Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Sdud2FQV_-8BzdJSaWSA5f5KoVg.roa
File: Sdud2FQV_-8BzdJSaWSA5f5KoVg.roa (raw, json)
Hash identifier: foQvELfMufj2XzRuuGJ5PnPJjKA/4I5oVWVbH2qxATQ=
Subject key identifier: 49:DB:9D:D8:54:15:FF:EF:01:CD:D2:52:69:64:80:E5:FE:4A:A1:58
Certificate issuer: /CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Certificate serial: 018D8294975AE9300FDEFF750455C1616303
Authority key identifier: 92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Sdud2FQV_-8BzdJSaWSA5f5KoVg.roa
Signing time: Wed 07 Feb 2024 07:59:52 +0000
ROA not before: Wed 07 Feb 2024 07:59:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59588
IP address blocks: 45.153.116.0/23 maxlen: 23
45.153.116.0/24 maxlen: 24
45.153.117.0/24 maxlen: 24
45.153.118.0/23 maxlen: 23
45.153.118.0/24 maxlen: 24
45.153.119.0/24 maxlen: 24
151.236.160.0/23 maxlen: 23
151.236.160.0/24 maxlen: 24
151.236.161.0/24 maxlen: 24
151.236.162.0/23 maxlen: 23
151.236.162.0/24 maxlen: 24
151.236.163.0/24 maxlen: 24
151.236.164.0/23 maxlen: 23
151.236.164.0/24 maxlen: 24
151.236.165.0/24 maxlen: 24
151.236.166.0/23 maxlen: 23
151.236.166.0/24 maxlen: 24
151.236.167.0/24 maxlen: 24
151.236.168.0/23 maxlen: 23
151.236.168.0/24 maxlen: 24
151.236.169.0/24 maxlen: 24
151.236.170.0/23 maxlen: 23
151.236.170.0/24 maxlen: 24
151.236.171.0/24 maxlen: 24
151.236.172.0/23 maxlen: 23
151.236.172.0/24 maxlen: 24
151.236.173.0/24 maxlen: 24
151.236.174.0/23 maxlen: 23
151.236.174.0/24 maxlen: 24
151.236.175.0/24 maxlen: 24
151.236.176.0/23 maxlen: 23
151.236.176.0/24 maxlen: 24
151.236.177.0/24 maxlen: 24
151.236.178.0/23 maxlen: 23
151.236.178.0/24 maxlen: 24
151.236.179.0/24 maxlen: 24
151.236.180.0/23 maxlen: 23
151.236.180.0/24 maxlen: 24
151.236.181.0/24 maxlen: 24
151.236.182.0/23 maxlen: 24
151.236.182.0/24 maxlen: 24
151.236.183.0/24 maxlen: 24
151.236.186.0/24 maxlen: 24
151.236.188.0/23 maxlen: 23
151.236.188.0/24 maxlen: 24
151.236.189.0/24 maxlen: 24
151.236.190.0/23 maxlen: 23
151.236.190.0/24 maxlen: 24
151.236.191.0/24 maxlen: 24
198.160.168.0/23 maxlen: 23
198.160.168.0/24 maxlen: 24
198.176.116.0/23 maxlen: 23
198.176.116.0/24 maxlen: 24
198.176.117.0/24 maxlen: 24
2a10:2200:2::/48 maxlen: 48
2a10:2200:b::/48 maxlen: 48
2a10:2200:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 15 Apr 2024 06:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:82:94:97:5a:e9:30:0f:de:ff:75:04:55:c1:61:63:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92192e8d785581f72b18644224bd8c3fa8a2d11b
Validity
