Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/mu3gKejwctxT41g1UxDM6TARK30.roa
File: mu3gKejwctxT41g1UxDM6TARK30.roa (raw, json)
Hash identifier: Z1NZk7sww1EENM4LR+MmXoS53Ch2QlfEdfJema/Wb/g=
Subject key identifier: 9A:ED:E0:29:E8:F0:72:DC:53:E3:58:35:53:10:CC:E9:30:11:2B:7D
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01936910D1D362795A84643AF4E5E83B6D88
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/mu3gKejwctxT41g1UxDM6TARK30.roa
Signing time: Tue 26 Nov 2024 15:22:10 +0000
ROA not before: Tue 26 Nov 2024 15:22:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6134
IP address blocks: 45.128.146.0/24 maxlen: 24
45.128.147.0/24 maxlen: 24
45.131.179.0/24 maxlen: 24
45.132.238.0/24 maxlen: 24
45.132.239.0/24 maxlen: 24
45.133.238.0/24 maxlen: 24
45.133.239.0/24 maxlen: 24
45.134.82.0/24 maxlen: 24
45.134.83.0/24 maxlen: 24
45.135.118.0/24 maxlen: 24
45.135.119.0/24 maxlen: 24
45.137.10.0/24 maxlen: 24
45.137.11.0/24 maxlen: 24
45.140.90.0/24 maxlen: 24
45.140.91.0/24 maxlen: 24
91.238.207.0/24 maxlen: 24
185.106.177.0/24 maxlen: 24
185.106.178.0/24 maxlen: 24
185.106.179.0/24 maxlen: 24
193.200.149.0/24 maxlen: 24
193.200.152.0/24 maxlen: 24
193.227.103.0/24 maxlen: 24
193.227.109.0/24 maxlen: 24
193.227.114.0/24 maxlen: 24
2a06:5040:21::/48 maxlen: 48
2a06:5040:22::/48 maxlen: 48
2a06:5040:23::/48 maxlen: 48
2a06:5040:24::/48 maxlen: 48
2a06:5040:25::/48 maxlen: 48
2a06:5040:30::/45 maxlen: 45
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:10:d1:d3:62:79:5a:84:64:3a:f4:e5:e8:3b:6d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Nov 26 15:22:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9aede029e8f072dc53e358355310cce930112b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3e:3f:d1:27:88:b6:69:8a:00:c7:9c:e4:96:
8e:d4:79:0b:83:1d:5a:f0:67:92:c6:4c:75:03:73:
4f:20:c5:0f:4e:06:ab:1d:e1:c5:f2:ee:96:a6:01:
47:ba:92:d5:ea:01:b6:e0:21:a4:9e:89:a9:2b:3c:
f3:ab:cf:23:8c:f4:e0:f3:63:cd:b4:dd:0a:f8:ef:
82:db:44:e4:a3:d8:ce:e3:e2:44:ee:a5:69:24:5e:
ea:f8:6f:2e:63:c3:7e:17:29:34:03:ec:d2:6b:d5:
17:8e:66:d2:4a:67:a5:6d:3f:ea:5c:ac:3a:ec:bc:
4f:a9:43:60:1f:ee:a5:a9:e8:cc:52:82:e0:0e:72:
7b:45:60:23:a2:36:b5:88:8d:2b:12:96:00:0b:6c:
a9:a5:ac:26:14:80:36:99:d2:64:8a:b7:f2:32:ff:
68:9e:5c:b1:2c:c3:73:68:3d:b7:71:ac:ee:ec:5e:
8e:5d:a3:1b:5f:0f:57:d1:58:96:01:1d:97:82:77:
1b:a7:be:07:8c:11:0a:19:02:8f:ef:7e:fe:89:aa:
87:49:97:c9:9e:87:1e:28:b7:5d:dc:b1:a2:e3:41:
fe:6e:83:e2:3c:ad:57:41:df:12:e7:b6:83:55:26:
64:12:5a:cf:f3:c7:43:c4:3e:1b:a1:54:58:2b:61:
ef:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:ED:E0:29:E8:F0:72:DC:53:E3:58:35:53:10:CC:E9:30:11:2B:7D
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/mu3gKejwctxT41g1UxDM6TARK30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.146.0/23
45.131.179.0/24
45.132.238.0/23
45.133.238.0/23
45.134.82.0/23
45.135.118.0/23
45.137.10.0/23
45.140.90.0/23
91.238.207.0/24
185.106.177.0-185.106.179.255
193.200.149.0/24
193.200.152.0/24
193.227.103.0/24
193.227.109.0/24
193.227.114.0/24
IPv6:
2a06:5040:21::-2a06:5040:25:ffff:ffff:ffff:ffff:ffff
2a06:5040:30::/45
Signature Algorithm: sha256WithRSAEncryption
7c:1f:48:6e:e0:89:59:2b:aa:ac:5a:d5:14:19:57:07:32:87:
6b:36:56:c8:4c:df:07:15:c3:2b:22:1e:ec:7d:a6:70:cf:75:
38:d3:15:96:f8:c3:3b:c5:c0:46:d7:5e:bc:e5:36:0a:b7:03:
53:f1:4c:35:78:d6:92:2d:02:55:9a:80:19:17:99:c5:13:0f:
92:85:b8:61:ad:a7:16:38:5e:3c:3d:13:60:cc:05:44:19:f8:
01:61:01:33:c0:88:4a:d2:f4:6d:87:a6:dd:1c:1d:a5:dd:d5:
b3:b9:af:26:af:e4:84:69:0e:87:f2:4c:64:64:53:38:06:74:
60:48:9a:20:58:6f:4c:fb:68:27:16:68:c2:31:fc:72:c1:15:
a4:2d:3d:13:a1:52:79:26:df:d5:7c:c6:1f:1e:68:e9:14:a7:
14:90:89:cb:2a:11:44:e2:87:bd:52:20:7f:6b:53:7b:f6:6d:
34:62:fd:79:85:c8:4e:73:0c:93:71:82:30:66:d7:f3:64:3c:
ec:17:30:3b:3e:62:4a:59:b6:2d:1a:31:e0:aa:b7:d6:2e:2e:
3f:16:53:4e:0a:e8:d8:a6:61:3c:5f:d7:6d:7b:bc:6a:d1:0a:
8d:ac:1b:18:1d:30:93:96:50:9d:1b:93:40:65:6f:4b:b2:5f:
86:77:e4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:14:11 2025 by rpki-client