Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/iW_lqn6MGj5C2wn9h9sZRnCQa7U.roa
File: iW_lqn6MGj5C2wn9h9sZRnCQa7U.roa (raw, json)
Hash identifier: BXDxKv2d4EOVXHhvZcQA6LC8FNoAVJBD6073PI7oVFU=
Subject key identifier: 89:6F:E5:AA:7E:8C:1A:3E:42:DB:09:FD:87:DB:19:46:70:90:6B:B5
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 01909781A5909499641AAC856F48D540B1A6
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/iW_lqn6MGj5C2wn9h9sZRnCQa7U.roa
Signing time: Tue 09 Jul 2024 12:39:34 +0000
ROA not before: Tue 09 Jul 2024 12:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 45.89.66.0/24 maxlen: 24
45.89.67.0/24 maxlen: 24
45.128.176.0/22 maxlen: 22
45.128.176.0/24 maxlen: 24
45.128.177.0/24 maxlen: 24
45.128.178.0/24 maxlen: 24
45.128.179.0/24 maxlen: 24
45.132.252.0/24 maxlen: 24
91.217.80.0/24 maxlen: 24
94.142.136.0/21 maxlen: 21
94.142.139.0/24 maxlen: 24
94.142.140.0/24 maxlen: 24
94.142.141.0/24 maxlen: 24
94.142.142.0/24 maxlen: 24
103.82.103.0/24 maxlen: 24
185.5.248.0/22 maxlen: 22
185.5.248.0/23 maxlen: 23
185.5.250.0/23 maxlen: 23
185.5.250.0/24 maxlen: 24
185.58.204.0/22 maxlen: 22
185.58.204.0/24 maxlen: 24
185.58.206.0/24 maxlen: 24
185.58.207.0/24 maxlen: 24
185.87.48.0/22 maxlen: 22
185.87.48.0/24 maxlen: 24
185.87.49.0/24 maxlen: 24
185.87.50.0/24 maxlen: 24
185.87.51.0/24 maxlen: 24
185.105.116.0/24 maxlen: 24
185.105.117.0/24 maxlen: 24
185.117.152.0/22 maxlen: 22
185.125.216.0/22 maxlen: 22
185.125.218.0/23 maxlen: 23
185.125.228.0/22 maxlen: 22
185.125.228.0/24 maxlen: 24
185.125.229.0/24 maxlen: 24
185.125.230.0/24 maxlen: 24
185.125.231.0/24 maxlen: 24
185.200.188.0/24 maxlen: 24
193.109.85.0/24 maxlen: 24
193.124.176.0/20 maxlen: 20
193.124.176.0/21 maxlen: 21
193.124.176.0/24 maxlen: 24
193.124.177.0/24 maxlen: 24
193.124.178.0/24 maxlen: 24
193.124.179.0/24 maxlen: 24
193.124.180.0/24 maxlen: 24
193.124.181.0/24 maxlen: 24
193.124.182.0/24 maxlen: 24
193.124.183.0/24 maxlen: 24
193.124.184.0/21 maxlen: 21
193.124.184.0/24 maxlen: 24
193.124.185.0/24 maxlen: 24
193.124.186.0/24 maxlen: 24
193.124.187.0/24 maxlen: 24
193.124.188.0/24 maxlen: 24
193.124.189.0/24 maxlen: 24
193.124.190.0/24 maxlen: 24
193.124.191.0/24 maxlen: 24
193.168.224.0/24 maxlen: 24
194.67.192.0/19 maxlen: 19
194.67.193.0/24 maxlen: 24
194.67.194.0/23 maxlen: 23
194.67.196.0/22 maxlen: 22
194.67.200.0/21 maxlen: 21
194.67.202.0/24 maxlen: 24
194.67.203.0/24 maxlen: 24
194.67.204.0/22 maxlen: 22
194.67.208.0/20 maxlen: 20
195.47.250.0/24 maxlen: 24
2a0a:9300::/48 maxlen: 48
2a0a:9300:2::/48 maxlen: 48
2a0a:9300:d0::/48 maxlen: 48
2a0a:9300:d1::/48 maxlen: 48
2a0a:9300:d2::/48 maxlen: 48
2a0a:9301::/48 maxlen: 48
2a0a:9301:1::/48 maxlen: 48
2a0a:9301:2::/48 maxlen: 48
2a0a:9302::/32 maxlen: 32
2a0a:9302:1::/48 maxlen: 48
2a0b:7780::/29 maxlen: 29
2a0c:77c0::/32 maxlen: 32
