Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4gJ_7l6lUBxAMhOQOQeOEhTPDpM.roa
File: 4gJ_7l6lUBxAMhOQOQeOEhTPDpM.roa (raw, json)
Hash identifier: Kx5nBrluMBoDU3jcMofRsSajPOiD+eKdxR25vpRo4Bs=
Subject key identifier: E2:02:7F:EE:5E:A5:50:1C:40:32:13:90:39:07:8E:12:14:CF:0E:93
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0186CC3903F6D2B90E54EF985F4D29810E88
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4gJ_7l6lUBxAMhOQOQeOEhTPDpM.roa
Signing time: Fri 10 Mar 2023 15:52:13 +0000
ROA not before: Fri 10 Mar 2023 15:52:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6233
IP address blocks: 80.66.196.0/24 maxlen: 24
141.98.196.0/22 maxlen: 24
45.11.45.0/24 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
194.36.242.0/24 maxlen: 24
195.245.219.0/24 maxlen: 24
45.139.193.0/24 maxlen: 24
185.184.222.0/24 maxlen: 24
45.13.197.0/24 maxlen: 24
45.13.196.0/22 maxlen: 24
45.13.196.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
79.143.140.0/22 maxlen: 24
45.87.164.0/22 maxlen: 24
195.245.242.0/24 maxlen: 24
45.87.164.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
45.153.244.0/22 maxlen: 24
194.36.24.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
45.143.233.0/24 maxlen: 24
185.248.87.0/24 maxlen: 24
45.143.235.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
194.169.54.0/24 maxlen: 24
194.169.54.0/23 maxlen: 24
185.194.52.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
2a09::/29 maxlen: 48
2a0d:c7c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Apr 2023 10:50:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cc:39:03:f6:d2:b9:0e:54:ef:98:5f:4d:29:81:0e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 10 15:52:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2027fee5ea5501c4032139039078e1214cf0e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:10:a6:ab:77:a5:9c:8e:d2:d1:91:9b:47:20:
75:28:70:75:d3:27:7b:80:ce:04:92:81:0f:a5:45:
4b:b4:f1:34:1b:2b:c5:32:e3:9c:1e:a9:6e:cf:2c:
90:59:eb:1c:e7:12:c7:c9:61:46:3a:25:98:95:91:
85:0c:31:86:80:4a:99:12:09:ac:e6:b3:44:3b:f7:
bd:61:62:e8:f0:33:f0:32:93:ef:19:b3:3a:29:72:
2d:c1:57:da:e2:8e:9f:c7:d1:64:bb:f1:dd:ea:15:
c1:86:78:37:04:5f:d4:d9:5b:c2:10:53:fb:61:9e:
08:8c:6c:41:5e:2f:57:ea:09:94:29:42:06:f0:66:
b2:c3:9e:33:a0:ed:23:9c:5b:dc:51:38:3d:b6:e8:
9c:ae:c6:8b:11:45:23:59:35:6f:3c:ba:4a:6f:d4:
26:b5:f0:76:64:5f:7e:c7:bc:f6:8a:c3:f2:21:32:
28:ef:91:da:f3:2a:2a:78:ce:a1:53:02:6f:03:fd:
11:37:f0:69:fc:64:81:33:81:bb:38:cc:ff:96:ce:
6a:4b:27:0a:e3:4d:06:ab:90:50:c5:eb:72:c4:3d:
0e:68:cb:09:53:3c:73:e4:a2:88:a1:f6:db:5b:42:
94:2e:64:0d:a5:2b:4a:a8:3a:56:85:b8:ad:7e:6e:
df:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:02:7F:EE:5E:A5:50:1C:40:32:13:90:39:07:8E:12:14:CF:0E:93
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/4gJ_7l6lUBxAMhOQOQeOEhTPDpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.45.0/24
45.13.196.0/22
45.87.164.0/22
45.130.20.0/22
45.139.193.0/24
45.143.232.0/22
45.153.244.0/22
79.143.140.0/22
80.66.196.0/24
94.124.116.0/22
141.98.196.0/22
185.184.222.0/24
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
185.248.87.0/24
194.36.24.0/24
194.36.242.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
IPv6:
2a09::/29
2a0d:c7c0::/32
Signature Algorithm: sha256WithRSAEncryption
51:14:62:d0:2e:17:10:20:35:22:92:d0:ad:a7:6b:b7:aa:4c:
d0:c8:96:49:5b:48:a4:86:cf:41:11:1a:1e:ce:84:cf:b2:63:
0a:07:25:03:56:0d:e8:d2:95:46:01:62:f3:81:81:d4:9e:bd:
14:b9:71:10:bf:a7:00:44:1e:15:49:4a:e4:73:63:8e:d0:56:
b8:4d:da:bf:e7:5b:f5:bc:8f:af:8d:11:04:3b:ee:c8:5a:8e:
e6:3b:d5:79:a5:4c:da:ae:04:ef:a8:af:0b:ca:6a:b8:c7:5b:
70:39:5c:40:ca:c2:a7:f2:7b:18:80:f5:9b:5e:0a:93:b7:0b:
cd:3f:80:ae:a1:48:ec:75:ff:06:88:11:e1:04:64:da:76:13:
60:c0:9b:c3:e5:ec:63:ce:de:4b:13:1a:e2:a9:5e:dd:a3:5f:
f9:72:c9:69:7d:46:f8:63:74:43:f5:96:95:19:15:8b:2c:49:
19:ef:f4:52:21:9c:52:f7:e7:ff:38:f6:3e:67:12:21:15:bb:
a1:fc:65:6f:63:00:0e:b7:b4:6f:1f:33:07:13:51:b5:5d:6d:
e0:7e:d3:ac:3b:da:a6:c8:f0:b0:5c:97:c4:3c:3f:4d:3a:1d:
80:12:98:3b:34:ff:d2:c3:1b:44:3e:83:3f:c8:0a:8a:f2:32:
a5:9a:d0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org