Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Ei6w_rdH9DmTRZbqWvzy6ZweK58.roa
File: Ei6w_rdH9DmTRZbqWvzy6ZweK58.roa (raw, json)
Hash identifier: WdYZ9nB7n1BDifPvVlOip6ZMtPmvV0AonPMma29elOw=
Subject key identifier: 12:2E:B0:FE:B7:47:F4:39:93:45:96:EA:5A:FC:F2:E9:9C:1E:2B:9F
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 01928BDB84A0EE1297F8C542299A534C51E2
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Ei6w_rdH9DmTRZbqWvzy6ZweK58.roa
Signing time: Mon 14 Oct 2024 16:27:52 +0000
ROA not before: Mon 14 Oct 2024 16:27:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 45.11.232.0/24 maxlen: 24
45.11.234.0/23 maxlen: 23
45.91.188.0/22 maxlen: 22
45.142.52.0/22 maxlen: 22
45.147.61.0/24 maxlen: 24
45.147.62.0/24 maxlen: 24
45.153.236.0/24 maxlen: 24
45.153.237.0/24 maxlen: 24
45.153.238.0/24 maxlen: 24
77.83.46.0/23 maxlen: 23
77.83.68.0/24 maxlen: 24
77.83.69.0/24 maxlen: 24
77.83.70.0/24 maxlen: 24
77.83.71.0/24 maxlen: 24
84.252.84.0/23 maxlen: 23
84.252.86.0/24 maxlen: 24
84.252.87.0/24 maxlen: 24
95.214.100.0/22 maxlen: 22
171.22.188.0/24 maxlen: 24
171.22.189.0/24 maxlen: 24
171.22.190.0/24 maxlen: 24
185.15.176.0/22 maxlen: 22
185.164.66.0/23 maxlen: 23
193.36.124.0/22 maxlen: 22
194.110.88.0/22 maxlen: 22
212.81.41.0/24 maxlen: 24
212.81.42.0/24 maxlen: 24
212.81.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 11:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8b:db:84:a0:ee:12:97:f8:c5:42:29:9a:53:4c:51:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Oct 14 16:27:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=122eb0feb747f439934596ea5afcf2e99c1e2b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e1:a8:6a:59:c7:80:01:d9:ec:0a:a9:d1:13:
c6:11:3e:1a:7d:46:0d:20:59:92:39:58:65:3c:5e:
e0:f3:20:dc:34:cb:34:dd:e9:21:89:a9:fe:34:4b:
63:d6:78:05:32:17:03:ff:dc:92:0c:b7:7f:6f:d7:
14:8e:2f:49:6b:04:af:25:e6:59:b6:13:4f:33:85:
33:f6:47:de:08:39:e9:96:f9:8a:13:a8:04:d4:34:
1c:c4:f0:b1:a2:78:02:9d:51:15:71:da:46:d7:83:
e9:8a:31:b0:51:97:4a:42:7b:71:3f:4e:9d:17:d8:
a1:8d:1f:4e:32:6e:8c:63:8e:d6:9d:54:b0:66:56:
91:a3:c5:bd:41:45:b1:9b:d5:7e:00:e8:88:4d:da:
af:ca:5d:13:7e:8a:48:5d:9c:82:99:41:38:9a:8f:
f6:e8:64:31:1f:f9:9f:01:e9:dd:5e:07:91:f5:72:
ad:60:81:7a:94:5c:a8:2d:06:66:ce:df:37:15:39:
88:6f:3c:ab:31:71:6f:fa:7d:53:1d:18:4c:b2:16:
50:ca:2e:62:c4:46:3c:89:4b:69:5a:41:1a:44:5e:
e7:2c:9c:ce:61:e4:f9:92:ad:02:c2:99:22:e1:d3:
fc:0b:4e:c8:16:1a:48:b2:8c:7c:8e:72:1e:95:56:
cc:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:2E:B0:FE:B7:47:F4:39:93:45:96:EA:5A:FC:F2:E9:9C:1E:2B:9F
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/Ei6w_rdH9DmTRZbqWvzy6ZweK58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.232.0/24
45.11.234.0/23
45.91.188.0/22
45.142.52.0/22
45.147.61.0-45.147.62.255
45.153.236.0-45.153.238.255
77.83.46.0/23
77.83.68.0/22
84.252.84.0/22
95.214.100.0/22
171.22.188.0-171.22.190.255
185.15.176.0/22
185.164.66.0/23
193.36.124.0/22
194.110.88.0/22
212.81.41.0-212.81.43.255
Signature Algorithm: sha256WithRSAEncryption
71:f0:1a:2d:4e:8b:ca:41:b4:1a:e6:af:b3:f3:f9:87:67:5e:
f4:72:0b:82:da:27:0d:c5:5f:f5:f4:c7:35:e6:d1:2c:57:27:
87:af:14:74:c9:a1:2d:fa:5e:04:27:f4:22:6e:1e:ad:45:cf:
42:b7:61:61:a3:5f:4f:6a:75:75:f3:65:ad:41:ab:a4:ae:db:
7b:c6:28:5d:85:d1:73:43:ce:dc:cd:3e:b2:f4:3f:60:6f:95:
96:16:1e:82:0b:36:55:c6:20:5d:47:b1:f3:84:5e:2b:9b:98:
ed:4d:4a:f5:fb:0e:42:a3:2b:81:dd:9f:24:ce:78:b3:74:0b:
76:1b:32:2b:b7:ff:e5:7b:5e:22:26:c7:8c:f9:2a:81:5b:25:
df:1d:25:96:af:4a:d3:b5:8a:73:8e:b5:9d:72:ea:a1:20:8a:
f2:03:00:46:9b:e9:2e:84:98:a5:9b:4d:33:97:58:0d:a2:02:
3b:2c:f2:da:75:37:64:71:62:32:bf:18:1b:29:76:08:3d:23:
d4:8d:9f:5d:bc:3f:61:c6:05:73:8b:b8:5a:3d:ff:45:5c:c6:
2f:51:be:50:27:92:42:f6:4d:76:2d:32:8d:22:35:1c:a9:a7:
00:45:34:7d:82:06:66:34:e8:c1:8c:11:cc:a8:af:d6:2d:3c:
17:2c:86:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 13:01:08 2024 by rpki-client on console-fra.rpki-client.org