Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iuy5RCmDTHDmMvaNHC2MUdHFohs.roa
File: iuy5RCmDTHDmMvaNHC2MUdHFohs.roa (raw, json)
Hash identifier: fUyvclpaKqZkRZTXFu5SPXb2dcqxt3t889gtiY8oKHU=
Subject key identifier: 8A:EC:B9:44:29:83:4C:70:E6:32:F6:8D:1C:2D:8C:51:D1:C5:A2:1B
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018AA79FEB9F1339162B56A172012BDAD443
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iuy5RCmDTHDmMvaNHC2MUdHFohs.roa
Signing time: Mon 18 Sep 2023 09:29:50 +0000
ROA not before: Mon 18 Sep 2023 09:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
45.142.210.0/24 maxlen: 24
45.142.211.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
2a09:3d00::/29 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:e87:6000::/36 maxlen: 36
2a11:af01::/32 maxlen: 32
2a11:205::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a0d:5ec0::/29 maxlen: 36
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a0d:8b03::/32 maxlen: 32
2a0f:cc87::/36 maxlen: 36
2a11:b80::/29 maxlen: 36
2a09:b680::/29 maxlen: 36
2a11:200:a000::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a09:3505:9000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0d:8b04::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a11:780::/29 maxlen: 36
2a10:c0c5::/32 maxlen: 32
2a09:4e01:a000::/36 maxlen: 36
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a11:980::/29 maxlen: 29
2a11:204::/32 maxlen: 32
2a10:c340::/29 maxlen: 36
Validation: Failed, certificate revoked on Tue 26 Sep 2023 08:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:9f:eb:9f:13:39:16:2b:56:a1:72:01:2b:da:d4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Sep 18 09:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8aecb94429834c70e632f68d1c2d8c51d1c5a21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ba:44:51:81:49:92:0c:1f:1d:06:eb:0f:2d:
ff:be:bd:8c:b4:a0:a8:c5:ed:dc:40:c2:76:45:1c:
3f:ea:98:53:b9:ab:c1:9b:7e:d2:7b:9c:14:9a:a8:
19:97:fe:8a:45:7a:ea:ba:a3:f4:48:f0:38:7c:19:
1c:a4:d1:66:4a:7d:2b:b1:86:3e:af:bb:92:1f:34:
8f:c8:90:a1:f2:a9:7a:7b:70:06:6d:e5:4e:0d:55:
19:bf:b7:1f:1a:fd:bb:8e:4d:e1:d7:6f:f7:4a:87:
db:f9:14:fd:5e:fe:c2:96:13:c2:6f:29:54:54:e1:
cf:38:4b:c2:37:95:b4:10:f2:7f:f7:ba:11:2b:31:
a2:1b:20:87:e9:5d:d3:87:6f:3b:8f:d5:b2:a4:0c:
f1:f9:a3:35:81:96:ba:0c:5a:39:1b:a4:2c:bf:46:
81:7f:4f:cf:2d:f9:0c:77:6e:a8:63:81:b0:3f:1f:
ad:3f:6a:f9:63:c2:5c:a0:f4:7b:5f:94:e2:62:df:
d3:11:8b:d0:52:20:8a:ba:af:56:76:e1:31:b8:dc:
49:95:55:25:60:1e:f1:69:20:b1:ba:6f:e8:38:68:
d9:85:39:c1:89:a6:17:02:5b:88:75:d8:c1:f1:33:
d5:33:09:b9:36:9e:cc:3a:cf:ab:30:81:aa:5a:e4:
09:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EC:B9:44:29:83:4C:70:E6:32:F6:8D:1C:2D:8C:51:D1:C5:A2:1B
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/iuy5RCmDTHDmMvaNHC2MUdHFohs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.210.0/23
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3505:9000::/36
2a09:3b00::/29
2a09:3d00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
2a09:b680::/29
2a0c:e8c0::/29
2a0d:5ec0::/29
2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
2a0f:cc87::/36
2a10:c0c0::/29
2a10:c340::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:200:a000::/36
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:204::/31
2a11:780::/29
2a11:980::/29
2a11:b80::/29
2a11:e82::/32
2a11:e87:6000::/36
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
8d:2a:b6:19:82:d1:2e:6d:0f:7f:a6:6c:00:ad:5d:0b:a3:00:
55:4c:56:4b:28:fd:4f:51:b2:05:8d:8c:54:92:7b:bf:9a:e3:
0a:bf:59:19:80:d8:d6:6d:34:60:04:5c:7d:59:51:77:5f:92:
4b:bb:d5:f5:cc:f8:cb:b5:40:e7:ff:83:ca:b3:7d:6d:aa:cd:
3e:90:9e:65:cc:84:24:73:05:f6:62:7a:cb:6f:e1:69:e6:7f:
ca:94:68:b7:f0:4c:f6:08:85:ee:b3:17:be:5a:40:f3:aa:cf:
22:ab:48:21:c7:d6:07:15:83:97:70:29:fa:80:2d:3d:10:f3:
c1:0e:2b:5d:6c:be:b7:39:f7:b2:b4:48:68:ee:b2:73:dc:33:
12:c4:a6:70:51:77:79:4d:1d:f5:42:b7:bc:38:be:dc:d4:f6:
f2:be:5a:78:3a:2c:1a:28:6b:7d:7c:6f:fb:86:a1:9b:3c:88:
23:36:91:71:44:41:a3:2b:c7:e6:cd:3d:61:fe:a3:ad:68:12:
02:bf:c6:55:3b:b7:52:39:c3:b9:55:02:fc:74:15:41:73:19:
7c:de:81:6c:5f:11:0a:cb:97:66:68:44:f1:4a:01:1d:c1:83:
cd:1d:3e:7a:cf:1a:bb:00:3d:86:db:64:ee:04:9c:78:58:9f:
13:47:90:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org