Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/1-HCxHwikrZJpcCoBuQ3yKVEuzf4.roa
File: 1-HCxHwikrZJpcCoBuQ3yKVEuzf4.roa (raw, json)
Hash identifier: LPYiv/JnCpSepMjYgOrNAPnAcziHvmz+/gh3exJPt7M=
Subject key identifier: F8:70:B1:1F:08:A4:AD:92:69:70:2A:01:B9:0D:F2:29:51:2E:CD:FE
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 018DA7384E6632DA17F0E6381A08EC2DDB9F
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/1-HCxHwikrZJpcCoBuQ3yKVEuzf4.roa
Signing time: Wed 14 Feb 2024 10:45:01 +0000
ROA not before: Wed 14 Feb 2024 10:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64236
IP address blocks: 45.81.150.0/24 maxlen: 24
45.92.29.0/24 maxlen: 24
85.209.84.0/23 maxlen: 23
85.209.87.0/24 maxlen: 24
185.191.228.0/23 maxlen: 23
185.191.231.0/24 maxlen: 24
185.199.224.0/23 maxlen: 23
185.199.226.0/24 maxlen: 24
185.202.172.0/23 maxlen: 23
185.202.175.0/24 maxlen: 24
185.215.148.0/24 maxlen: 24
185.215.150.0/23 maxlen: 23
185.215.150.0/24 maxlen: 24
185.218.235.0/24 maxlen: 24
185.235.14.0/23 maxlen: 23
193.39.185.0/24 maxlen: 24
193.39.186.0/24 maxlen: 24
212.162.148.0/22 maxlen: 22
2a0b:aac0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 25 Apr 2024 13:59:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a7:38:4e:66:32:da:17:f0:e6:38:1a:08:ec:2d:db:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Feb 14 10:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f870b11f08a4ad9269702a01b90df229512ecdfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5b:65:33:f8:a7:2f:b6:e6:9e:36:e0:5a:c0:
d2:9d:77:4e:48:30:c2:bf:8b:87:6b:94:d5:b6:70:
a6:36:64:a9:dc:50:bb:11:83:8e:98:b3:21:c7:33:
93:47:76:a1:c2:fd:2c:9e:d6:bb:0d:3c:52:65:43:
d3:04:70:14:b7:7d:97:f8:17:c3:a8:b3:12:8d:ed:
4d:da:5a:e5:07:35:56:ef:ae:2f:e5:41:7f:f9:90:
f5:1f:de:a2:7a:24:ba:97:1a:0d:23:74:5a:34:56:
90:b8:f7:97:ef:56:a0:e0:11:d8:27:54:d9:19:3a:
11:95:8f:52:c4:46:e1:d8:1d:d6:ff:89:6d:2c:48:
42:ba:01:96:9a:a4:e3:e3:d8:19:2f:ad:93:3c:5c:
5c:1b:35:47:c3:0d:ac:8a:c0:61:56:7a:3d:cb:ff:
bb:41:18:6f:93:75:ad:82:aa:27:c3:a8:60:18:46:
47:15:1f:de:72:1c:96:e2:8e:7c:f7:f7:8b:82:f6:
cc:09:fa:c9:3e:90:9d:c3:e5:46:36:72:80:a3:d9:
35:01:1d:53:ae:3f:30:f3:16:f9:51:32:c6:bf:26:
c0:27:df:88:e5:27:b7:fd:d7:43:3e:6b:f2:b8:f1:
ba:d3:e7:63:4b:04:17:39:d0:42:6f:de:ff:35:58:
8c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:70:B1:1F:08:A4:AD:92:69:70:2A:01:B9:0D:F2:29:51:2E:CD:FE
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/1-HCxHwikrZJpcCoBuQ3yKVEuzf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.150.0/24
45.92.29.0/24
85.209.84.0/23
85.209.87.0/24
185.191.228.0/23
185.191.231.0/24
185.199.224.0-185.199.226.255
185.202.172.0/23
185.202.175.0/24
185.215.148.0/24
185.215.150.0/23
185.218.235.0/24
185.235.14.0/23
193.39.185.0-193.39.186.255
212.162.148.0/22
IPv6:
2a0b:aac0::/29
Signature Algorithm: sha256WithRSAEncryption
46:e3:ef:7b:57:ba:ef:46:7e:e3:f3:f1:b0:73:af:36:2a:94:
6c:66:83:13:e5:b5:ca:23:d1:2f:01:ab:ab:ee:f2:c7:8b:9e:
8f:81:d7:75:03:94:92:f8:a9:bc:0b:7d:85:99:31:13:4e:c7:
d9:80:c6:1c:e2:d9:6c:26:96:e0:df:fc:ac:6b:62:59:50:64:
72:14:c9:c2:fa:bb:e6:a2:0e:0d:9b:cf:b2:fd:a8:a1:55:3b:
fc:74:08:9c:59:d6:49:cd:81:17:1a:21:08:9f:29:9d:c1:c4:
0a:fe:0f:82:4e:dd:5a:51:d0:78:d1:c8:ce:2c:be:2c:4c:95:
a7:97:c5:33:e6:db:0a:3e:12:95:7c:e1:97:50:6b:be:01:34:
c1:2c:bd:e3:13:8c:fb:8a:fc:73:54:ec:ac:d2:36:bf:df:3f:
2d:95:6a:26:d9:e4:3b:d4:09:0d:a8:1b:af:b9:24:0b:82:06:
e4:91:24:45:03:5c:20:2f:66:21:a0:9e:f3:09:53:7f:71:52:
0b:21:a3:dd:ff:ad:ac:2a:4d:76:c5:fc:a2:54:7c:77:61:04:
94:09:93:7f:69:83:68:c0:08:3b:90:a3:4f:de:3a:ee:95:80:
05:e4:8b:83:cf:78:14:6c:47:d7:00:cf:71:5a:de:10:c5:31:
08:e1:85:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org