Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/MPtUdAtDYQpDZq1mrcl8YDjHC74.roa
File: MPtUdAtDYQpDZq1mrcl8YDjHC74.roa (raw, json)
Hash identifier: Augm1Yn/B3rbiLruKAwUK0EPRnzNwxx28QWQ8rSmdxY=
Subject key identifier: 30:FB:54:74:0B:43:61:0A:43:66:AD:66:AD:C9:7C:60:38:C7:0B:BE
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 019137688E9E871B661347B756FF3F284967
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/MPtUdAtDYQpDZq1mrcl8YDjHC74.roa
Signing time: Fri 09 Aug 2024 13:51:24 +0000
ROA not before: Fri 09 Aug 2024 13:51:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200740
IP address blocks: 45.9.72.0/24 maxlen: 24
45.138.73.0/24 maxlen: 24
46.17.105.0/24 maxlen: 24
80.76.32.0/23 maxlen: 23
80.76.34.0/23 maxlen: 23
91.217.76.0/24 maxlen: 24
92.118.8.0/23 maxlen: 23
94.142.136.0/23 maxlen: 23
94.142.136.0/24 maxlen: 24
94.142.137.0/24 maxlen: 24
95.214.9.0/24 maxlen: 24
95.214.10.0/23 maxlen: 23
95.214.10.0/24 maxlen: 24
95.214.11.0/24 maxlen: 24
185.40.7.0/24 maxlen: 24
185.58.204.0/24 maxlen: 24
185.94.164.0/23 maxlen: 23
185.94.164.0/24 maxlen: 24
185.94.165.0/24 maxlen: 24
185.102.136.0/24 maxlen: 24
185.103.252.0/23 maxlen: 23
185.103.252.0/24 maxlen: 24
185.103.253.0/24 maxlen: 24
185.103.254.0/23 maxlen: 23
185.103.254.0/24 maxlen: 24
185.103.255.0/24 maxlen: 24
185.112.81.0/24 maxlen: 24
185.114.72.0/23 maxlen: 23
185.114.72.0/24 maxlen: 24
185.114.73.0/24 maxlen: 24
185.117.116.0/24 maxlen: 24
185.117.119.0/24 maxlen: 24
185.200.190.0/24 maxlen: 24
185.232.170.0/23 maxlen: 23
185.233.80.0/23 maxlen: 23
185.233.82.0/24 maxlen: 24
185.233.202.0/23 maxlen: 23
185.252.144.0/24 maxlen: 24
193.124.182.0/24 maxlen: 24
193.124.183.0/24 maxlen: 24
193.124.188.0/23 maxlen: 23
193.124.190.0/24 maxlen: 24
193.239.160.0/23 maxlen: 23
193.239.166.0/23 maxlen: 23
194.36.178.0/23 maxlen: 23
2a04:5200:68::/48 maxlen: 48
2a04:5201:2::/48 maxlen: 48
2a04:5201:4::/48 maxlen: 48
2a04:5201:6::/48 maxlen: 48
2a04:5201:7::/48 maxlen: 48
2a04:5201:9::/48 maxlen: 48
2a04:5201:8018::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Oct 2024 13:26:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:68:8e:9e:87:1b:66:13:47:b7:56:ff:3f:28:49:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 9 13:51:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=30fb54740b43610a4366ad66adc97c6038c70bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:19:c5:59:51:34:19:73:95:53:6e:6f:7e:76:
2a:a5:09:69:76:29:f1:b0:17:c5:de:cb:e9:19:f8:
