Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AIiTzj5onuj6oaPGAGq-xA45lwg.roa
File: AIiTzj5onuj6oaPGAGq-xA45lwg.roa (raw, json)
Hash identifier: x8R93l7oHL5x4v4oW3PLesyGrt536Lt61xrcOnuppyM=
Subject key identifier: 00:88:93:CE:3E:68:9E:E8:FA:A1:A3:C6:00:6A:BE:C4:0E:39:97:08
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955999EFBD3FCA55095F0D9F97A263
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AIiTzj5onuj6oaPGAGq-xA45lwg.roa
Signing time: Mon 02 Jan 2023 08:24:51 +0000
ROA not before: Mon 02 Jan 2023 08:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1103
IP address blocks: 145.97.16.0/22 maxlen: 22
145.137.128.0/18 maxlen: 18
145.97.20.0/22 maxlen: 22
145.97.24.0/21 maxlen: 21
145.124.0.0/15 maxlen: 15
145.23.0.0/19 maxlen: 19
145.23.0.0/16 maxlen: 16
192.87.0.0/16 maxlen: 16
145.97.48.0/20 maxlen: 20
194.171.0.0/16 maxlen: 16
145.107.0.0/16 maxlen: 22
145.33.0.0/16 maxlen: 16
145.20.0.0/16 maxlen: 16
145.97.128.0/18 maxlen: 18
145.138.0.0/16 maxlen: 16
145.74.0.0/15 maxlen: 15
145.37.0.0/16 maxlen: 16
145.144.0.0/12 maxlen: 12
145.97.64.0/18 maxlen: 18
145.76.0.0/16 maxlen: 16
145.116.128.0/18 maxlen: 18
145.103.0.0/16 maxlen: 16
145.140.0.0/14 maxlen: 14
145.2.0.0/15 maxlen: 15
145.109.128.0/17 maxlen: 17
145.96.0.0/16 maxlen: 16
145.116.64.0/18 maxlen: 18
145.116.224.0/19 maxlen: 19
145.127.0.0/17 maxlen: 17
145.100.0.0/15 maxlen: 15
145.90.0.0/16 maxlen: 16
145.90.10.0/23 maxlen: 23
145.117.0.0/16 maxlen: 16
145.19.0.0/16 maxlen: 16
145.116.192.0/20 maxlen: 20
145.120.0.0/14 maxlen: 14
145.9.0.0/16 maxlen: 16
145.28.0.0/15 maxlen: 15
145.92.0.0/15 maxlen: 15
145.146.0.0/16 maxlen: 25
145.48.0.0/15 maxlen: 15
145.102.0.0/16 maxlen: 16
145.38.0.0/15 maxlen: 15
145.116.0.0/20 maxlen: 20
145.52.0.0/16 maxlen: 16
145.116.16.0/21 maxlen: 21
145.116.24.0/21 maxlen: 21
145.136.0.0/15 maxlen: 15
145.126.0.0/16 maxlen: 16
145.108.0.0/16 maxlen: 16
145.44.0.0/16 maxlen: 16
145.98.0.0/16 maxlen: 16
145.0.0.0/16 maxlen: 16
145.97.192.0/18 maxlen: 18
145.91.0.0/16 maxlen: 16
145.118.0.0/16 maxlen: 16
145.81.0.0/16 maxlen: 16
145.95.0.0/16 maxlen: 16
145.85.0.0/16 maxlen: 16
145.24.0.0/16 maxlen: 16
145.88.0.0/15 maxlen: 15
145.51.0.0/16 maxlen: 16
195.169.0.0/16 maxlen: 16
2001:610::/29 maxlen: 29
2001:610:130::/48 maxlen: 64
2001:610::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Apr 2023 14:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:59:99:ef:bd:3f:ca:55:09:5f:0d:9f:97:a2:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=008893ce3e689ee8faa1a3c6006abec40e399708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0b:ad:9f:2b:05:e3:82:63:5c:32:4e:8d:8e:
