sat 21 Sep 2024 07:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55410
IP address blocks: 45.116.105.0/24 maxlen: 24
45.116.106.0/23 maxlen: 24
62.169.140.0/22 maxlen: 24
110.172.180.0/22 maxlen: 24
114.69.236.0/22 maxlen: 24
118.91.180.0/22 maxlen: 24
203.188.160.0/22 maxlen: 24
212.56.60.0/22 maxlen: 24
212.104.144.0/22 maxlen: 24
213.254.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 08:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:13:75:51:bf:21:0b:4d:05:73:25:15:3d:24:18:ba:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Sep 21 07:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76d1e237f250e9072e5b34714ddaf96b8e468a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:6e:00:c6:60:10:89:07:4d:ad:b4:7c:bf:
29:64:68:a6:9e:cf:bd:44:2a:7d:24:7e:61:fd:e1:
06:15:a5:47:8c:da:ee:d7:76:e8:11:a5:ae:2e:a7:
6a:db:dc:ef:34:99:d3:37:5f:4b:12:b0:82:f1:27:
5e:b9:71:14:1b:72:ad:ef:27:4a:f2:64:df:ce:6b:
eb:c9:61:9b:ff:63:6d:8f:ff:b6:d0:d6:72:24:dc:
a9:8e:d4:70:b2:2e:42:47:75:8a:09:31:4d:70:bf:
c9:df:8d:b6:80:33:2a:30:05:8b:32:40:de:f7:ce:
16:7c:4d:88:c4:c9:e6:29:ec:0e:f3:7a:3d:c5:22:
34:7d:b4:3c:09:22:ca:fc:ed:e0:33:de:f1:54:1d:
ab:47:05:dd:2d:70:a1:cc:32:cc:88:a2:e4:11:66:
96:d3:2d:12:1c:84:06:d8:fd:8d:15:1f:26:6f:e9:
e5:cb:69:de:96:4b:20:b8:3c:4e:bc:a1:37:df:89:
c3:e5:2a:3e:35:96:cc:a7:69:40:7c:b9:d6:34:53:
3b:c0:55:1d:27:1b:45:fb:f9:e0:8b:c0:19:83:6f:
da:0b:d1:81:a2:d0:35:f3:3f:14:d5:55:72:d7:41:
ad:f6:28:4f:7b:65:6d:ad:74:b3:72:81:81:48:c5:
3a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D1:E2:37:F2:50:E9:07:2E:5B:34:71:4D:DA:F9:6B:8E:46:8A:35
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/dtHiN_JQ6QcuWzRxTdr5a45GijU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.116.105.0-45.116.107.255
62.169.140.0/22
110.172.180.0/22
114.69.236.0/22
118.91.180.0/22
203.188.160.0/22
212.56.60.0/22
212.104.144.0/22
213.254.188.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:7f:80:12:b5:b0:1a:9e:ef:33:d5:34:61:bf:92:fb:c6:e9:
8e:bb:78:d9:75:4c:36:4f:a8:af:4f:65:26:68:48:ef:59:5c:
d7:2f:84:29:e0:55:e4:71:38:4a:aa:7b:82:40:72:a0:6e:c5:
05:12:2d:90:b0:7d:9d:fa:d1:b5:17:3c:13:5d:52:8a:25:a3:
13:c7:6a:29:c9:ab:9a:0d:47:bf:53:5e:b5:f6:d9:fa:0a:1d:
3c:50:b6:2b:0d:cb:90:10:9d:89:cb:fa:f7:d5:78:0e:ad:51:
ef:ae:f0:2c:08:ac:07:b4:5d:56:60:fd:45:aa:9d:42:1b:f6:
92:6c:88:37:ae:26:f0:8e:ce:5a:16:34:d7:b3:b8:b5:2c:0f:
c4:97:b2:54:0c:a7:02:8c:12:19:9f:96:03:d5:02:de:f6:3e:
ac:08:24:02:7f:0a:5d:17:40:b9:91:2a:cf:59:64:35:7a:08:
5c:80:7b:6f:59:f2:44:da:44:0d:7c:01:2c:c7:0e:c3:00:07:
5b:e8:57:b2:8d:cf:61:8c:a6:93:3e:3f:75:1a:8a:27:c9:57:
d2:93:67:1a:a1:ac:52:ff:4d:3a:c4:c7:fb:d9:0e:b2:0f:38:
f9:41:04:2d:c1:9e:43:f3:0f:90:3a:78:d3:58:90:27:7b:9d:
80:b9:e6:8f
-----BEGIN CERTIFICATE-----
MIIFNTCCBB2gAwIBAgISAZITdVG/IQtNBXMlFT0kGLoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5
NTkyZGEwHhcNMjQwOTIxMDcyMTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmQxZTIzN2YyNTBlOTA3MmU1YjM0NzE0ZGRhZjk2YjhlNDY4YTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUxuAMZgEIkHTa20fL8pZGimns+9
RCp9JH5h/eEGFaVHjNru13boEaWuLqdq29zvNJnTN19LErCC8SdeuXEUG3Kt7ydK
8mTfzmvryWGb/2Ntj/+20NZyJNypjtRwsi5CR3WKCTFNcL/J3422gDMqMAWLMkDe
984WfE2IxMnmKewO83o9xSI0fbQ8CSLK/O3gM97xVB2rRwXdLXChzDLMiKLkEWaW
0y0SHIQG2P2NFR8mb+nly2nelksguDxOvKE334nD5So+NZbMp2lAfLnWNFM7wFUd
JxtF+/ngi8AZg2/aC9GBotA18z8U1VVy10Gt9ihPe2VtrXSzcoGBSMU63wIDAQAB
o4ICQTCCAj0wHQYDVR0OBBYEFHbR4jfyUOkHLls0cU3a+WuORoo1MB8GA1UdIwQY
MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt
ZjVmYjcxYjlhNTFmLzEvZHRIaU5fSlE2UWN1V3pSeFRkcjVhNDVHaWpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm
LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+MAwDBAAtdGkD
BAItdGgDBAI+qYwDBAJurLQDBAJyRewDBAJ2W7QDBALLvKADBALUODwDBALUaJAD
BALV/rwwDQYJKoZIhvcNAQELBQADggEBANJ/gBK1sBqe7zPVNGG/kvvG6Y67eNl1
TDZPqK9PZSZoSO9ZXNcvhCngVeRxOEqqe4JAcqBuxQUSLZCwfZ360bUXPBNdUool
oxPHainJq5oNR79TXrX22foKHTxQtisNy5AQnYnL+vfVeA6tUe+u8CwIrAe0XVZg
/UWqnUIb9pJsiDeuJvCOzloWNNezuLUsD8SXslQMpwKMEhmflgPVAt72PqwIJAJ/
Cl0XQLmRKs9ZZDV6CFyAe29Z8kTaRA18ASzHDsMAB1voV7KNz2GMppM+P3UaiifJ
V9KTZxqhrFL/TTrEx/vZDrIPOPlBBC3BnkPzD5A6eNNYkCd7nYC55o8=
-----END CERTIFICATE-----
Generated at Fri Oct 18 09:59:26 2024 by rpki-client on console-fra.rpki-client.org