b6:9e:a6:32:73:01:c2:f7:23:71:39:1f:04:34:f7:
be:20:5d:59:dd:49:73:0e:8b:6b:78:29:8c:cd:e8:
22:f5:91:a2:90:0a:a0:8e:4f:73:a0:31:e6:90:b5:
2b:4e:bc:5e:e8:2f:b3:97:36:28:18:10:28:d4:b3:
7a:0c:5a:26:13:96:d7:49:5a:b6:20:48:10:7e:29:
d6:1b:76:ae:dd:93:5a:b5:fa:01:83:e3:12:dc:82:
be:c2:ea:31:26:56:c3:ba:5f:8d:33:43:cd:21:fb:
ac:77:d4:99:7c:74:85:1a:44:4b:62:f7:d5:38:78:
0f:87:68:5a:5c:b8:63:7b:63:76:d6:82:24:4d:91:
b5:08:91:b7:b0:f3:e8:d9:18:ee:dd:56:8d:73:be:
35:77:88:6b:17:3d:53:b1:21:1c:3d:b8:6d:d1:17:
19:0e:f9:75:8c:d5:a1:68:65:2a:c9:6d:63:4b:cf:
c6:8a:2d:85:86:41:b0:76:72:0c:31:40:9b:87:a8:
1b:14:ab:4e:5b:ba:11:20:3a:8e:ba:54:2f:11:a5:
7d:c0:ed:a5:e4:32:1e:84:85:75:b0:34:f4:fa:05:
f1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FB:54:74:0B:43:61:0A:43:66:AD:66:AD:C9:7C:60:38:C7:0B:BE
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/MPtUdAtDYQpDZq1mrcl8YDjHC74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.72.0/24
45.138.73.0/24
46.17.105.0/24
80.76.32.0/22
91.217.76.0/24
92.118.8.0/23
94.142.136.0/23
95.214.9.0-95.214.11.255
185.40.7.0/24
185.58.204.0/24
185.94.164.0/23
185.102.136.0/24
185.103.252.0/22
185.112.81.0/24
185.114.72.0/23
185.117.116.0/24
185.117.119.0/24
185.200.190.0/24
185.232.170.0/23
185.233.80.0-185.233.82.255
185.233.202.0/23
185.252.144.0/24
193.124.182.0/23
193.124.188.0-193.124.190.255
193.239.160.0/23
193.239.166.0/23
194.36.178.0/23
IPv6:
2a04:5200:68::/48
2a04:5201:2::/48
2a04:5201:4::/48
2a04:5201:6::/47
2a04:5201:9::/48
2a04:5201:8018::/48
Signature Algorithm: sha256WithRSAEncryption
23:22:88:bf:87:6b:4e:12:c9:43:5f:6a:af:eb:88:f3:8c:cf:
08:e7:89:7e:6d:60:e3:c7:c0:d7:34:28:43:97:db:4c:0a:ea:
b0:ae:ce:8f:50:19:2c:67:9d:2c:00:f7:c7:4e:d3:cf:1d:38:
2e:9d:c7:28:4c:79:19:f6:f1:3c:51:6a:95:3f:46:16:44:22:
0f:9d:a0:92:ef:9d:2a:a1:38:dc:25:a8:3a:4e:01:9f:67:cb:
c6:a5:30:e8:29:6c:73:85:d3:2c:58:de:75:58:4b:23:22:9b:
96:6b:f9:d0:aa:d4:c6:89:8a:40:be:5b:6b:79:2d:43:17:ea:
d4:75:60:11:d9:a1:be:f6:a1:0a:82:85:f0:35:f3:54:1f:09:
7d:49:ed:eb:ab:c3:12:ce:4e:c6:c4:af:e0:93:a4:40:76:90:
44:3b:86:f1:c4:d4:52:39:fb:82:87:6c:41:a7:48:64:fe:fb:
89:e8:be:7c:d5:e2:8a:50:91:11:e9:b0:bf:6c:94:81:5f:c8:
2d:be:11:e0:d5:34:a5:f3:38:a3:e4:08:32:39:df:26:24:8e:
2e:9b:81:25:4e:7e:45:63:e5:c5:c0:e2:3c:bc:2c:58:28:4c:
3d:34:c1:cb:26:a8:04:1a:e4:33:c6:39:50:fa:2f:24:87:a2:
79:88:07:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 16:04:35 2024 by rpki-client on console-fra.rpki-client.org