Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/1-C8tdDmAmBxjrH7hyzEGc-e5_SE.roa
File: 1-C8tdDmAmBxjrH7hyzEGc-e5_SE.roa (raw, json)
Hash identifier: gQG6W/+uIK6VMZ3ejoZ09eAjJFcxtb2bzi6LGRBhixY=
Subject key identifier: F8:2F:2D:74:39:80:98:1C:63:AC:7E:E1:CB:31:06:73:E7:B9:FD:21
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 018F85E40662855E1EEF63608B2254A89DFA
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/1-C8tdDmAmBxjrH7hyzEGc-e5_SE.roa
Signing time: Fri 17 May 2024 09:31:04 +0000
ROA not before: Fri 17 May 2024 09:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6698
IP address blocks: 45.11.57.0/24 maxlen: 24
45.12.0.0/24 maxlen: 24
45.12.1.0/24 maxlen: 24
45.12.3.0/24 maxlen: 24
91.208.115.0/24 maxlen: 24
128.0.104.0/24 maxlen: 24
176.97.112.0/23 maxlen: 24
176.97.114.0/24 maxlen: 24
176.97.116.0/22 maxlen: 22
176.119.31.0/24 maxlen: 24
185.254.199.0/24 maxlen: 24
194.42.204.0/24 maxlen: 24
195.66.210.0/24 maxlen: 24
195.128.248.0/23 maxlen: 24
2a09:2dc2::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 21 May 2024 10:07:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:e4:06:62:85:5e:1e:ef:63:60:8b:22:54:a8:9d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: May 17 09:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f82f2d743980981c63ac7ee1cb310673e7b9fd21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:71:86:b6:fd:36:fd:2e:44:1c:20:df:84:63:
8b:7c:b7:90:8f:af:a0:8b:db:47:f5:6c:fd:1b:f0:
86:e6:da:0d:2f:77:d0:60:08:26:26:53:7a:be:56:
46:5e:9a:dd:b8:7b:d5:c5:f6:66:82:e8:c5:be:e3:
f7:a3:a0:6f:68:36:54:b5:0b:bb:77:38:a4:c5:09:
05:a4:3e:0a:ba:11:3b:57:b5:24:36:29:d7:90:06:
b2:fc:fa:0c:47:81:64:26:f5:81:4f:00:48:fb:5a:
7a:25:d7:21:52:d7:f1:eb:8a:67:b9:2c:a3:68:1c:
50:22:d0:f1:f8:d0:14:af:7b:c7:ed:c9:52:71:36:
ce:ac:0f:3a:b1:fc:ad:e8:08:5d:65:cc:c9:d0:c4:
52:ae:52:c7:67:80:2a:af:cf:e9:58:fa:d2:94:cb:
30:15:3e:ea:28:c0:00:6e:88:95:0c:3d:d5:4f:5f:
d5:9b:a8:88:82:c0:3d:a8:b6:8c:a0:05:af:b1:95:
7a:8b:09:98:88:3f:94:6d:85:99:21:70:bc:17:23:
98:1c:61:79:1a:39:c1:b4:48:f2:16:63:63:96:14:
9b:b3:4b:54:bb:c4:2b:52:c2:f0:5c:77:64:f0:65:
ed:4f:30:78:a3:f3:61:c1:1a:d5:83:e4:cb:c1:50:
d3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2F:2D:74:39:80:98:1C:63:AC:7E:E1:CB:31:06:73:E7:B9:FD:21
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/1-C8tdDmAmBxjrH7hyzEGc-e5_SE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.57.0/24
45.12.0.0/23
45.12.3.0/24
91.208.115.0/24
128.0.104.0/24
176.97.112.0-176.97.114.255
176.97.116.0/22
176.119.31.0/24
185.254.199.0/24
194.42.204.0/24
195.66.210.0/24
195.128.248.0/23
IPv6:
2a09:2dc2::/32
Signature Algorithm: sha256WithRSAEncryption
a6:29:2e:1e:d0:19:f5:03:f6:75:28:61:8c:c2:8c:14:22:3a:
1b:c7:18:91:eb:33:8b:c3:66:f3:2e:8d:8c:98:b6:e4:ae:5b:
e4:9a:1e:25:9a:fe:77:5d:b5:f6:4f:54:9f:60:5b:3c:69:e5:
19:da:d9:f1:3b:ff:52:7e:a3:32:2a:04:22:65:df:a1:01:77:
bf:81:2d:39:95:f1:11:3b:a8:14:4f:0c:ba:ef:08:d1:81:4d:
43:25:32:23:62:33:db:61:06:91:fa:d0:a7:12:95:70:9d:4e:
f8:d6:89:d8:58:75:5d:4f:39:63:39:e3:c0:74:e9:bc:1f:9c:
76:b8:f9:4c:58:cc:58:3f:a0:88:1e:ae:e6:c7:80:aa:7c:aa:
29:64:8b:95:79:68:52:9c:40:ea:95:e4:da:02:a4:21:86:1f:
bb:b2:c3:14:fc:59:04:c0:a1:27:d3:23:68:b5:78:22:5b:95:
4a:66:5b:3b:78:3e:b2:ed:94:fd:75:c3:3a:d4:91:d9:b9:33:
06:0c:35:2f:ad:41:9e:ce:4a:7e:8e:17:2f:b6:ff:60:41:cd:
a4:e4:52:4d:52:d0:4f:d6:74:2f:88:71:13:36:65:b9:eb:b8:
29:a0:df:1e:0f:82:d4:c9:5e:97:6c:12:91:6c:08:54:4e:93:
7b:5d:e6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:53 2024 by rpki-client on console-ams.rpki-client.org