Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_0o5DRTOemhPh8RXK0tY10kvNvo.roa
File: _0o5DRTOemhPh8RXK0tY10kvNvo.roa (raw, json)
Hash identifier: /8QPlhy0bpVuST4p39d2E9A6geF1Iif79v6bbJJncQ8=
Subject key identifier: FF:4A:39:0D:14:CE:7A:68:4F:87:C4:57:2B:4B:58:D7:49:2F:36:FA
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0191376E0D1CBD9393C82923296676412B18
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_0o5DRTOemhPh8RXK0tY10kvNvo.roa
Signing time: Fri 09 Aug 2024 13:57:24 +0000
ROA not before: Fri 09 Aug 2024 13:57:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
45.132.252.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
94.142.139.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
103.82.103.0/24 maxlen: 24
185.5.248.0/22 maxlen: 22
185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.207.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.50.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
185.125.216.0/22 maxlen: 22
185.125.218.0/23 maxlen: 23
185.125.229.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.200.188.0/24 maxlen: 24
193.124.176.0/22 maxlen: 22
193.124.176.0/24 maxlen: 24
193.124.177.0/24 maxlen: 24
193.124.178.0/24 maxlen: 24
193.124.179.0/24 maxlen: 24
193.124.180.0/24 maxlen: 24
193.124.181.0/24 maxlen: 24
193.124.182.0/24 maxlen: 24
193.124.183.0/24 maxlen: 24
193.124.184.0/21 maxlen: 21
193.124.184.0/24 maxlen: 24
193.124.189.0/24 maxlen: 24
193.124.191.0/24 maxlen: 24
193.168.224.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.193.0/24 maxlen: 24
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
195.47.250.0/24 maxlen: 24
2a0a:9300::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9300:d0::/48 maxlen: 48
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9302:1::/48 maxlen: 48
2a0b:7780::/29 maxlen: 29
2a0c:77c0::/32 maxlen: 32
2a0d:3880::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 13 Aug 2024 06:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:37:6e:0d:1c:bd:93:93:c8:29:23:29:66:76:41:2b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Aug 9 13:57:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff4a390d14ce7a684f87c4572b4b58d7492f36fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:30:b3:b1:61:28:ad:f3:d0:6b:a7:11:96:
0c:47:80:cf:11:64:a1:71:9d:25:53:03:f7:bc:0b:
cc:80:2f:31:dd:56:29:e5:76:6a:71:e5:db:c7:4d:
95:d3:93:5d:af:0a:c7:3d:e9:36:21:95:49:d0:16:
c0:04:17:18:75:ac:e0:8d:e3:83:23:17:b8:20:6d:
b6:d8:95:03:40:30:c1:d1:e2:7d:19:74:03:46:2b:
3e:3c:b8:ec:18:68:bb:f0:96:46:39:f1:14:3e:58:
81:2e:d3:58:3d:15:c9:09:d1:f8:94:c5:5c:fd:34:
0d:f3:c0:e8:0f:f5:dc:82:ef:4a:32:66:c6:5d:0e:
02:69:e3:a7:10:ac:4e:bc:3e:60:af:e3:81:07:95:
b0:94:c9:96:42:c1:81:4c:b6:c2:5e:fb:f8:f2:83:
60:fc:f5:c5:cb:52:d9:c0:ed:54:35:7c:6c:ff:78:
3e:ec:b9:a1:37:48:fd:b1:12:14:91:23:d5:ec:3b:
40:83:6e:9d:90:32:2a:65:ff:c6:ea:e6:b9:bc:75:
b3:1c:ab:f1:e6:71:74:43:70:27:17:87:b4:05:75:
4a:68:b2:c5:11:4c:c1:8d:51:f7:f2:e6:52:f8:d6:
69:22:c9:d0:0b:14:37:f7:ca:6e:f1:06:f1:ba:75:
63:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4A:39:0D:14:CE:7A:68:4F:87:C4:57:2B:4B:58:D7:49:2F:36:FA
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/_0o5DRTOemhPh8RXK0tY10kvNvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
45.132.252.0/24
91.217.80.0/24
94.142.136.0/21
103.82.103.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/23
185.117.152.0/22
185.125.216.0/22
185.125.229.0-185.125.231.255
185.200.188.0/24
193.124.176.0/20
193.168.224.0/24
194.67.192.0/19
195.47.250.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
2a0b:7780::/29
2a0c:77c0::/32
2a0d:3880::/29
Signature Algorithm: sha256WithRSAEncryption
9a:46:15:f0:d2:94:1f:82:d9:5d:3c:9a:08:31:cc:f5:e7:d6:
1f:23:8d:b6:29:66:f9:5b:f5:73:87:0d:f7:69:ca:46:32:42:
82:fb:db:3a:23:62:aa:53:69:9c:e9:23:13:f0:3e:73:d0:8e:
b3:4b:53:b0:aa:a4:83:26:05:a5:80:69:3f:b2:f7:d9:c1:62:
c9:12:78:6c:34:a7:b9:db:4c:fc:ed:41:f2:7b:07:6e:01:14:
24:fd:b5:dd:f7:0a:5e:ba:80:03:30:0d:96:dc:8c:d0:07:15:
11:87:9a:3b:07:a5:15:e2:ac:30:ac:48:80:bb:56:e5:54:d9:
ee:58:dd:0d:a4:ed:e7:5e:b5:e7:b2:5c:ff:b4:70:e3:69:7f:
17:e8:6f:6c:e8:16:38:92:c9:6e:97:06:fd:8a:a5:25:68:5e:
b5:d5:c2:ee:01:16:9e:39:6a:34:6d:24:ce:01:d7:5c:74:9b:
5b:78:86:65:4f:d4:d8:38:42:14:a5:41:b5:e4:54:d7:fb:01:
13:6b:ee:ca:97:20:0f:64:bb:cf:c8:9f:b1:73:15:88:63:e0:
07:5a:91:70:0e:71:20:5d:53:25:2d:c6:df:5d:d6:85:65:1f:
a4:c3:ab:ef:77:13:00:56:e9:0e:be:d6:c2:c3:7b:db:9d:b2:
4d:a5:61:bc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Aug 13 09:22:18 2024 by rpki-client on console-fra.rpki-client.org