Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vQ4pQAt3QP0S9ri6PUh1lSMznBw.roa
File: vQ4pQAt3QP0S9ri6PUh1lSMznBw.roa (raw, json)
Hash identifier: +SClIW0dtiOuz7LEvH0GksmR3OJ99rbgse3qkZc/bx4=
Subject key identifier: BD:0E:29:40:0B:77:40:FD:12:F6:B8:BA:3D:48:75:95:23:33:9C:1C
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018E32602366F3737FB7B55A2903E9E57D11
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vQ4pQAt3QP0S9ri6PUh1lSMznBw.roa
Signing time: Tue 12 Mar 2024 11:15:45 +0000
ROA not before: Tue 12 Mar 2024 11:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207713
IP address blocks: 45.93.213.0/24 maxlen: 24
45.93.214.0/24 maxlen: 24
45.151.234.0/24 maxlen: 24
45.151.235.0/24 maxlen: 24
77.83.245.0/24 maxlen: 24
77.83.246.0/24 maxlen: 24
160.20.156.0/24 maxlen: 24
160.20.157.0/24 maxlen: 24
185.24.109.0/24 maxlen: 24
185.58.114.0/24 maxlen: 24
185.68.186.0/24 maxlen: 24
185.68.187.0/24 maxlen: 24
185.71.214.0/24 maxlen: 24
185.71.215.0/24 maxlen: 24
185.73.180.0/24 maxlen: 24
185.73.181.0/24 maxlen: 24
185.73.183.0/24 maxlen: 24
185.75.132.0/24 maxlen: 24
185.75.135.0/24 maxlen: 24
185.76.240.0/24 maxlen: 24
185.76.241.0/24 maxlen: 24
185.76.242.0/24 maxlen: 24
185.76.243.0/24 maxlen: 24
185.77.138.0/24 maxlen: 24
185.77.139.0/24 maxlen: 24
185.79.132.0/24 maxlen: 24
185.79.133.0/24 maxlen: 24
185.88.98.0/24 maxlen: 24
185.88.99.0/24 maxlen: 24
185.95.228.0/24 maxlen: 24
185.95.230.0/24 maxlen: 24
185.97.79.0/24 maxlen: 24
185.100.156.0/24 maxlen: 24
185.100.159.0/24 maxlen: 24
185.102.114.0/24 maxlen: 24
185.104.148.0/24 maxlen: 24
185.105.47.0/24 maxlen: 24
185.111.24.0/24 maxlen: 24
185.111.25.0/24 maxlen: 24
185.112.59.0/24 maxlen: 24
185.168.208.0/24 maxlen: 24
185.177.238.0/24 maxlen: 24
185.182.130.0/24 maxlen: 24
185.182.131.0/24 maxlen: 24
193.38.228.0/24 maxlen: 24
193.38.229.0/24 maxlen: 24
193.38.230.0/24 maxlen: 24
193.38.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 12:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:32:60:23:66:f3:73:7f:b7:b5:5a:29:03:e9:e5:7d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 12 11:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd0e29400b7740fd12f6b8ba3d48759523339c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:25:09:30:19:fe:f7:1a:dc:7e:95:28:7b:
47:57:b3:68:39:f3:71:50:e8:97:4c:b1:ad:af:62:
06:66:b3:4b:1c:f8:c3:fc:0f:d6:ae:16:82:6c:c7:
14:33:65:57:68:c8:16:8c:14:28:d0:17:b4:d5:c4:
ab:89:a0:2a:aa:01:c1:0f:2b:de:c0:2a:2f:9b:97:
9f:80:bb:5c:3b:cb:65:3e:e1:c9:f9:36:d5:9e:9f:
44:96:f1:5b:cb:dc:15:67:6f:89:fe:b1:15:fe:fc:
e1:6e:d2:dc:0e:b3:39:4c:6d:e0:56:29:01:51:43:
5d:98:ef:37:82:14:e3:e6:52:fa:25:90:8a:ec:01:
61:7a:35:b8:02:16:fe:a8:5f:45:1a:a3:2e:67:49:
f0:0d:93:02:1b:43:e8:01:22:32:e6:32:f6:e0:0a:
0f:04:22:b2:d0:20:ef:fe:b1:69:3d:33:fe:d7:7d:
7e:10:3e:53:32:0f:08:7c:04:b0:9c:2b:49:c5:87:
57:a2:68:9d:89:66:9b:de:94:c1:f3:84:6c:57:8e:
dd:34:76:32:dc:51:fc:6a:30:ce:a2:fd:b0:a7:35:
79:e5:fb:fe:e7:f1:bc:ba:05:28:93:80:f1:93:c3:
3c:58:12:c7:26:5f:17:91:d9:9f:4e:12:50:47:96:
3e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0E:29:40:0B:77:40:FD:12:F6:B8:BA:3D:48:75:95:23:33:9C:1C
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/vQ4pQAt3QP0S9ri6PUh1lSMznBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.213.0-45.93.214.255
45.151.234.0/23
77.83.245.0-77.83.246.255
160.20.156.0/23
185.24.109.0/24
185.58.114.0/24
185.68.186.0/23
185.71.214.0/23
185.73.180.0/23
185.73.183.0/24
185.75.132.0/24
185.75.135.0/24
185.76.240.0/22
185.77.138.0/23
185.79.132.0/23
185.88.98.0/23
185.95.228.0/24
185.95.230.0/24
185.97.79.0/24
185.100.156.0/24
185.100.159.0/24
185.102.114.0/24
185.104.148.0/24
185.105.47.0/24
185.111.24.0/23
185.112.59.0/24
185.168.208.0/24
185.177.238.0/24
185.182.130.0/23
193.38.228.0/22
Signature Algorithm: sha256WithRSAEncryption
58:7b:f0:9c:0f:6a:a4:09:05:a2:26:5b:39:66:e0:01:52:35:
e6:e5:10:b5:f9:66:c5:2f:e9:98:c6:d7:9f:7b:5e:f2:58:0b:
b9:d8:1d:39:e3:00:50:74:74:cc:54:3a:5b:1a:63:8c:bc:d1:
bd:81:fe:43:5c:8e:6e:b3:5d:05:00:c0:85:e7:6b:89:05:a3:
ab:a9:48:f3:ab:f3:e4:00:ca:7f:9c:7a:e2:dd:72:b1:82:a2:
85:ba:e1:71:47:3d:f1:3b:0d:b2:04:1c:1e:e0:eb:0a:a4:42:
8a:59:20:a2:8e:08:2e:b7:a2:92:45:18:9d:8b:d2:b1:b1:da:
62:23:d2:1b:23:f0:2c:6e:95:9a:72:2e:f8:6d:a3:15:98:ea:
d9:ec:bb:d4:45:d8:da:29:3c:6a:bc:11:67:c0:6b:cc:50:12:
63:e6:dd:cd:a8:72:80:7e:39:e6:c1:6d:e2:51:a9:82:4b:5b:
56:1e:07:5b:6b:e6:2a:bc:12:01:3a:be:32:3c:b1:d3:a3:9e:
1b:6e:89:48:a3:99:dc:5c:be:ce:98:c2:09:b4:cf:46:d1:66:
8c:27:ae:a9:66:27:35:cc:15:09:16:03:e2:0a:f8:23:6a:38:
e3:dc:44:a7:42:c5:21:19:bc:8f:56:82:1d:93:89:8b:f9:14:
fb:be:9b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:18 2024 by rpki-client on console-ams.rpki-client.org