2a0d:3880::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 15 Jul 2024 16:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:81:a5:90:94:99:64:1a:ac:85:6f:48:d5:40:b1:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jul 9 12:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=896fe5aa7e8c1a3e42db09fd87db194670906bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:71:17:d2:28:31:ba:a6:5f:2d:ec:6b:29:c2:
17:17:61:f9:3b:30:23:65:b7:c0:39:93:64:19:18:
3a:02:43:b2:3d:ea:67:60:cd:01:f6:c9:07:10:fb:
a3:da:8f:89:23:01:66:f8:3b:8a:60:d2:21:a6:be:
0d:99:3f:44:99:54:59:b4:0a:95:04:70:3f:32:e8:
76:81:c8:db:cf:20:74:c6:db:00:3e:1b:a5:47:bf:
0c:5f:a5:e4:f4:c7:b1:db:3b:cf:f8:14:7f:93:b8:
fa:cd:f0:b3:37:ae:f6:25:3d:d2:a6:24:52:d1:af:
80:5a:8a:64:fa:99:b8:2f:28:ce:55:72:f0:a8:58:
db:20:7d:99:78:5b:d8:d0:a5:d0:de:cd:7f:c6:15:
ff:b0:5e:e9:bd:21:22:04:33:e3:9b:d6:7a:ea:39:
c6:ab:a1:94:b2:48:be:a9:ff:98:94:1d:8c:8d:da:
43:dd:fc:2b:df:54:ba:4a:1d:7a:ea:f9:52:c5:47:
9f:a1:30:82:b0:ec:2c:ed:b7:94:ba:a6:87:77:2d:
c2:09:48:88:65:d8:62:dc:28:47:42:7d:76:11:72:
09:c8:c0:2c:1a:e3:26:54:ee:e6:09:d1:de:db:6e:
b2:3f:7d:7b:10:5b:9a:39:63:7c:a9:af:18:8f:a0:
1e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6F:E5:AA:7E:8C:1A:3E:42:DB:09:FD:87:DB:19:46:70:90:6B:B5
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/iW_lqn6MGj5C2wn9h9sZRnCQa7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.66.0/23
45.128.176.0/22
45.132.252.0/24
91.217.80.0/24
94.142.136.0/21
103.82.103.0/24
185.5.248.0/22
185.58.204.0/22
185.87.48.0/22
185.105.116.0/23
185.117.152.0/22
185.125.216.0/22
185.125.228.0/22
185.200.188.0/24
193.109.85.0/24
193.124.176.0/20
193.168.224.0/24
194.67.192.0/19
195.47.250.0/24
IPv6:
2a0a:9300::/48
2a0a:9300:2::/48
2a0a:9300:d0::-2a0a:9300:d2:ffff:ffff:ffff:ffff:ffff
2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
2a0a:9302::/32
2a0b:7780::/29
2a0c:77c0::/32
2a0d:3880::/29
Signature Algorithm: sha256WithRSAEncryption
a5:48:e4:4d:42:9a:22:f2:62:93:2a:ec:67:05:f4:b6:d1:71:
a7:f5:26:0e:18:9f:68:7c:18:df:e3:ed:ff:e8:fc:81:ab:7f:
49:5d:53:9f:24:cf:80:23:80:8f:ac:04:38:f9:48:c5:63:3a:
2d:95:45:d7:6e:aa:28:6a:b0:25:73:da:7a:56:65:90:ac:3f:
f9:d7:48:50:cb:b8:2d:e4:9f:da:6a:1f:f8:5c:1b:94:4c:51:
cc:94:5c:fc:da:c2:97:f7:1b:86:9b:8e:67:4a:e1:5e:47:69:
4d:02:f1:51:d8:a9:56:c9:a9:13:8e:8b:ef:ab:64:66:ce:df:
6b:e6:ec:33:05:a7:b9:5d:55:7c:af:1e:d3:71:8c:f9:de:4d:
97:8d:ad:c5:e7:89:c5:71:79:f4:dc:f8:7e:68:b3:76:5a:40:
ae:1b:52:8d:b1:16:a0:bf:c1:67:21:90:45:c2:f9:d5:2d:ad:
28:53:fb:eb:01:6e:d9:7a:45:75:4f:21:19:95:55:60:52:50:
61:c2:0d:94:1d:97:82:90:fb:a0:f3:16:87:80:b1:6b:ea:74:
46:43:8d:46:2d:be:eb:24:bf:a7:78:dd:d9:b1:33:f0:3d:0f:
be:af:a5:4c:90:97:be:99:87:7a:94:b9:b9:cf:a0:bb:eb:06:
33:a0:fd:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 18:57:41 2024 by rpki-client on console-fra.rpki-client.org