Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Ffb45Nu1eH2GaYgM3rci-PPXQBE.roa
File: Ffb45Nu1eH2GaYgM3rci-PPXQBE.roa (raw, json)
Hash identifier: UjBiTjFmnQYuttgWavBOvIBhxc6gcAHZCGTKDejBzSM=
Subject key identifier: 15:F6:F8:E4:DB:B5:78:7D:86:69:88:0C:DE:B7:22:F8:F3:D7:40:11
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 018DF50DA46486EE216A6218312A3E6C0BB3
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Ffb45Nu1eH2GaYgM3rci-PPXQBE.roa
Signing time: Thu 29 Feb 2024 13:28:48 +0000
ROA not before: Thu 29 Feb 2024 13:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44395
IP address blocks: 5.77.128.0/17 maxlen: 24
37.157.208.0/20 maxlen: 24
37.157.208.0/22 maxlen: 24
37.157.209.0/24 maxlen: 24
37.157.210.0/24 maxlen: 24
37.157.212.0/22 maxlen: 24
37.157.216.0/21 maxlen: 24
37.157.216.0/22 maxlen: 24
37.157.220.0/22 maxlen: 24
37.252.64.0/19 maxlen: 24
46.36.112.0/20 maxlen: 24
46.162.192.0/18 maxlen: 24
46.162.240.0/20 maxlen: 24
46.241.128.0/17 maxlen: 24
81.16.0.0/20 maxlen: 24
82.199.192.0/20 maxlen: 24
92.43.136.0/21 maxlen: 24
92.43.136.0/22 maxlen: 24
92.43.140.0/22 maxlen: 24
109.75.34.0/23 maxlen: 24
109.75.36.0/22 maxlen: 24
109.75.40.0/21 maxlen: 24
141.136.64.0/19 maxlen: 24
178.78.128.0/18 maxlen: 24
178.78.128.0/19 maxlen: 24
178.78.160.0/20 maxlen: 24
178.78.176.0/21 maxlen: 24
185.59.68.0/22 maxlen: 24
185.86.195.0/24 maxlen: 24
188.115.192.0/18 maxlen: 24
212.34.224.0/19 maxlen: 24
212.34.232.0/21 maxlen: 24
212.34.240.0/20 maxlen: 24
212.34.240.0/21 maxlen: 24
2a00:cc40::/29 maxlen: 48
2a00:cc40::/32 maxlen: 32
2a00:cc40::/48 maxlen: 48
2a01:4a00::/32 maxlen: 32
2a03:1080::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 29 Feb 2024 14:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:0d:a4:64:86:ee:21:6a:62:18:31:2a:3e:6c:0b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Feb 29 13:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15f6f8e4dbb5787d8669880cdeb722f8f3d74011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:df:fe:1f:a1:04:e7:55:b7:7f:de:20:a3:cc:
b6:fa:96:cf:4f:e7:af:b1:13:05:a4:30:81:f2:10:
49:ca:9d:22:95:b7:87:eb:8d:f4:54:cf:1c:b7:33:
ff:d7:f8:01:4e:9f:5b:93:98:6f:1d:94:e2:7a:eb:
0d:69:c8:78:f8:1e:61:24:9e:bc:0c:bd:25:4a:76:
49:e4:8a:0f:5c:00:f2:fe:25:50:1a:02:04:09:41:
f0:d8:eb:b7:ba:4b:25:a0:2b:f9:1f:24:35:e8:c1:
ec:98:f6:c7:fa:eb:b5:6f:9b:2a:89:a9:e1:01:ff:
5f:31:8e:0e:bc:d6:6a:83:79:62:d1:d5:08:50:fa:
0b:b3:b8:03:ed:b6:b6:c1:04:19:05:f3:67:b5:9f:
e8:8a:94:ec:ae:b0:31:cb:e2:4b:82:0e:2a:fe:78:
4a:6a:79:56:1e:5e:0e:96:e6:64:e9:f5:99:b5:62:
a8:7f:41:9b:67:d5:d6:70:bd:67:0b:c4:68:8a:f0:
b4:5b:2a:d5:16:55:94:52:d1:1a:4e:99:84:28:53:
52:96:fc:48:c4:e2:87:30:0c:a9:c3:70:13:fa:ea:
9a:a7:7c:f0:dd:94:26:45:59:7e:2c:de:77:6a:60:
67:fd:06:0d:40:8a:81:78:a8:57:84:5b:a1:bd:43:
2d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F6:F8:E4:DB:B5:78:7D:86:69:88:0C:DE:B7:22:F8:F3:D7:40:11
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Ffb45Nu1eH2GaYgM3rci-PPXQBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.77.128.0/17
37.157.208.0/20
37.252.64.0/19
46.36.112.0/20
46.162.192.0/18
46.241.128.0/17
81.16.0.0/20
82.199.192.0/20
92.43.136.0/21
109.75.34.0-109.75.47.255
141.136.64.0/19
178.78.128.0/18
185.59.68.0/22
185.86.195.0/24
188.115.192.0/18
212.34.224.0/19
IPv6:
2a00:cc40::/29
2a01:4a00::/32
2a03:1080::/32
Signature Algorithm: sha256WithRSAEncryption
8d:7d:78:cf:e8:99:e9:c4:4b:8f:c9:51:d0:18:cf:ab:82:a5:
3c:65:ef:ba:17:46:45:8e:dc:c0:03:fc:1f:88:35:db:0f:27:
7b:6a:09:95:42:3c:51:cd:11:fa:95:69:10:c4:8e:28:18:4b:
d2:ad:26:1f:e2:fa:90:ab:1d:4b:e4:1a:d4:fc:fe:e4:d5:45:
2a:a1:ed:2c:74:ba:7a:96:3e:c2:da:08:87:e0:db:fa:27:ec:
39:38:6d:ef:f4:72:6e:b8:92:ac:8d:f5:2e:f7:d3:24:87:63:
9d:8d:0b:74:12:87:77:8f:33:f4:ef:0e:e0:c3:94:ba:1f:51:
ee:fc:e1:eb:d9:34:22:14:6e:ab:c4:ef:94:e4:26:00:05:f6:
16:6f:7d:d4:7c:65:98:5d:1c:15:fc:94:01:ac:41:49:df:6e:
59:4f:77:83:cd:77:d9:77:1f:11:4b:9f:20:aa:04:62:d7:fe:
c2:ef:eb:f4:bb:42:ec:b8:1c:95:53:ae:e4:8c:2a:90:69:c0:
53:a9:01:bc:cd:50:71:ec:5d:51:8c:4a:5f:52:77:1a:e5:cb:
b8:34:86:6f:06:2f:d0:fc:25:5f:f3:33:de:a3:d1:1e:aa:a6:
ce:f3:6c:ce:9a:e1:b2:1f:5c:26:5f:67:75:94:21:d9:f6:12:
84:c7:14:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 19:07:32 2024 by rpki-client on console-ams.rpki-client.org