Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_wVHuR0Vtn8buEKmUkUGQJesuOg.roa
File: _wVHuR0Vtn8buEKmUkUGQJesuOg.roa (raw, json)
Hash identifier: DmygpzLjNqpDbNgjG7lrIbMYsnUP+8PClp7ILMnE+U4=
Subject key identifier: FF:05:47:B9:1D:15:B6:7F:1B:B8:42:A6:52:45:06:40:97:AC:B8:E8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E329F4F687D6B1A4970468C21BDF1091D
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_wVHuR0Vtn8buEKmUkUGQJesuOg.roa
Signing time: Tue 12 Mar 2024 12:24:45 +0000
ROA not before: Tue 12 Mar 2024 12:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.180.0/24 maxlen: 24
77.81.182.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.35.129.0/24 maxlen: 24
91.132.50.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
128.0.41.0/24 maxlen: 24
185.212.119.0/24 maxlen: 24
188.215.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:9f:4f:68:7d:6b:1a:49:70:46:8c:21:bd:f1:09:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 12 12:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff0547b91d15b67f1bb842a65245064097acb8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d0:33:bb:cd:fd:dd:56:42:98:77:d1:96:4c:
0e:95:d9:27:7e:39:47:41:3b:7d:ce:cd:b9:26:70:
70:c7:96:e3:0b:24:8c:b4:f8:9d:cc:06:3b:ee:48:
9c:97:a0:53:9c:8f:a5:a7:d3:78:bd:73:d1:34:5b:
bc:e8:2f:5a:4b:99:d9:42:a7:03:14:26:1d:92:24:
45:86:28:05:92:51:a5:37:36:6a:63:b2:55:64:d4:
a8:63:ce:bb:aa:81:21:d7:09:5b:3a:52:7b:a3:5b:
f3:2d:57:b4:80:14:01:7c:fe:9f:c1:bc:13:a0:64:
7b:d8:de:8a:f9:70:b6:6f:6d:71:3b:3a:77:63:18:
0a:91:8b:83:b9:f8:ad:b2:2e:46:9c:ef:45:f1:d3:
b6:a7:5b:36:c9:c7:38:ae:dc:e9:f2:b1:05:8a:2e:
2b:44:9a:35:ef:ef:01:41:8b:47:44:ff:36:d8:f9:
22:f8:58:10:c2:bc:f7:b0:28:80:3f:93:04:4c:0e:
60:e8:28:3d:45:96:47:b0:1b:ad:07:ed:32:07:33:
07:f8:09:f9:26:bb:d4:51:b5:42:da:56:6d:97:9f:
46:50:ed:82:07:75:ea:73:02:0d:ef:00:23:2b:f2:
43:0c:22:9f:6e:fe:ce:11:b8:3a:0e:4c:83:96:65:
5e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:05:47:B9:1D:15:B6:7F:1B:B8:42:A6:52:45:06:40:97:AC:B8:E8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/_wVHuR0Vtn8buEKmUkUGQJesuOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.180.0/24
77.81.182.0/24
89.34.106.0/24
89.35.129.0/24
91.132.50.0/24
93.114.183.0/24
128.0.41.0/24
185.212.119.0/24
188.215.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b1:17:58:ff:95:0f:e1:d4:a2:85:89:c7:9e:65:89:25:0c:
af:22:3b:91:0f:24:d2:a4:50:0a:6d:1e:c9:52:26:83:85:6d:
1b:16:29:97:ef:6d:c4:e2:3a:71:a3:61:6d:ca:fb:3e:0c:0c:
68:10:4c:74:ab:9f:3f:4b:53:94:63:35:cd:82:05:df:74:bf:
6a:69:8e:0f:bb:0a:f0:18:06:81:85:51:7d:79:9a:af:78:ed:
44:1f:e1:26:d2:44:42:9a:7a:5a:2f:05:23:7c:f4:cf:7e:cc:
2c:c4:0c:ed:da:7b:a0:5f:f8:aa:28:02:ff:74:bb:52:fa:70:
45:45:a0:0f:6a:3d:51:ff:38:58:b1:a1:fe:f7:52:18:ab:35:
5b:c2:73:93:41:5a:2e:41:ac:bb:c9:16:d5:4c:0f:f0:1b:ee:
fd:04:52:61:fa:25:f0:54:b0:ab:40:38:36:7c:16:fb:a6:ba:
4c:f2:97:00:db:38:f9:3d:c3:ce:6e:75:bf:40:45:5a:e2:7d:
42:a3:5b:1e:8c:b3:ec:0f:9e:03:a6:91:20:5a:ba:42:80:80:
27:a3:10:26:c8:6a:cc:bd:e3:e9:c4:f0:aa:24:85:cf:18:2a:
45:58:56:e2:15:c3:7c:9b:21:ed:1e:1b:ad:21:82:21:6a:14:
f9:53:77:b3
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAY4yn09ofWsaSXBGjCG98QkdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMzEyMTIyNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjA1NDdiOTFkMTViNjdmMWJiODQyYTY1MjQ1MDY0MDk3YWNiOGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltAzu8393VZCmHfRlkwOldknfjlH
QTt9zs25JnBwx5bjCySMtPidzAY77kicl6BTnI+lp9N4vXPRNFu86C9aS5nZQqcD
FCYdkiRFhigFklGlNzZqY7JVZNSoY867qoEh1wlbOlJ7o1vzLVe0gBQBfP6fwbwT
oGR72N6K+XC2b21xOzp3YxgKkYuDufitsi5GnO9F8dO2p1s2ycc4rtzp8rEFii4r
RJo17+8BQYtHRP822Pki+FgQwrz3sCiAP5META5g6Cg9RZZHsButB+0yBzMH+An5
JrvUUbVC2lZtl59GUO2CB3XqcwIN7wAjK/JDDCKfbv7OEbg6DkyDlmVePwIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFP8FR7kdFbZ/G7hCplJFBkCXrLjoMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvX3dWSHVSMFZ0bjhidUVLbVVrVUdRSmVzdU9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALYe0AwQA
TVG2AwQAWSJqAwQAWSOBAwQAW4QyAwQAXXK3AwQAgAApAwQAudR3AwQAvNcfMA0G
CSqGSIb3DQEBCwUAA4IBAQAtsRdY/5UP4dSihYnHnmWJJQyvIjuRDyTSpFAKbR7J
UiaDhW0bFimX723E4jpxo2Ftyvs+DAxoEEx0q58/S1OUYzXNggXfdL9qaY4Puwrw
GAaBhVF9eZqveO1EH+Em0kRCmnpaLwUjfPTPfswsxAzt2nugX/iqKAL/dLtS+nBF
RaAPaj1R/zhYsaH+91IYqzVbwnOTQVouQay7yRbVTA/wG+79BFJh+iXwVLCrQDg2
fBb7prpM8pcA2zj5PcPObnW/QEVa4n1Co1sejLPsD54DppEgWrpCgIAnoxAmyGrM
vePpxPCqJIXPGCpFWFbiFcN8myHtHhutIYIhahT5U3ez
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:07 2024 by rpki-client on console-fra.rpki-client.org