Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/CRUtUPNb0FQf-ML72aqjV2CKru0.roa
File: CRUtUPNb0FQf-ML72aqjV2CKru0.roa (raw, json)
Hash identifier: FnJDcKwTL8JSMImM3/duznamEOQZVycsAdgT2kC074w=
Subject key identifier: 09:15:2D:50:F3:5B:D0:54:1F:F8:C2:FB:D9:AA:A3:57:60:8A:AE:ED
Certificate issuer: /CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Certificate serial: 018D65588413E09FD3847157AB28907A0B57
Authority key identifier: E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/CRUtUPNb0FQf-ML72aqjV2CKru0.roa
Signing time: Thu 01 Feb 2024 15:45:16 +0000
ROA not before: Thu 01 Feb 2024 15:45:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44894
IP address blocks: 91.193.128.0/22 maxlen: 22
91.193.128.0/23 maxlen: 23
91.193.128.0/24 maxlen: 24
91.193.129.0/24 maxlen: 24
91.193.130.0/23 maxlen: 23
91.193.130.0/24 maxlen: 24
91.193.131.0/24 maxlen: 24
91.203.60.0/22 maxlen: 22
91.203.60.0/23 maxlen: 23
91.203.60.0/24 maxlen: 24
91.203.61.0/24 maxlen: 24
91.203.62.0/23 maxlen: 23
91.203.62.0/24 maxlen: 24
91.203.63.0/24 maxlen: 24
194.107.230.0/23 maxlen: 23
194.107.230.0/24 maxlen: 24
194.107.231.0/24 maxlen: 24
194.110.2.0/23 maxlen: 23
194.110.2.0/24 maxlen: 24
194.110.3.0/24 maxlen: 24
194.150.104.0/23 maxlen: 23
194.150.104.0/24 maxlen: 24
194.150.105.0/24 maxlen: 24
194.150.106.0/24 maxlen: 24
2001:67c:2f2c::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 03:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:58:84:13:e0:9f:d3:84:71:57:ab:28:90:7a:0b:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e69e45a4481456148e2e00349d87aa57c56b24a0
Validity
Not Before: Feb 1 15:45:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09152d50f35bd0541ff8c2fbd9aaa357608aaeed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:00:e3:ba:84:e7:56:9c:e3:54:84:50:a6:b4:
21:e3:7d:19:a8:2c:2a:4b:10:48:dd:f0:4b:ae:84:
11:6d:3a:af:96:d1:67:46:ed:1b:09:94:53:a3:51:
23:67:3a:b4:e8:2f:9b:64:28:c0:8d:ef:e0:31:38:
42:7e:9d:94:12:52:d8:d6:6b:d5:8a:6a:7a:c6:4a:
ff:f4:ce:8a:dc:ba:0b:f9:9f:97:07:d1:23:27:d0:
79:bb:69:9d:c0:53:76:be:91:8f:cf:73:bb:2c:8c:
98:b8:a1:ad:fc:72:63:2b:a1:28:12:f4:a0:25:aa:
ac:2d:34:9a:0c:77:1d:01:cd:52:79:7a:af:c1:00:
5a:94:d9:44:2e:16:67:34:cd:f2:5b:0a:5d:fa:c1:
6c:a6:5e:bc:c0:fb:c9:89:17:67:bc:e9:52:86:8b:
75:12:fd:51:c5:4e:bd:e1:77:f7:e6:d3:d3:b1:9a:
37:ed:be:a6:d7:36:e9:bb:2a:22:3e:10:53:30:88:
3c:a2:92:17:ed:35:29:ae:08:6f:74:01:7e:48:d3:
4e:ab:61:a7:24:9a:19:24:1a:74:98:98:ac:98:bf:
e3:7b:0d:ad:34:b8:67:ed:8a:83:ff:42:f4:2c:81:
ba:dd:e9:00:3c:9f:56:54:a3:96:87:98:3c:d1:63:
4b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:15:2D:50:F3:5B:D0:54:1F:F8:C2:FB:D9:AA:A3:57:60:8A:AE:ED
X509v3 Authority Key Identifier:
keyid:E6:9E:45:A4:48:14:56:14:8E:2E:00:34:9D:87:AA:57:C5:6B:24:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5p5FpEgUVhSOLgA0nYeqV8VrJKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/CRUtUPNb0FQf-ML72aqjV2CKru0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/44d59e-dc7b-4d2c-ba45-4a91fabd8a8e/1/5p5FpEgUVhSOLgA0nYeqV8VrJKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.128.0/22
91.203.60.0/22
194.107.230.0/23
194.110.2.0/23
194.150.104.0-194.150.106.255
IPv6:
2001:67c:2f2c::/48
Signature Algorithm: sha256WithRSAEncryption
6b:51:84:8b:a2:e3:03:c1:db:e0:8f:f5:61:37:9a:c2:4a:a7:
1e:99:ba:48:fb:c7:a0:25:13:af:c4:0d:2b:33:4f:22:2e:d3:
d4:ed:cd:94:2f:2c:ae:8c:2b:c3:0d:c0:f2:df:de:b4:05:fe:
8e:10:44:c7:0d:8f:3e:40:90:13:92:44:78:80:0c:1c:7f:84:
9b:d7:9c:3e:f2:84:ac:6f:f7:d9:42:d0:4d:4b:55:03:86:7b:
66:c1:5b:85:a4:ea:b7:7a:52:d1:79:76:87:96:58:d5:2c:95:
b4:33:0a:63:e1:4a:9d:45:c4:eb:a2:7b:ff:b4:fb:d5:d2:89:
3b:38:61:f3:f7:d9:4c:4d:94:4c:db:aa:34:d8:00:92:18:75:
27:36:0f:cb:8d:39:7a:68:1d:ee:7a:2d:4a:0c:01:e4:56:fc:
63:95:ea:d9:b0:6e:8b:e4:d7:1a:2c:4b:20:ef:88:30:29:e4:
11:5d:e7:0c:60:71:3c:2c:cc:42:2b:8f:68:a5:8f:97:7d:0f:
6f:fe:27:1c:b8:28:d0:ab:2c:e3:44:56:55:09:3e:16:85:82:
4b:69:dc:b7:65:9e:8f:7e:f7:ab:21:6a:c3:f0:32:be:e9:75:
24:94:0f:34:a3:61:f5:b2:b8:7c:a3:45:14:6e:43:59:ba:1b:
f5:03:dd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:13 2025 by rpki-client