Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Ef3bwJ_eKjEbAw6eQdxcbCSMmIc.roa
File: Ef3bwJ_eKjEbAw6eQdxcbCSMmIc.roa (raw, json)
Hash identifier: Eqk4i0OGeqpSNiwR0/1krK0JifcWOABOWueZ4xjw+Tk=
Subject key identifier: 11:FD:DB:C0:9F:DE:2A:31:1B:03:0E:9E:41:DC:5C:6C:24:8C:98:87
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0191316455F290621EF8345540C8E5ECED52
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Ef3bwJ_eKjEbAw6eQdxcbCSMmIc.roa
Signing time: Thu 08 Aug 2024 09:49:04 +0000
ROA not before: Thu 08 Aug 2024 09:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35196
IP address blocks: 45.9.73.179/32 maxlen: 32
45.9.73.184/32 maxlen: 32
45.9.73.236/32 maxlen: 32
45.89.65.0/24 maxlen: 24
45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
94.142.136.67/32 maxlen: 32
94.142.139.0/24 maxlen: 24
185.5.248.0/22 maxlen: 22
185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.87.48.0/22 maxlen: 22
185.87.48.0/24 maxlen: 24
185.87.48.18/32 maxlen: 32
185.87.49.0/24 maxlen: 24
185.87.50.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
185.125.216.0/22 maxlen: 22
185.125.218.0/23 maxlen: 23
185.125.229.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
195.47.250.0/24 maxlen: 24
2a09:5302:ffff::/48 maxlen: 48
2a0a:9300:1000::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 26 Sep 2024 15:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:64:55:f2:90:62:1e:f8:34:55:40:c8:e5:ec:ed:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 8 09:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11fddbc09fde2a311b030e9e41dc5c6c248c9887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2b:b2:3a:51:f4:25:94:24:a8:cc:b7:37:68:
06:dd:00:b8:88:a8:5e:ea:02:99:23:3e:69:6a:48:
84:f8:51:51:0a:a0:bf:05:9b:e6:09:6a:22:9f:0a:
6f:29:a5:bd:8a:2e:1d:5f:49:b7:0d:f4:58:06:0d:
78:b8:b6:90:41:6b:49:50:7e:a8:b2:08:f3:9e:1b:
df:c8:3f:b7:4f:8c:22:e4:03:f7:62:06:52:18:4f:
36:c8:c4:4c:b5:52:0b:3a:4f:b6:11:90:1e:ef:ab:
2f:bc:f3:63:e8:b6:d6:43:42:6c:59:89:bd:dd:48:
97:8c:3c:20:66:ee:47:b5:5c:b8:6e:03:7e:6d:0e:
83:8b:d0:f4:ed:14:af:15:27:f9:15:53:3d:36:6d:
fd:b6:31:c7:ec:02:48:7d:5a:6b:43:8f:6c:9f:84:
79:eb:d2:7f:d3:fb:77:56:15:87:1a:e5:61:69:4d:
d4:18:ba:be:3e:88:e2:4a:47:38:75:6e:19:5c:96:
a9:06:38:09:2e:26:54:2f:01:44:e3:04:d0:57:06:
40:f3:95:7d:76:20:15:9b:84:3d:ed:88:84:04:a9:
8b:26:b5:56:8b:11:c6:af:3b:fc:f0:d3:80:d8:ad:
3d:10:fb:0b:ae:f4:a8:b7:0a:a3:27:11:0d:b8:e5:
6a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:FD:DB:C0:9F:DE:2A:31:1B:03:0E:9E:41:DC:5C:6C:24:8C:98:87
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/Ef3bwJ_eKjEbAw6eQdxcbCSMmIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.73.179/32
45.9.73.184/32
45.9.73.236/32
45.89.65.0-45.89.67.255
45.128.176.0/22
91.217.80.0/24
94.142.136.0/21
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/23
185.117.152.0/22
185.125.216.0/22
185.125.229.0-185.125.231.255
194.67.192.0/19
195.47.250.0/24
IPv6:
2a09:5302:ffff::/48
2a0a:9300:1000::/48
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
Signature Algorithm: sha256WithRSAEncryption
52:8d:ff:56:59:ee:57:4c:bd:4a:51:0f:38:a2:12:62:4b:8c:
94:cc:6f:fb:67:ac:e5:92:91:bc:e0:47:67:ee:cf:24:33:93:
a8:8a:43:44:3d:07:8c:eb:42:3d:9d:f5:e1:e2:5c:fe:bb:98:
24:4e:4c:dd:e6:6d:f0:c1:28:a2:0e:79:04:a3:22:7a:d2:56:
45:bc:5e:e7:e1:09:91:3a:b5:26:69:09:51:4a:f4:28:16:0e:
ba:2d:6a:a9:26:cf:e1:9e:cd:1a:c0:72:85:c9:a0:76:5b:6c:
53:c9:39:29:6f:57:cf:e8:a5:56:0c:e6:f1:88:97:24:2e:71:
32:10:7c:66:50:45:e4:44:61:3b:6a:04:f9:4a:c0:e5:0f:f2:
d9:86:fe:7c:83:55:00:f8:40:3a:f5:99:0b:a1:5a:dc:d1:3f:
16:3a:23:a8:76:1f:04:f5:d4:b1:fd:00:1c:37:60:e3:90:25:
56:81:9e:eb:84:68:86:af:c7:1b:c8:77:7d:9d:cc:0f:b0:9c:
36:75:6b:c9:5f:95:6d:d6:d8:da:b0:f7:f0:63:dc:63:9f:ee:
59:64:e8:1d:fd:a4:86:4f:26:55:1f:2d:03:7f:06:9a:fc:f0:
31:31:56:23:d7:a0:2f:d5:9d:d3:fb:63:62:f3:b5:b9:a8:07:
fc:95:0d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 17:49:42 2024 by rpki-client on console-fra.rpki-client.org