Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/peIK_UjeTjPXhv-Czi1ipReE4iU.roa
File: peIK_UjeTjPXhv-Czi1ipReE4iU.roa (raw, json)
Hash identifier: juzfHr/tVbV2+gjsvmKvrKTPZ5RYIJcn5KKY+1osTQw=
Subject key identifier: A5:E2:0A:FD:48:DE:4E:33:D7:86:FF:82:CE:2D:62:A5:17:84:E2:25
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192D329ADF32908E5FD87413C24BA3D5A81
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/peIK_UjeTjPXhv-Czi1ipReE4iU.roa
Signing time: Mon 28 Oct 2024 12:46:16 +0000
ROA not before: Mon 28 Oct 2024 12:46:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.45.44.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Oct 2024 22:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d3:29:ad:f3:29:08:e5:fd:87:41:3c:24:ba:3d:5a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 28 12:46:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5e20afd48de4e33d786ff82ce2d62a51784e225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:62:4f:7b:3f:9f:f7:70:ac:e9:8a:e5:bb:
34:f4:64:82:85:c6:10:ed:a9:93:47:82:fc:a9:36:
d8:2d:4b:5d:28:00:72:a1:eb:ff:07:35:ce:3d:af:
8c:9a:7d:6d:97:29:02:35:8f:fd:ab:4b:73:7a:1a:
ee:08:eb:ec:44:84:2d:ba:87:f4:75:ca:d7:46:09:
b5:50:05:2d:0f:7f:3f:c2:97:11:d1:fe:c0:a6:e0:
b1:cd:8f:c1:b9:f5:10:18:c2:0f:73:62:c8:f2:64:
63:99:b6:9c:fa:3b:97:76:b9:18:ce:ed:25:ee:4e:
57:23:47:f1:b9:f8:7c:7b:ea:fb:20:de:91:21:bd:
d8:b1:83:71:e2:98:7f:48:8a:b0:fa:0e:4d:9b:c5:
4b:1c:06:30:f7:53:36:f5:30:67:5c:b7:7c:42:65:
fd:7a:c7:b7:9f:0d:79:52:c7:8a:43:f2:25:85:1a:
29:74:58:27:c6:b1:ee:95:c2:35:43:4d:7f:ec:00:
a7:8c:04:43:6a:f3:4e:71:70:73:f8:d2:71:3a:23:
ba:f8:9e:29:f9:87:55:38:6f:59:f0:8f:15:3f:2f:
dc:6e:43:c3:c4:3f:c9:5a:48:13:2f:b6:e6:01:0d:
eb:7b:29:5c:4d:10:14:08:79:53:3b:a4:85:54:f5:
74:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E2:0A:FD:48:DE:4E:33:D7:86:FF:82:CE:2D:62:A5:17:84:E2:25
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/peIK_UjeTjPXhv-Czi1ipReE4iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
89.45.44.0/24
93.114.183.0/24
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
31:6a:df:b2:24:da:77:2c:03:25:44:ad:26:84:82:50:18:86:
65:ab:90:48:a3:e9:a7:49:60:cc:04:5a:77:fe:c6:f4:c8:55:
89:78:f0:e7:ee:21:10:ff:23:aa:9f:3e:b6:31:06:1a:d0:d9:
0f:d3:2f:d6:9d:11:6b:64:b8:15:eb:2c:f8:6a:0c:ca:07:99:
ca:af:9a:7d:cc:04:94:26:7d:55:81:4f:1e:4f:ca:b2:31:db:
c4:fb:de:c2:dc:a5:4f:d3:2d:5c:e9:dc:6c:5f:79:3d:f8:ca:
ba:b2:da:f0:00:78:ac:e4:83:5f:af:b8:65:45:66:34:66:b6:
0f:c8:c9:88:93:f1:9a:83:af:d8:6a:98:57:6b:24:63:00:f6:
b8:a7:d3:fd:a8:dd:4c:8f:58:c8:fa:05:03:0b:69:90:78:5c:
eb:ac:18:af:6e:7a:11:72:c7:d1:36:79:b7:fb:5e:ae:d3:39:
f3:b3:4a:fd:91:df:7f:cc:4e:d0:ce:c6:a1:79:1e:a7:a8:bd:
82:12:ba:0b:63:f6:9b:71:87:8d:9b:0d:90:11:42:cf:fb:bf:
41:e2:3e:e2:74:e0:04:fa:58:f0:50:6c:ca:25:42:77:2f:13:
9a:ad:f1:25:82:71:f2:e0:88:bb:07:0d:23:84:6b:40:e9:60:
eb:4a:a8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 29 23:58:51 2024 by rpki-client on console-fra.rpki-client.org