Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6QfdAZ-D8mU2cODw-N7Qg7nfAPY.roa
File: 6QfdAZ-D8mU2cODw-N7Qg7nfAPY.roa (raw, json)
Hash identifier: 5/9Ob4tjQRgDEAcjZQpa5XSSy5iRl+1UtK/Nkggi3g0=
Subject key identifier: E9:07:DD:01:9F:83:F2:65:36:70:E0:F0:F8:DE:D0:83:B9:DF:00:F6
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0191233644D26651AE2BBA1DA54E7AEAA559
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6QfdAZ-D8mU2cODw-N7Qg7nfAPY.roa
Signing time: Mon 05 Aug 2024 15:44:04 +0000
ROA not before: Mon 05 Aug 2024 15:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200740
IP address blocks: 45.9.72.0/24 maxlen: 24
45.138.73.0/24 maxlen: 24
46.17.105.0/24 maxlen: 24
80.76.32.0/23 maxlen: 23
80.76.34.0/23 maxlen: 23
91.217.76.0/24 maxlen: 24
92.118.8.0/23 maxlen: 23
94.142.136.0/23 maxlen: 23
94.142.136.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
95.214.10.0/23 maxlen: 23
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
185.40.7.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.94.164.0/23 maxlen: 23
185.94.164.0/24 maxlen: 24
185.94.165.0/24 maxlen: 24
185.102.136.0/24 maxlen: 24
185.103.252.0/23 maxlen: 23
185.103.252.0/24 maxlen: 24
185.103.253.0/24 maxlen: 24
185.103.254.0/23 maxlen: 23
185.103.254.0/24 maxlen: 24
185.103.255.0/24 maxlen: 24
185.112.81.0/24 maxlen: 24
185.114.72.0/23 maxlen: 23
185.114.72.0/24 maxlen: 24
185.114.73.0/24 maxlen: 24
185.117.116.0/24 maxlen: 24
185.117.119.0/24 maxlen: 24
185.200.190.0/24 maxlen: 24
185.232.170.0/23 maxlen: 23
185.233.80.0/23 maxlen: 23
185.233.82.0/24 maxlen: 24
185.233.202.0/23 maxlen: 23
185.252.144.0/24 maxlen: 24
193.124.188.0/23 maxlen: 23
193.124.190.0/24 maxlen: 24
193.239.160.0/23 maxlen: 23
193.239.166.0/23 maxlen: 23
194.36.178.0/23 maxlen: 23
2a04:5200:68::/48 maxlen: 48
2a04:5201:2::/48 maxlen: 48
2a04:5201:4::/48 maxlen: 48
2a04:5201:6::/48 maxlen: 48
2a04:5201:7::/48 maxlen: 48
2a04:5201:9::/48 maxlen: 48
2a04:5201:8018::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 09 Aug 2024 13:51:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:23:36:44:d2:66:51:ae:2b:ba:1d:a5:4e:7a:ea:a5:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 5 15:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e907dd019f83f2653670e0f0f8ded083b9df00f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ce:f7:e6:be:3f:90:12:04:83:e5:2b:d5:44:
9b:ac:b6:a2:fa:cf:f8:b1:07:00:11:22:9b:3e:88:
4b:ca:c0:bd:8b:17:74:b7:22:2d:a9:e5:e7:da:7f:
23:ee:72:3d:c0:3a:27:e8:4b:23:bd:10:f0:38:44:
d8:dc:54:15:a6:41:c1:24:cb:ee:ac:d7:e4:8c:ee:
44:73:43:e1:c3:ec:ea:af:58:59:40:45:35:f7:d7:
ca:66:a6:06:7b:77:7e:bf:59:35:1c:fb:f0:15:d2:
bb:d2:71:5f:28:90:7c:70:86:1c:c4:47:a6:81:47:
82:61:32:56:13:61:69:cd:93:c9:07:56:3f:05:71:
d9:f9:65:8e:42:f2:80:39:f1:b8:eb:c7:84:a2:e0:
e8:f4:4f:fd:ea:04:88:08:f8:3f:7f:9d:a4:b4:a6:
a6:85:06:1d:79:ed:7c:bd:a3:d2:0e:b1:7b:34:b5:
10:45:59:dd:e9:bd:4b:19:7d:58:22:ef:32:2c:63:
53:b8:3b:cd:bf:5f:0f:5f:41:7e:93:5d:ac:42:ef:
fe:6d:d1:af:8b:3e:04:9c:54:3d:f0:14:c3:83:df:
35:55:4b:72:bb:88:02:c6:70:43:82:a8:2c:1e:bb:
ee:38:c3:f1:80:d1:e9:0d:da:2e:e3:c4:c1:06:68:
fa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:07:DD:01:9F:83:F2:65:36:70:E0:F0:F8:DE:D0:83:B9:DF:00:F6
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6QfdAZ-D8mU2cODw-N7Qg7nfAPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.72.0/24
45.138.73.0/24
46.17.105.0/24
80.76.32.0/22
91.217.76.0/24
92.118.8.0/23
94.142.136.0/23
95.214.9.0-95.214.11.255
185.40.7.0/24
185.58.204.0/24
185.94.164.0/23
185.102.136.0/24
185.103.252.0/22
185.112.81.0/24
185.114.72.0/23
185.117.116.0/24
185.117.119.0/24
185.200.190.0/24
185.232.170.0/23
185.233.80.0-185.233.82.255
185.233.202.0/23
185.252.144.0/24
193.124.188.0-193.124.190.255
193.239.160.0/23
193.239.166.0/23
194.36.178.0/23
IPv6:
2a04:5200:68::/48
2a04:5201:2::/48
2a04:5201:4::/48
2a04:5201:6::/47
2a04:5201:9::/48
2a04:5201:8018::/48
Signature Algorithm: sha256WithRSAEncryption
aa:bf:4d:6c:d2:c4:35:43:04:84:86:b5:e3:3a:ef:b9:70:c1:
81:dd:f2:1d:4c:e2:62:3f:5b:0d:73:df:37:39:ee:7b:77:75:
49:98:be:fc:20:93:aa:6c:e8:58:7e:d0:9c:75:91:ac:1e:41:
f3:5a:6a:39:f1:d0:e0:db:fe:82:0c:25:b2:7c:42:82:e8:d0:
4f:08:d1:e4:12:26:05:39:44:8f:d3:94:a0:7a:0a:29:ca:78:
9a:a9:a3:18:d9:19:a4:aa:0d:3e:bc:e6:1d:bc:68:1e:1f:1c:
9c:45:50:8b:1c:7f:ca:ad:bf:86:cc:99:eb:b4:35:e3:b0:01:
ab:57:65:83:33:f0:30:6c:c8:f1:46:2f:14:38:be:4b:b0:ad:
ab:7b:d7:04:70:7c:14:b1:47:3a:fc:35:32:54:93:be:4e:97:
a7:f3:7f:30:10:27:a5:f6:4f:ca:df:77:ac:36:1d:88:17:3d:
7a:a4:e8:66:38:d6:d6:0b:c1:28:23:39:bb:75:4b:98:ab:7f:
c3:b3:61:5f:cd:e2:19:a9:4e:0f:09:11:1b:75:21:2e:f2:2d:
1c:a8:51:07:2e:ba:f1:47:0b:8a:09:ab:ad:bb:30:a3:6f:f8:
e7:55:c9:eb:f6:81:73:26:9c:8d:b8:5e:a1:74:42:cc:45:1e:
41:35:25:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 15:43:33 2024 by rpki-client on console-ams.rpki-client.org