Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/sDtiCt2EPpIFrKqAiAuYc2PKtgw.roa
File: sDtiCt2EPpIFrKqAiAuYc2PKtgw.roa (raw, json)
Hash identifier: ms1ZPqOwKzGfqp/HfOtFv05ZLdej5zgllxn6089wyUo=
Subject key identifier: B0:3B:62:0A:DD:84:3E:92:05:AC:AA:80:88:0B:98:73:63:CA:B6:0C
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018CC801D2FBF5CC7552FF0B1179AAB135FD
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/sDtiCt2EPpIFrKqAiAuYc2PKtgw.roa
Signing time: Tue 02 Jan 2024 02:30:11 +0000
ROA not before: Tue 02 Jan 2024 02:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6233
IP address blocks: 80.66.196.0/24 maxlen: 24
141.98.196.0/22 maxlen: 24
45.11.45.0/24 maxlen: 24
146.19.116.0/24 maxlen: 24
94.124.116.0/22 maxlen: 24
185.200.64.0/22 maxlen: 24
94.124.119.0/24 maxlen: 24
194.36.242.0/24 maxlen: 24
195.245.219.0/24 maxlen: 24
45.139.193.0/24 maxlen: 24
185.184.222.0/24 maxlen: 24
62.3.15.0/24 maxlen: 24
193.163.19.0/24 maxlen: 24
45.13.197.0/24 maxlen: 24
45.13.196.0/22 maxlen: 24
45.13.196.0/24 maxlen: 24
45.130.20.0/22 maxlen: 24
79.143.140.0/22 maxlen: 24
45.87.164.0/22 maxlen: 24
195.245.242.0/24 maxlen: 24
45.87.164.0/24 maxlen: 24
195.245.241.0/24 maxlen: 24
194.104.152.0/22 maxlen: 24
45.153.244.0/22 maxlen: 24
194.36.24.0/24 maxlen: 24
45.143.232.0/22 maxlen: 24
45.143.233.0/24 maxlen: 24
185.248.87.0/24 maxlen: 24
45.143.235.0/24 maxlen: 24
45.143.234.0/24 maxlen: 24
194.169.54.0/24 maxlen: 24
194.169.54.0/23 maxlen: 24
185.194.52.0/22 maxlen: 24
185.222.216.0/21 maxlen: 24
2a09::/29 maxlen: 48
2a0d:c7c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 15 Feb 2024 21:36:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:d2:fb:f5:cc:75:52:ff:0b:11:79:aa:b1:35:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 2 02:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b03b620add843e9205acaa80880b987363cab60c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bf:f2:00:2c:f0:f6:e5:21:b5:c5:df:61:fd:
20:ab:9b:a1:72:c3:d3:38:d1:ea:9f:32:24:0a:31:
32:27:37:56:20:a6:94:68:96:c1:99:b8:be:cb:bb:
a0:52:0f:d7:8c:7d:0a:90:62:7f:c5:2d:8e:8c:08:
64:76:9c:65:70:fc:fd:5f:ee:85:8c:4d:7d:3c:eb:
39:34:c6:93:5c:4a:d4:20:7c:5d:7d:4c:11:58:dd:
b9:78:66:a9:27:09:7d:e4:5d:ca:c0:5f:42:ab:f4:
64:9d:49:32:69:34:6b:63:19:4d:cd:cd:c9:fc:d2:
7e:b8:32:ba:71:dd:08:83:cf:ed:18:4e:f2:f1:36:
c0:55:a0:cf:e3:7a:9c:3a:2b:6e:cf:82:dd:62:98:
95:19:47:3f:22:94:ce:07:29:39:05:71:a7:46:3e:
31:88:84:06:0b:72:87:ff:61:7b:ec:f2:a1:48:5e:
f2:ae:3f:a4:14:c9:6b:2c:c1:01:43:3e:48:b5:6b:
d2:96:e7:71:85:c6:4d:87:18:49:1d:21:89:54:a6:
6d:3f:2b:46:f5:6d:28:0e:2f:d9:1d:7d:ed:f3:ff:
43:6a:1b:75:a8:ca:15:ae:db:4c:9b:22:6e:4b:2b:
7a:63:58:9d:10:af:17:70:e8:3f:90:41:b3:ac:07:
c6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3B:62:0A:DD:84:3E:92:05:AC:AA:80:88:0B:98:73:63:CA:B6:0C
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/sDtiCt2EPpIFrKqAiAuYc2PKtgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.45.0/24
45.13.196.0/22
45.87.164.0/22
45.130.20.0/22
45.139.193.0/24
45.143.232.0/22
45.153.244.0/22
62.3.15.0/24
79.143.140.0/22
80.66.196.0/24
94.124.116.0/22
141.98.196.0/22
146.19.116.0/24
185.184.222.0/24
185.194.52.0/22
185.200.64.0/22
185.222.216.0/21
185.248.87.0/24
193.163.19.0/24
194.36.24.0/24
194.36.242.0/24
194.104.152.0/22
194.169.54.0/23
195.245.219.0/24
195.245.241.0-195.245.242.255
IPv6:
2a09::/29
2a0d:c7c0::/32
Signature Algorithm: sha256WithRSAEncryption
96:58:64:d1:91:77:3f:9b:e3:19:0e:5a:e0:8c:cc:db:31:2b:
40:65:9c:b4:bd:23:93:01:cf:dc:95:0e:bc:8c:0b:29:91:b9:
66:04:db:ec:89:ff:ab:54:2c:f0:f3:7e:64:8b:00:8e:11:2e:
b9:e5:5d:ca:de:e0:ba:d5:a1:3d:de:cf:3b:33:e8:7f:12:5a:
9a:a2:9f:d8:b6:a8:8f:1b:5c:3e:3a:db:8e:6e:97:25:27:60:
27:e6:37:77:7f:07:7d:22:f1:fb:1b:2f:08:58:7b:87:4a:42:
ff:ea:cd:04:8b:e0:5b:51:fd:f7:d5:c7:42:df:84:b0:32:c6:
35:f3:fe:1e:75:de:e4:cf:be:a2:fc:46:fc:9b:bf:09:b1:cd:
a9:6b:6e:bd:42:c2:f3:9b:79:5a:ca:52:b6:4c:c0:13:d9:a9:
58:92:d0:0a:1b:dc:97:c1:ca:f0:f8:4f:2f:7e:c6:79:bb:56:
56:5c:9a:5b:d2:75:6a:13:5c:76:82:69:7d:0c:bd:5c:17:ff:
11:be:87:f9:1a:03:ed:12:89:7e:41:bd:4d:ab:06:96:b6:31:
bc:ec:10:22:f2:83:a2:2b:d0:86:51:11:f6:8f:99:d8:cd:4c:
26:ae:0b:3e:62:57:99:2f:2b:fb:ed:b5:4f:a9:31:fb:ee:02:
a6:de:b3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 16 02:55:57 2024 by rpki-client on console-fra.rpki-client.org