Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Ll6p2Lg4LZOLU3YmdFwr-dWlRI4.roa
File: Ll6p2Lg4LZOLU3YmdFwr-dWlRI4.roa (raw, json)
Hash identifier: clRrsIj+CA7iIHCeA2230IK7VNAVqmEMS6hLDKR0T0k=
Subject key identifier: 2E:5E:A9:D8:B8:38:2D:93:8B:53:76:26:74:5C:2B:F9:D5:A5:44:8E
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 018EE068C7A6FAB69F7E57980E3172956E65
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Ll6p2Lg4LZOLU3YmdFwr-dWlRI4.roa
Signing time: Mon 15 Apr 2024 06:19:06 +0000
ROA not before: Mon 15 Apr 2024 06:19:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59588
IP address blocks: 45.153.116.0/23 maxlen: 23
45.153.116.0/24 maxlen: 24
45.153.117.0/24 maxlen: 24
45.153.118.0/23 maxlen: 23
45.153.118.0/24 maxlen: 24
45.153.119.0/24 maxlen: 24
151.236.160.0/23 maxlen: 23
151.236.160.0/24 maxlen: 24
151.236.161.0/24 maxlen: 24
151.236.162.0/23 maxlen: 23
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.164.0/23 maxlen: 23
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.166.0/23 maxlen: 23
151.236.166.0/24 maxlen: 24
151.236.167.0/24 maxlen: 24
151.236.168.0/23 maxlen: 23
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.170.0/23 maxlen: 23
151.236.170.0/24 maxlen: 24
151.236.171.0/24 maxlen: 24
151.236.172.0/23 maxlen: 23
151.236.172.0/24 maxlen: 24
151.236.173.0/24 maxlen: 24
151.236.174.0/23 maxlen: 23
151.236.174.0/24 maxlen: 24
151.236.175.0/24 maxlen: 24
151.236.176.0/23 maxlen: 23
151.236.176.0/24 maxlen: 24
151.236.177.0/24 maxlen: 24
151.236.178.0/23 maxlen: 23
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.180.0/23 maxlen: 23
151.236.180.0/24 maxlen: 24
151.236.181.0/24 maxlen: 24
151.236.182.0/23 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.183.0/24 maxlen: 24
151.236.186.0/24 maxlen: 24
151.236.188.0/23 maxlen: 23
151.236.188.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/23 maxlen: 23
151.236.190.0/24 maxlen: 24
151.236.191.0/24 maxlen: 24
198.160.168.0/23 maxlen: 23
198.160.168.0/24 maxlen: 24
198.176.116.0/23 maxlen: 23
198.176.116.0/24 maxlen: 24
198.176.117.0/24 maxlen: 24
2a10:2200:2::/48 maxlen: 48
2a10:2200:b::/48 maxlen: 48
2a10:2200:c::/48 maxlen: 48
2a10:2200:d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 22 May 2024 11:20:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e0:68:c7:a6:fa:b6:9f:7e:57:98:0e:31:72:95:6e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Apr 15 06:19:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e5ea9d8b8382d938b537626745c2bf9d5a5448e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1e:bd:05:2f:76:02:37:32:3f:cb:a9:9d:76:
94:fa:04:1e:41:47:84:b6:aa:58:9b:b3:86:49:1f:
5d:41:f3:fe:de:62:60:e3:19:6d:33:c6:f5:41:2e:
d9:57:1d:8e:7f:a3:23:6e:75:0d:de:de:a1:f2:de:
b8:7f:42:70:5c:4b:33:89:d6:cc:b8:49:a7:dd:f9:
21:1d:9d:15:cd:83:74:7a:eb:9a:01:c8:28:18:90:
b2:da:01:88:67:80:e2:0e:f8:03:86:49:4a:8b:ec:
25:cd:29:8a:37:26:e8:c8:8a:11:23:ce:45:fb:14:
77:c7:85:59:c0:08:d3:f6:20:0c:75:7d:58:04:5b:
f0:0d:90:d7:84:40:8f:c7:b0:c1:5e:4b:e7:04:df:
4e:22:0c:cf:e8:e3:d9:f7:34:22:12:51:b8:cb:dd:
58:cc:63:82:be:78:d8:5e:d0:2f:60:d5:42:3f:40:
b8:99:49:0a:89:76:81:0b:e2:5a:81:50:5c:c6:5e:
45:c2:14:4a:98:b9:9e:57:4a:ab:7e:a6:d0:c4:bc:
05:ed:4f:c5:c2:c4:06:be:23:02:e1:23:45:c2:08:
36:fc:9f:46:81:d7:9a:13:c1:e9:fd:0d:67:41:d2:
6f:a1:57:8c:dc:b1:72:81:81:e6:67:36:8a:cc:f8:
47:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:5E:A9:D8:B8:38:2D:93:8B:53:76:26:74:5C:2B:F9:D5:A5:44:8E
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Ll6p2Lg4LZOLU3YmdFwr-dWlRI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.183.255
151.236.186.0/24
151.236.188.0/22
198.160.168.0/23
198.176.116.0/23
IPv6:
2a10:2200:2::/48
2a10:2200:b::-2a10:2200:d:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
11:b3:f7:5c:1a:e9:f6:2d:b6:8b:4e:a8:a6:2c:ca:80:7c:63:
42:1d:be:e8:d8:4c:38:71:a3:09:ae:af:d4:21:60:1c:b5:a5:
c4:a6:7e:75:59:34:0e:fe:ad:da:83:c6:13:27:17:e3:a5:24:
a2:06:07:b4:b8:55:7d:93:89:2e:22:84:40:17:91:57:e8:5e:
f4:dc:48:9f:d1:d9:98:00:bd:ee:52:c9:fa:e5:6e:57:d3:33:
f8:01:65:5b:2c:ca:42:03:6d:53:b4:94:05:b5:fc:4e:e4:7a:
ab:07:1a:89:0a:ef:72:22:c3:7f:2d:6d:9d:9c:87:ab:6d:0a:
4a:d6:2b:2d:5b:ec:eb:b2:98:13:0a:7d:33:5d:6d:f4:40:63:
b9:a9:12:ff:91:24:73:30:54:02:14:e9:a2:7e:2c:9e:ce:15:
c6:d4:4f:72:6b:df:f3:67:94:e7:65:6a:d6:9e:42:5b:88:c0:
a4:34:54:46:81:99:d6:a4:94:de:83:42:11:df:d4:33:a3:9a:
03:74:37:fc:fb:11:17:92:33:66:78:c6:32:80:5b:b0:fc:a9:
21:3d:6b:9a:e9:ec:eb:4e:6a:85:ca:f5:c8:03:eb:f0:41:8d:
b7:c0:23:95:3b:3a:69:13:87:fd:78:72:70:1e:ce:37:d6:2f:
7a:e1:5d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 15:21:17 2024 by rpki-client on console-ams.rpki-client.org