c5:ed:b1:d5:5f:2d:5d:b3:9f:ad:ea:fa:62:6a:13:
7e:5a:f4:84:27:dc:7e:a1:9d:d2:bc:81:1b:b7:95:
7b:d4:62:b4:92:c3:22:fa:35:3e:a2:de:58:d2:09:
b6:55:5f:37:79:51:8f:d4:55:ec:79:45:38:a9:30:
a3:c8:a1:e0:fa:5d:05:fe:43:ca:41:18:77:9a:3b:
38:14:5d:44:a1:f7:cb:09:e5:2f:d3:96:b0:87:40:
4b:bb:f8:68:a7:1f:45:22:ef:ef:5b:cf:d7:37:ad:
86:f6:c3:03:10:96:2a:8f:c6:91:49:44:01:84:b7:
40:13:e3:9b:44:40:5a:aa:f1:09:65:ed:08:e4:5f:
0c:a3:34:b3:ae:5e:0e:ee:41:79:15:34:ec:e7:b9:
32:b1:10:ae:9c:10:60:cc:9f:f6:49:30:fc:63:47:
f3:c8:68:b5:f1:f6:3a:78:2e:40:4a:eb:ae:91:e2:
c0:62:55:ee:d3:6e:a4:45:f8:b9:e4:27:88:f4:c2:
f3:d9:32:1a:29:08:1a:46:ba:4b:b6:60:a5:fe:d1:
5b:82:2b:ec:94:a4:ac:af:2e:bb:b6:b5:07:39:31:
86:63:bc:f5:bf:2f:a6:e3:dc:ca:ee:1f:ca:34:66:
45:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:88:93:CE:3E:68:9E:E8:FA:A1:A3:C6:00:6A:BE:C4:0E:39:97:08
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/AIiTzj5onuj6oaPGAGq-xA45lwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.0.0.0/16
145.2.0.0/15
145.9.0.0/16
145.19.0.0-145.20.255.255
145.23.0.0-145.24.255.255
145.28.0.0/15
145.33.0.0/16
145.37.0.0-145.39.255.255
145.44.0.0/16
145.48.0.0/15
145.51.0.0-145.52.255.255
145.74.0.0-145.76.255.255
145.81.0.0/16
145.85.0.0/16
145.88.0.0-145.93.255.255
145.95.0.0-145.96.255.255
145.97.16.0/20
145.97.48.0-145.98.255.255
145.100.0.0/14
145.107.0.0-145.108.255.255
145.109.128.0/17
145.116.0.0/19
145.116.64.0-145.116.207.255
145.116.224.0-145.118.255.255
145.120.0.0-145.127.127.255
145.136.0.0-145.138.255.255
145.140.0.0-145.159.255.255
192.87.0.0/16
194.171.0.0/16
195.169.0.0/16
IPv6:
2001:610::/29
Signature Algorithm: sha256WithRSAEncryption
8a:3b:3b:ba:c8:0e:98:d9:ad:0c:69:2d:8b:3f:22:13:0f:8b:
29:97:28:2f:8e:52:71:e9:9f:0c:99:ab:af:e0:53:a2:d5:63:
1e:7c:70:8c:b6:91:8a:e2:c7:42:bd:d4:d8:50:e0:e8:6d:e5:
46:23:f0:43:63:3d:4e:4a:23:50:b7:af:52:dd:b9:11:be:69:
1f:6c:41:6b:99:b2:a4:ee:10:58:93:ce:9e:80:7f:c5:d1:00:
dd:ae:cd:36:c8:f6:35:76:55:1a:c0:35:20:85:07:aa:39:fe:
cb:90:6d:52:97:00:b7:2b:35:c1:36:f1:09:e9:a6:ec:eb:5c:
50:26:81:fa:5d:54:cf:9b:48:b9:9f:65:5d:8e:48:6c:36:51:
1d:bc:ad:54:b8:95:b8:7c:67:3b:df:b1:f2:6f:79:b4:f5:23:
36:bb:ab:b1:9a:a5:54:7c:46:19:1b:9f:4d:f1:3e:ac:2c:11:
7a:27:c6:e0:66:ac:1b:8e:38:99:c1:26:67:5e:9e:46:ae:43:
14:ce:99:89:79:ff:41:37:3e:fe:31:7e:14:f9:f0:85:7d:53:
fc:50:e6:f0:51:df:23:68:6b:aa:bb:0d:b1:3a:46:0a:9f:98:
d6:4a:fa:bd:55:2a:6e:77:47:37:d9:94:85:e5:60:64:a5:33:
46:23:0b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org