Not Before: Feb 7 07:59:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49db9dd85415ffef01cdd252696480e5fe4aa158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:43:c2:9f:63:49:06:f7:c8:32:ca:b5:4a:f8:
64:05:17:c5:13:ca:74:6f:21:f5:a0:64:80:fe:24:
da:27:cc:4c:89:5f:ee:24:6a:a6:38:70:7d:68:d6:
12:60:29:d2:25:3e:6b:43:79:af:77:df:fe:d2:13:
a8:de:c2:03:f1:1c:44:6c:b8:4b:f3:86:ac:f5:36:
fb:25:eb:66:fb:d9:c5:a0:0f:18:f5:dc:99:e6:9b:
57:86:84:28:3e:af:fa:44:6c:14:82:43:cb:1e:34:
ae:8f:b0:83:ad:46:78:f3:09:c3:78:6b:fa:b6:c6:
de:d0:57:6a:87:c0:35:db:c6:8b:c7:25:6a:a3:f9:
15:69:80:19:bd:05:68:dc:bc:39:af:86:0f:c0:2a:
00:99:b5:9d:c7:56:54:b1:80:fa:28:64:b7:de:80:
d7:f6:61:f4:a9:7f:82:b9:a9:91:59:7b:c9:e8:1d:
2b:d7:93:31:3d:11:60:df:64:2b:a9:4b:f1:42:60:
e0:d4:12:8f:29:5e:b7:39:1f:87:d0:17:c7:5b:50:
ef:f3:31:83:0c:88:53:47:f2:b0:11:2d:fb:01:26:
9f:f6:3b:46:f4:9d:d3:0e:6c:1e:54:bd:83:1a:ba:
20:c0:55:50:d5:a9:04:65:4a:ef:4d:85:d6:9d:ef:
4d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DB:9D:D8:54:15:FF:EF:01:CD:D2:52:69:64:80:E5:FE:4A:A1:58
X509v3 Authority Key Identifier:
keyid:92:19:2E:8D:78:55:81:F7:2B:18:64:42:24:BD:8C:3F:A8:A2:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khkujXhVgfcrGGRCJL2MP6ii0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/Sdud2FQV_-8BzdJSaWSA5f5KoVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/d9b397-e105-4ac9-8537-0085a365a25f/1/khkujXhVgfcrGGRCJL2MP6ii0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.116.0/22
151.236.160.0-151.236.183.255
151.236.186.0/24
151.236.188.0/22
198.160.168.0/23
198.176.116.0/23
IPv6:
2a10:2200:2::/48
2a10:2200:b::-2a10:2200:c:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
03:da:50:41:42:90:ef:c7:e7:8b:b0:65:78:56:da:36:97:c7:
57:ca:71:d5:3b:ad:4e:50:97:8d:04:1e:0b:3a:11:4d:7d:b2:
91:4c:27:51:9c:a7:0d:ec:0a:28:f8:0c:49:5e:44:e7:68:fa:
ef:a7:47:66:22:24:7c:7b:b7:06:ae:ed:d2:c0:6b:20:38:5f:
d6:9f:3a:a3:40:a7:73:48:c4:8a:90:f1:9a:4f:1e:bd:77:b3:
b3:0b:09:f5:52:25:52:81:2b:2e:7a:b6:0c:2d:2b:e2:c2:44:
60:52:67:54:2a:1f:9a:63:61:29:db:37:84:f6:2b:c2:57:ff:
b5:13:d0:61:23:ad:6c:34:1d:48:70:fc:48:d4:4f:e4:73:a5:
2a:f7:7f:ec:f1:5a:ce:29:15:38:eb:7d:31:34:2a:fe:96:a7:
a1:22:22:0e:d3:aa:3f:bb:d2:84:14:49:47:81:ab:3c:7a:85:
35:36:67:5b:6c:2a:85:98:8a:35:4d:33:e8:7a:64:4b:6d:df:
ae:f6:c5:f6:7c:42:67:ab:6c:c7:63:03:f0:86:fb:01:9e:d7:
61:62:18:ba:1a:c3:11:5a:bc:2a:a9:12:d8:9f:fa:27:2d:0d:
d2:7a:4e:0b:c8:3b:11:e8:cf:a2:c2:90:f3:52:10:0d:45:63:
f9:2f:bf:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:16:00 2025 by rpki-client