Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kAUfnfaeMxX2sQa0NgJWaaTgml8.roa
File: kAUfnfaeMxX2sQa0NgJWaaTgml8.roa (raw, json)
Hash identifier: 3JrWAwzNUj//HeH7L9kqPDOl97KEnK2IOerMguc000E=
Subject key identifier: 90:05:1F:9D:F6:9E:33:15:F6:B1:06:B4:36:02:56:69:A4:E0:9A:5F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01937DB196AF8288E863D355529B2741FCAD
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kAUfnfaeMxX2sQa0NgJWaaTgml8.roa
Signing time: Sat 30 Nov 2024 15:30:10 +0000
ROA not before: Sat 30 Nov 2024 15:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26383
IP address blocks: 45.144.172.0/24 maxlen: 24
45.144.174.0/24 maxlen: 24
86.107.100.0/24 maxlen: 24
92.114.54.0/24 maxlen: 24
93.113.171.0/24 maxlen: 24
185.141.219.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.208.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Dec 2024 11:51:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:7d:b1:96:af:82:88:e8:63:d3:55:52:9b:27:41:fc:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 30 15:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90051f9df69e3315f6b106b436025669a4e09a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:22:ac:ee:37:1a:b2:a1:26:86:a1:c7:db:88:
9f:82:30:af:ed:2a:89:18:5d:28:32:14:01:1b:4f:
0f:47:63:e1:37:a9:6d:3c:74:d5:ed:ec:25:93:a2:
f3:dc:7c:d8:4d:2a:cb:87:3c:12:4e:4b:27:f2:32:
f1:a7:d5:70:34:5f:1f:24:c1:a9:25:93:d3:33:3b:
1b:a1:19:91:2e:4a:48:ad:78:c2:df:4e:7c:0e:c6:
7b:e4:5c:fa:5f:91:fb:85:f9:cf:83:4e:11:78:a9:
c0:2f:4e:21:19:37:d0:b5:eb:dc:84:37:b8:0d:88:
c1:43:59:df:7f:96:87:c7:af:1a:cc:5c:36:d2:d0:
ed:5e:2b:eb:0d:ec:a9:6f:31:28:6c:ab:65:ba:85:
de:79:13:f5:c6:26:6c:8a:75:7c:6f:5d:80:c8:69:
f2:96:d2:52:cd:49:b3:fa:b2:63:ed:4b:00:12:f6:
1d:49:62:d0:7b:f4:c4:ba:bf:f6:3d:d0:c1:b6:45:
39:46:04:a4:9a:1e:dd:09:47:7c:fc:0e:f0:ec:c2:
60:5e:49:17:99:ec:9a:38:43:35:ed:b8:0a:59:26:
53:25:3b:67:9c:dc:8b:df:f9:e8:6a:d4:2b:d8:30:
c2:6e:29:30:11:bc:19:ce:ed:82:e3:ce:13:aa:55:
cd:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:05:1F:9D:F6:9E:33:15:F6:B1:06:B4:36:02:56:69:A4:E0:9A:5F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/kAUfnfaeMxX2sQa0NgJWaaTgml8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.172.0/24
45.144.174.0/24
86.107.100.0/24
92.114.54.0/24
93.113.171.0/24
185.141.219.0/24
185.198.235.0/24
188.208.110.0/24
Signature Algorithm: sha256WithRSAEncryption
88:f6:7d:ca:93:f1:32:a1:8e:3f:6a:5c:8d:89:61:8e:7a:54:
3b:1c:13:34:9e:53:e5:87:7b:43:ab:ea:c3:e1:19:7c:41:c0:
ac:eb:1b:7b:bc:16:46:8f:6f:7a:20:89:c5:3f:4e:04:c1:e1:
44:1e:4b:31:c5:a3:a0:95:66:66:10:c7:bc:ee:87:75:9b:9b:
1e:07:a6:f6:d9:63:98:a6:c1:18:ef:29:59:0f:04:85:0b:16:
34:ea:14:86:a8:68:11:40:41:11:4e:b0:04:8e:3c:bd:0e:a0:
d4:c1:6d:52:b1:38:65:88:ab:81:13:24:4d:76:12:92:3b:2b:
a7:d7:08:ab:0b:cf:40:e8:01:ae:4c:06:31:7d:0f:d2:8e:26:
6c:c7:08:d3:9b:8b:bc:9a:70:8a:a6:65:a1:47:aa:6c:00:5a:
d7:e7:88:32:af:bc:ce:f3:b1:32:02:1e:0e:9e:af:66:f9:41:
66:53:d8:5d:52:f0:52:fa:e8:c8:06:e9:77:83:c1:d4:81:5b:
a7:fd:c3:fa:86:df:a3:f9:32:91:52:a5:d3:07:46:fc:5f:c5:
55:85:5b:15:41:af:ef:dc:1d:06:8d:69:f1:d3:5e:02:19:fb:
90:bb:e8:8f:1a:a5:5e:ea:59:fc:cc:fd:96:ae:7a:7d:76:77:
4f:8a:79:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:41:22 2025 by rpki-client