Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/y7U_zjE8bRrvzD2L0xpEr8Uvq6U.roa
File: y7U_zjE8bRrvzD2L0xpEr8Uvq6U.roa (raw, json)
Hash identifier: g7oypaiYXgWt8kuG5ttMeTFMm4agj6c/wh203zE52+g=
Subject key identifier: CB:B5:3F:CE:31:3C:6D:1A:EF:CC:3D:8B:D3:1A:44:AF:C5:2F:AB:A5
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018FA111B34E511D2852835B4DB393C1655A
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/y7U_zjE8bRrvzD2L0xpEr8Uvq6U.roa
Signing time: Wed 22 May 2024 16:10:42 +0000
ROA not before: Wed 22 May 2024 16:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.80.221.0/24 maxlen: 24
45.80.222.0/24 maxlen: 24
45.80.223.0/24 maxlen: 24
45.130.145.0/24 maxlen: 24
45.130.148.0/24 maxlen: 24
45.130.149.0/24 maxlen: 24
178.23.185.0/24 maxlen: 24
194.62.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 17:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:11:b3:4e:51:1d:28:52:83:5b:4d:b3:93:c1:65:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: May 22 16:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbb53fce313c6d1aefcc3d8bd31a44afc52faba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:02:ce:4b:51:95:ba:a9:f6:34:7e:49:03:
64:96:cf:be:b1:55:54:75:f6:7d:b5:b7:eb:54:85:
df:1e:64:4d:24:df:87:61:14:9d:e1:6c:70:7f:06:
02:b2:29:53:cc:4a:69:e7:4e:59:21:13:31:4a:b9:
a1:7a:f9:85:3c:f1:37:6e:8d:3a:e4:9b:09:a6:5e:
1a:8b:bf:46:02:f4:44:69:df:98:bd:df:e7:8a:4e:
69:20:dd:a5:a2:6c:ee:e4:c2:65:77:6f:2f:0b:7f:
9b:e4:bf:93:85:05:a1:cb:f9:de:80:b2:1e:35:09:
fa:c9:dc:6d:5b:9d:61:df:b6:58:0a:39:4e:0f:8a:
26:86:7e:94:64:cf:8d:9f:01:12:35:c4:a0:3d:5e:
e6:83:be:9b:81:a6:12:9b:eb:a6:4e:5f:ca:74:3c:
70:89:61:8e:b8:86:08:10:86:98:ab:3d:b5:f2:69:
a4:cf:7d:1e:e0:08:f5:95:5a:5b:f7:49:d2:70:7c:
22:39:28:19:28:4d:80:68:9f:ec:60:0e:73:d7:fb:
76:03:53:49:bc:75:77:27:0f:74:d6:3d:24:1b:33:
04:70:aa:b9:e7:dd:db:6f:01:fe:7a:9b:b6:38:78:
34:86:4c:ff:4b:1a:be:1a:4b:67:d3:a8:d6:49:b1:
3f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B5:3F:CE:31:3C:6D:1A:EF:CC:3D:8B:D3:1A:44:AF:C5:2F:AB:A5
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/y7U_zjE8bRrvzD2L0xpEr8Uvq6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.221.0-45.80.223.255
45.130.145.0/24
45.130.148.0/23
178.23.185.0/24
194.62.18.0/24
Signature Algorithm: sha256WithRSAEncryption
81:93:e8:ac:a8:51:23:04:40:aa:37:b1:3f:19:3d:c4:2b:dd:
4e:c7:8f:54:5d:1c:39:19:11:de:55:31:57:3c:fb:6f:02:1e:
84:5e:f0:4e:0f:54:00:ea:8b:ea:e9:15:eb:40:f2:42:31:a7:
1d:9b:5e:a4:6f:3a:07:e2:53:e5:53:bd:36:e2:89:e3:d2:a0:
42:04:20:97:5c:53:48:45:e6:d5:1b:85:6d:d1:f8:66:b8:a5:
be:f4:1c:63:f5:e4:2e:79:2f:bb:4b:34:cf:a5:4a:61:d6:2a:
22:bc:61:ce:ed:80:8c:1b:33:c3:7a:b5:18:c9:f7:3b:58:b5:
6b:68:dd:d5:05:ea:22:4f:fe:40:f4:76:d0:ee:a2:30:bd:c2:
e7:1f:a6:6e:23:53:5f:7d:85:50:7a:7c:17:b3:31:5f:17:4a:
80:97:2c:1b:ba:ea:6c:b6:91:9c:e7:00:d0:3f:19:91:d1:11:
7a:31:e6:27:90:84:10:98:06:08:ac:51:a2:2a:26:f9:b7:f9:
c1:2a:a6:7d:bc:8e:68:54:3e:f3:be:0c:95:a3:1c:7a:f0:0d:
e6:0e:79:4e:e7:45:8e:16:d9:b2:c5:64:6a:69:3f:90:29:df:
2b:91:47:ba:f9:3d:d1:40:98:67:a8:74:7c:bb:43:d3:47:1f:
af:d7:ea:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:00 2025 by rpki-client