Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/a2IH1Aa4p1qJyQ5n2juFWhlfo0k.roa
File: a2IH1Aa4p1qJyQ5n2juFWhlfo0k.roa (raw, json)
Hash identifier: 2J5TVqbfV/BHyttrAFBL0PYCIyMWaKBR0b2VcsNjzbk=
Subject key identifier: 6B:62:07:D4:06:B8:A7:5A:89:C9:0E:67:DA:3B:85:5A:19:5F:A3:49
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 019207ECBE981D055DB85CF6483A4E2B60DF
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/a2IH1Aa4p1qJyQ5n2juFWhlfo0k.roa
Signing time: Thu 19 Sep 2024 01:36:48 +0000
ROA not before: Thu 19 Sep 2024 01:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 45.11.232.0/24 maxlen: 24
45.11.234.0/23 maxlen: 23
45.91.188.0/22 maxlen: 22
45.142.52.0/22 maxlen: 22
45.147.61.0/24 maxlen: 24
45.147.62.0/24 maxlen: 24
45.153.236.0/24 maxlen: 24
45.153.237.0/24 maxlen: 24
45.153.238.0/24 maxlen: 24
77.83.46.0/23 maxlen: 23
77.83.68.0/24 maxlen: 24
77.83.69.0/24 maxlen: 24
77.83.70.0/24 maxlen: 24
77.83.71.0/24 maxlen: 24
80.76.36.0/22 maxlen: 22
84.252.84.0/23 maxlen: 23
84.252.86.0/24 maxlen: 24
84.252.87.0/24 maxlen: 24
95.214.100.0/22 maxlen: 22
171.22.188.0/24 maxlen: 24
171.22.189.0/24 maxlen: 24
171.22.190.0/24 maxlen: 24
185.15.176.0/22 maxlen: 22
185.164.66.0/23 maxlen: 23
193.36.124.0/22 maxlen: 22
194.110.88.0/22 maxlen: 22
212.81.41.0/24 maxlen: 24
212.81.42.0/24 maxlen: 24
212.81.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 16:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:07:ec:be:98:1d:05:5d:b8:5c:f6:48:3a:4e:2b:60:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Sep 19 01:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b6207d406b8a75a89c90e67da3b855a195fa349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9e:ea:df:4d:76:f0:31:3e:e8:cb:70:a7:c4:
c3:6f:de:fc:7a:4f:94:be:73:02:0a:1b:de:13:8b:
77:75:35:cf:c6:92:79:6e:60:a5:72:0f:8a:17:dd:
8e:07:3d:37:2a:d4:b1:9c:ac:79:0b:e1:33:6e:de:
6d:d7:ea:22:0c:87:25:a6:cf:10:aa:eb:dc:a7:0a:
0c:fa:df:e7:31:1e:39:e5:7d:ec:60:23:ff:8b:6a:
a2:e8:74:89:2b:f7:5e:72:34:1c:a5:a4:1c:98:75:
6a:c3:22:fa:1c:f1:b5:11:e4:c6:19:63:db:b2:d2:
a1:e7:ed:a2:7b:0f:74:6b:14:03:cb:cb:47:7f:ba:
85:04:bf:88:95:eb:a1:1f:91:1e:3d:f6:0d:d8:c9:
5b:9b:18:15:be:1f:6c:af:2f:0a:f5:0c:d7:3d:7a:
f2:f2:cf:84:ca:13:8d:1d:10:bc:6a:a4:bb:c7:1f:
ad:c6:a4:81:7e:b0:c8:c4:2a:67:b1:58:32:cc:99:
9b:d8:4e:79:2a:bb:79:5c:3a:a0:1e:88:20:5e:8c:
f6:d7:e2:e3:a1:a8:70:08:50:ef:3d:24:4b:d2:da:
db:0f:fa:7e:d7:80:0d:c4:ab:53:d8:ed:44:81:65:
cb:e6:fb:a3:95:32:a9:d9:7e:8d:c6:45:88:56:76:
ce:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:62:07:D4:06:B8:A7:5A:89:C9:0E:67:DA:3B:85:5A:19:5F:A3:49
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/a2IH1Aa4p1qJyQ5n2juFWhlfo0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.232.0/24
45.11.234.0/23
45.91.188.0/22
45.142.52.0/22
45.147.61.0-45.147.62.255
45.153.236.0-45.153.238.255
77.83.46.0/23
77.83.68.0/22
80.76.36.0/22
84.252.84.0/22
