Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/suIrlCnWTsU2RHLrSHAbwF-QBxc.roa
File: suIrlCnWTsU2RHLrSHAbwF-QBxc.roa (raw, json)
Hash identifier: 0cTeUdQI6dizuOvZkcDyhKqN6+vPSYktQ1Chm7Sl3Ss=
Subject key identifier: B2:E2:2B:94:29:D6:4E:C5:36:44:72:EB:48:70:1B:C0:5F:90:07:17
Certificate issuer: /CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Certificate serial: 018D30C45D41BBBA6AC9E8D55E8BE8F36BEF
Authority key identifier: 8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/suIrlCnWTsU2RHLrSHAbwF-QBxc.roa
Signing time: Mon 22 Jan 2024 10:43:11 +0000
ROA not before: Mon 22 Jan 2024 10:43:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44534
IP address blocks: 5.45.209.0/24 maxlen: 24
5.255.232.0/24 maxlen: 24
37.140.168.0/24 maxlen: 24
77.88.42.0/23 maxlen: 23
77.88.61.0/24 maxlen: 24
87.250.232.0/24 maxlen: 24
87.250.238.0/24 maxlen: 24
90.156.176.0/20 maxlen: 24
90.156.176.0/24 maxlen: 24
93.158.155.0/24 maxlen: 24
93.158.184.0/24 maxlen: 24
93.158.185.0/24 maxlen: 24
93.158.186.0/24 maxlen: 24
93.158.187.0/24 maxlen: 24
95.108.168.0/22 maxlen: 22
95.108.170.0/24 maxlen: 24
178.154.152.0/24 maxlen: 24
2a02:6bf:8004::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 08 Nov 2024 10:02:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:c4:5d:41:bb:ba:6a:c9:e8:d5:5e:8b:e8:f3:6b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d84404e5f8a4b117ae44e73d53c44ecdd578342
Validity
Not Before: Jan 22 10:43:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2e22b9429d64ec5364472eb48701bc05f900717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b1:77:a6:6f:e2:69:5f:fe:31:c0:76:da:be:
8b:57:8b:a4:b6:79:1b:fa:3e:06:e8:0d:78:c6:ea:
41:26:d1:dd:c4:82:76:84:d5:8f:4d:e1:3c:76:d4:
b7:6f:93:ba:32:e9:53:55:d9:65:12:18:75:18:aa:
0a:8e:00:c1:4e:8f:3b:4f:1a:df:29:18:ba:dd:63:
6e:49:ec:3a:3c:e6:ac:0e:b9:78:79:ed:b1:c5:e4:
2d:e2:cb:95:f1:5a:25:d9:80:d3:bb:fa:08:0e:a2:
90:8c:cd:f5:0a:43:53:13:01:9e:43:52:74:f5:ec:
21:ed:64:31:43:db:f5:9c:fa:70:9e:d6:18:c4:26:
f2:29:7d:72:bc:73:4f:ca:d3:3b:5f:be:7f:53:80:
1f:4d:05:f7:85:a0:4a:8d:42:f2:a4:57:64:58:b3:
5f:39:1a:c1:2f:ad:24:04:1a:39:25:57:b7:4e:69:
6d:a4:b8:ed:d6:a9:f5:00:8f:56:04:07:66:69:36:
fd:be:e7:fc:db:34:90:33:ae:41:4d:98:16:a2:71:
02:17:67:38:5d:d1:bf:bb:2b:50:8b:a6:5e:07:a8:
68:54:23:d2:ec:57:c7:f6:25:97:3e:eb:db:38:38:
bf:9f:9f:90:c9:2d:dc:56:54:e8:cc:cf:06:de:4a:
68:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E2:2B:94:29:D6:4E:C5:36:44:72:EB:48:70:1B:C0:5F:90:07:17
X509v3 Authority Key Identifier:
keyid:8D:84:40:4E:5F:8A:4B:11:7A:E4:4E:73:D5:3C:44:EC:DD:57:83:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYRATl-KSxF65E5z1TxE7N1Xg0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/suIrlCnWTsU2RHLrSHAbwF-QBxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/d51f64-5d06-4fc0-ab69-2cd98ee53569/1/jYRATl-KSxF65E5z1TxE7N1Xg0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.209.0/24
5.255.232.0/24
37.140.168.0/24
77.88.42.0/23
77.88.61.0/24
87.250.232.0/24
87.250.238.0/24
90.156.176.0/20
93.158.155.0/24
93.158.184.0/22
95.108.168.0/22
178.154.152.0/24
IPv6:
2a02:6bf:8004::/48
Signature Algorithm: sha256WithRSAEncryption
4b:50:3d:40:bc:60:15:e6:05:4a:c8:52:50:1b:2a:74:6e:37:
3b:d3:3a:d9:8e:cb:4a:d3:d7:24:6f:f9:b5:21:2c:49:ab:49:
a4:36:75:83:25:3b:9a:e3:b1:54:8c:3a:72:2f:85:b5:1e:95:
d7:97:96:a0:db:18:6f:ca:7f:27:60:6c:3b:72:bc:31:5d:68:
84:24:4a:3a:bd:39:35:69:4c:65:0a:1b:29:fe:30:10:bb:30:
f6:f7:0c:e8:3c:25:15:10:24:57:3d:93:6f:68:22:64:f2:f0:
23:79:53:7e:c3:db:64:07:1c:5f:80:41:ea:f0:f0:ab:b3:66:
a7:a0:4c:ea:cb:5c:bf:a7:c5:cd:fd:17:96:8e:6b:6a:2b:4e:
3d:16:1d:9f:8e:7a:29:21:cd:f5:3e:a6:c2:b1:0c:97:67:ab:
42:38:ae:e3:d7:e0:75:1c:26:cb:fa:d2:ca:bd:ae:da:a0:8f:
da:97:fe:32:0b:d1:a0:53:50:5e:d9:48:19:c5:fa:d0:70:16:
26:4f:77:9f:66:1d:6d:63:0a:d8:cc:29:52:7f:c7:9f:a1:27:
64:fa:2d:ec:1c:b5:bc:b1:c4:2e:c3:f3:10:cd:f7:36:f9:28:
41:ce:ef:69:3f:b4:84:4c:0b:6c:6f:e4:db:8b:8d:e9:4a:3d:
c4:b7:18:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 13:24:13 2024 by rpki-client on console-ams.rpki-client.org