Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aTnZjrxHkhpQqgV4GM7Q_Szc5Cc.roa
File: aTnZjrxHkhpQqgV4GM7Q_Szc5Cc.roa (raw, json)
Hash identifier: gCgkVExd/gO8w1tCxFSv1CgPGscXPAqL07Blso8Z+ug=
Subject key identifier: 69:39:D9:8E:BC:47:92:1A:50:AA:05:78:18:CE:D0:FD:2C:DC:E4:27
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0194BC8A49072B43A7AB608C02810CF94550
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aTnZjrxHkhpQqgV4GM7Q_Szc5Cc.roa
Signing time: Fri 31 Jan 2025 13:26:06 +0000
ROA not before: Fri 31 Jan 2025 13:26:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.72.8.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
193.124.49.0/24 maxlen: 24
194.58.34.0/24 maxlen: 24
194.58.44.0/24 maxlen: 24
194.58.45.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
195.88.89.0/24 maxlen: 24
212.192.12.0/24 maxlen: 24
212.192.13.0/24 maxlen: 24
212.192.15.0/24 maxlen: 24
212.192.20.0/24 maxlen: 24
212.192.23.0/24 maxlen: 24
212.192.214.0/24 maxlen: 24
212.192.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 09:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:8a:49:07:2b:43:a7:ab:60:8c:02:81:0c:f9:45:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 31 13:26:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6939d98ebc47921a50aa057818ced0fd2cdce427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:59:bb:ce:53:c1:9c:d5:c3:a8:0c:67:79:02:
2a:32:e2:7d:cb:4e:35:25:1e:ef:d7:60:ea:95:63:
9e:b9:0e:03:4b:09:7b:d7:99:84:5c:9a:34:4c:12:
91:e7:c0:0f:1f:79:90:ec:e8:2e:aa:40:81:cd:cf:
17:cd:a6:d4:b7:3d:70:6a:ad:ba:59:10:ec:80:54:
c1:81:4e:ef:56:f7:1e:13:da:4f:72:ed:82:b2:3a:
95:b4:f7:ad:95:1b:03:25:25:3e:a4:98:58:fc:4b:
4a:0b:5b:f2:1b:26:91:63:ad:39:72:8d:7b:75:4d:
9c:07:95:64:f1:3a:f2:43:17:5f:c1:fe:79:ae:e0:
10:d7:2d:70:5e:39:4e:bc:7c:f6:79:a8:e7:8e:1c:
34:00:78:96:bf:f7:d3:b0:f6:31:5f:9d:83:1c:0e:
22:2d:d2:e0:a4:ac:31:a5:36:f0:73:ad:e3:48:d6:
ce:f4:49:2d:9c:ba:a7:61:7d:c3:0d:00:b5:ab:b6:
da:69:96:38:b2:ab:50:00:08:f8:b4:ee:ad:33:77:
a7:28:ea:ef:6e:af:83:9f:ca:9d:b6:88:50:39:53:
bd:d6:7e:41:4c:e7:3f:a4:31:23:3f:e2:ff:d7:b4:
06:42:2c:9b:ae:a7:16:53:10:bf:63:d6:51:8c:fb:
35:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:39:D9:8E:BC:47:92:1A:50:AA:05:78:18:CE:D0:FD:2C:DC:E4:27
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/aTnZjrxHkhpQqgV4GM7Q_Szc5Cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.72.8.0/24
185.141.219.0/24
185.198.235.0/24
193.124.49.0/24
194.58.34.0/24
194.58.44.0-194.58.46.255
195.88.89.0/24
212.192.12.0/23
212.192.15.0/24
212.192.20.0/24
212.192.23.0/24
212.192.214.0/23
Signature Algorithm: sha256WithRSAEncryption
54:d7:ca:2b:44:5a:63:f5:8e:dc:b7:47:df:58:5e:24:66:72:
83:99:08:f8:34:00:06:5e:69:38:18:87:da:76:cf:f5:e2:86:
b0:1c:b9:5c:f5:05:99:e4:b3:73:9b:1b:c5:1d:b9:fa:bf:7e:
e5:2d:40:06:90:0f:4c:65:59:5f:4b:13:07:79:c6:71:30:db:
48:70:02:60:87:59:b1:f4:05:4b:f8:9f:1d:d7:9f:2f:80:81:
4c:29:62:a6:a6:90:b6:d7:59:40:89:65:ed:30:a5:82:76:7b:
41:42:ab:cf:d0:7f:21:dc:98:65:63:d3:c8:b0:89:ec:98:e1:
12:2e:75:96:36:fa:b8:44:fd:8c:73:aa:dd:89:8d:10:55:4c:
f9:16:e5:5d:de:28:b1:5c:37:ef:72:97:a6:51:4c:d1:1b:f5:
21:9f:61:17:31:ab:fb:67:c4:ba:fb:d2:49:af:ad:17:16:ef:
de:aa:c3:ef:19:3b:84:a3:c5:2b:b8:f7:33:64:13:fc:76:51:
a7:59:13:6b:db:d6:64:f1:ee:39:da:cc:30:30:bf:3e:c7:5f:
a8:7d:2c:af:7c:83:87:4c:15:ea:7e:9d:26:6a:8d:c3:54:b7:
08:5a:ed:39:4b:e2:ca:e0:c9:20:b0:79:08:03:c7:75:ef:90:
02:f8:12:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:41:17 2025 by rpki-client