95.214.100.0/22
171.22.188.0-171.22.190.255
185.15.176.0/22
185.164.66.0/23
193.36.124.0/22
194.110.88.0/22
212.81.41.0-212.81.43.255
Signature Algorithm: sha256WithRSAEncryption
07:99:bf:6d:b5:ab:8b:17:0b:19:74:a2:88:92:d5:56:17:4a:
bb:df:f0:e7:e0:52:1f:d5:d3:91:01:15:59:57:72:bf:9e:b2:
7a:7f:82:a2:e7:01:88:43:ba:5b:24:45:bf:78:c3:5d:2f:91:
eb:96:d0:f4:d7:b6:91:d6:3c:36:bb:d8:68:17:5a:20:9e:62:
32:98:a0:31:2e:34:cf:e8:46:0f:a9:88:7c:e6:07:3a:6f:0d:
12:06:dd:84:5b:db:42:80:06:31:fb:e5:75:13:29:1e:b9:e1:
20:40:79:67:b1:19:40:ee:50:c6:77:a8:25:35:11:b6:a7:79:
83:5a:7a:1a:d1:ed:6a:f0:b4:d7:ce:cf:68:6b:ac:e1:f5:03:
ac:bf:ec:29:93:b4:a5:4c:0c:14:a6:b9:cf:ad:b2:e9:51:d3:
ed:fa:25:4f:47:14:07:46:e2:37:dc:2c:fb:6e:d2:52:9d:29:
e5:7f:73:18:4a:8a:df:d7:49:4c:45:67:f5:63:02:fe:9f:93:
98:c2:2a:44:1b:62:8d:40:84:75:fa:0e:42:79:6f:1d:90:de:
e3:c0:51:9a:04:ff:3e:dc:85:9e:8e:22:66:88:7f:a7:41:ec:
4a:18:96:ab:47:e8:cb:96:b0:93:5e:28:5d:72:24:f4:a6:22:
48:5e:4d:00
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAZIH7L6YHQVduFz2SDpOK2DfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzNDQ2ZGE3YTcwYmNlNzczZWMyYmMxNjU1YWFlMzBjM2Mx
ODQxMmMwHhcNMjQwOTE5MDEzNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjYyMDdkNDA2YjhhNzVhODljOTBlNjdkYTNiODU1YTE5NWZhMzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp7q30128DE+6Mtwp8TDb978ek+U
vnMCChveE4t3dTXPxpJ5bmClcg+KF92OBz03KtSxnKx5C+Ezbt5t1+oiDIclps8Q
quvcpwoM+t/nMR455X3sYCP/i2qi6HSJK/decjQcpaQcmHVqwyL6HPG1EeTGGWPb
stKh5+2iew90axQDy8tHf7qFBL+IleuhH5EePfYN2MlbmxgVvh9sry8K9QzXPXry
8s+EyhONHRC8aqS7xx+txqSBfrDIxCpnsVgyzJmb2E55Krt5XDqgHoggXoz21+Lj
oahwCFDvPSRL0trbD/p+14ANxKtT2O1EgWXL5vujlTKp2X6NxkWIVnbOnwIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFGtiB9QGuKdaickOZ9o7hVoZX6NJMB8GA1UdIwQY
MBaAFCNEbaenC853PsK8FlWq4ww8GEEsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTBSdHA2Y0x6bmMtd3J3V1ZhcmpERHdZUVN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mMzU0OWYtMThmNy00OGIwLTkwMWQt
MjVjYzlkNmNmYmI5LzEvYTJJSDFBYTRwMXFKeVE1bjJqdUZXaGxmbzBrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9mMzU0OWYtMThmNy00OGIwLTkwMWQtMjVjYzlkNmNmYmI5
LzEvSTBSdHA2Y0x6bmMtd3J3V1ZhcmpERHdZUVN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDCBjQQCAAEwgYYDBAAt
C+gDBAEtC+oDBAItW7wDBAItjjQwDAMEAC2TPQMEAC2TPjAMAwQCLZnsAwQALZnu
AwQBTVMuAwQCTVNEAwQCUEwkAwQCVPxUAwQCX9ZkMAwDBAKrFrwDBACrFr4DBAK5
D7ADBAG5pEIDBALBJHwDBALCblgwDAMEANRRKQMEAtRRKDANBgkqhkiG9w0BAQsF
AAOCAQEAB5m/bbWrixcLGXSiiJLVVhdKu9/w5+BSH9XTkQEVWVdyv56yen+CoucB
iEO6WyRFv3jDXS+R65bQ9Ne2kdY8NrvYaBdaIJ5iMpigMS40z+hGD6mIfOYHOm8N
EgbdhFvbQoAGMfvldRMpHrnhIEB5Z7EZQO5QxneoJTURtqd5g1p6GtHtavC0187P
aGus4fUDrL/sKZO0pUwMFKa5z62y6VHT7folT0cUB0biN9ws+27SUp0p5X9zGEqK
39dJTEVn9WMC/p+TmMIqRBtijUCEdfoOQnlvHZDe48BRmgT/PtyFno4iZoh/p0Hs
ShiWq0foy5awk14oXXIk9KYiSF5NAA==
-----END CERTIFICATE-----
Generated at Mon Oct 14 20:38:01 2024 by rpki-client on console-ams.rpki-client.org