Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/cciygDUo5-FJHgwM06cGp-p6M9s.roa
File: cciygDUo5-FJHgwM06cGp-p6M9s.roa (raw, json)
Hash identifier: 6yXK2vvW+OBgKDZmh5DOHUS5hRjsrmKL0RLuojxjyL8=
Subject key identifier: 71:C8:B2:80:35:28:E7:E1:49:1E:0C:0C:D3:A7:06:A7:EA:7A:33:DB
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018F56E0620A4E6A3436FEA3F5232B886C40
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/cciygDUo5-FJHgwM06cGp-p6M9s.roa
Signing time: Wed 08 May 2024 06:24:56 +0000
ROA not before: Wed 08 May 2024 06:24:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42864
IP address blocks: 45.9.169.0/24 maxlen: 24
45.9.170.0/24 maxlen: 24
45.9.171.0/24 maxlen: 24
45.14.10.0/24 maxlen: 24
45.14.11.0/24 maxlen: 24
45.88.93.0/24 maxlen: 24
77.242.144.0/22 maxlen: 24
77.242.148.0/24 maxlen: 24
77.242.151.0/24 maxlen: 24
88.209.193.0/24 maxlen: 24
88.209.196.0/24 maxlen: 24
88.209.208.0/24 maxlen: 24
88.209.210.0/24 maxlen: 24
88.209.212.0/24 maxlen: 24
88.209.213.0/24 maxlen: 24
88.209.214.0/24 maxlen: 24
88.209.215.0/24 maxlen: 24
88.209.246.0/24 maxlen: 24
88.209.247.0/24 maxlen: 24
92.52.208.0/24 maxlen: 24
92.52.209.0/24 maxlen: 24
92.52.210.0/23 maxlen: 23
92.52.212.0/22 maxlen: 24
92.52.215.0/24 maxlen: 24
92.52.219.0/24 maxlen: 24
178.248.200.0/21 maxlen: 21
193.138.125.0/24 maxlen: 24
2a00:1f40::/29 maxlen: 29
2a05:f5c0::/29 maxlen: 29
2a05:f5c0::/32 maxlen: 32
2a0c:f1c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 16 May 2024 11:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:56:e0:62:0a:4e:6a:34:36:fe:a3:f5:23:2b:88:6c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: May 8 06:24:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71c8b2803528e7e1491e0c0cd3a706a7ea7a33db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a8:9f:11:87:b6:7d:ac:97:a2:1a:c7:d3:e6:
1a:bc:84:9d:38:a3:b5:bb:f0:ba:4b:6a:0b:ed:fc:
53:c4:16:fb:a2:9e:ba:0e:18:b6:a1:25:75:fc:58:
e8:f1:9f:0d:46:a2:c6:7d:40:38:cd:d0:63:9f:86:
55:50:3e:35:79:fb:6e:9c:6a:2b:56:a7:f3:40:60:
a5:48:31:d6:dc:f2:21:36:b8:b6:bb:6f:18:b8:5e:
fd:f8:28:79:fb:9f:7a:8b:1a:cc:ea:01:3e:14:d1:
8b:cf:2d:a5:1d:60:f2:bf:90:e3:02:11:50:d0:04:
bc:73:aa:65:d7:8a:4b:a9:82:39:78:5d:44:cd:a2:
aa:e2:0c:6a:2a:31:6a:27:02:11:21:d5:11:a8:a8:
7d:52:7f:0a:e3:71:6c:ea:fe:37:6e:80:e1:29:08:
cb:7a:4a:26:4b:f7:2c:3d:9b:9e:9b:d7:42:a1:b9:
f9:2b:8f:36:18:25:47:e7:23:a9:48:49:1d:b8:50:
7b:4a:f0:7b:fa:4b:de:ee:64:f7:7d:ae:ee:59:36:
61:94:49:4b:84:a3:4f:bf:4e:48:ee:86:22:aa:9a:
7c:84:95:4a:80:26:ab:11:69:45:7c:ce:23:d0:76:
c6:00:d9:93:a9:ad:c1:81:c8:8c:f8:d5:8b:e4:80:
b3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C8:B2:80:35:28:E7:E1:49:1E:0C:0C:D3:A7:06:A7:EA:7A:33:DB
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/cciygDUo5-FJHgwM06cGp-p6M9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.169.0-45.9.171.255
45.14.10.0/23
45.88.93.0/24
77.242.144.0-77.242.148.255
77.242.151.0/24
88.209.193.0/24
88.209.196.0/24
88.209.208.0/24
88.209.210.0/24
88.209.212.0/22
88.209.246.0/23
92.52.208.0/21
92.52.219.0/24
178.248.200.0/21
193.138.125.0/24
IPv6:
2a00:1f40::/29
2a05:f5c0::/29
2a0c:f1c0::/29
Signature Algorithm: sha256WithRSAEncryption
c0:c0:21:c1:ad:87:64:7d:92:f9:8e:3d:52:fa:a6:b1:3c:07:
a9:c0:cd:35:b4:12:00:07:97:6d:04:36:2e:2c:72:de:4b:89:
c0:5c:76:1f:df:bb:d5:f5:53:f5:6a:b4:4d:e7:3c:91:ef:57:
c9:4a:83:e0:3a:d0:a0:d1:33:00:07:69:07:91:6f:68:5f:40:
96:2f:7b:08:f0:44:ad:22:d9:5f:42:88:2a:36:26:9f:c0:24:
68:6b:12:81:62:de:56:6d:d0:62:68:2d:f7:0e:a3:e4:51:97:
40:7d:2b:7c:0f:f4:9e:36:a4:3f:7d:19:b7:ed:c6:c3:7b:da:
c4:3c:ac:0b:de:54:97:09:70:1f:ba:a6:9f:5d:db:16:b9:9d:
ed:ac:53:80:1c:e4:2b:49:8d:2d:f1:e6:4f:41:c7:12:fd:00:
33:9a:b2:ab:24:7e:0c:07:99:9a:04:3a:29:65:2a:0e:e8:4d:
a1:24:a4:66:15:c1:b4:12:51:1f:65:9b:4f:c0:d5:cb:99:2d:
0f:89:6d:a3:33:13:29:23:6b:33:08:09:05:ff:4a:da:63:01:
b9:6c:c4:15:33:90:bb:db:28:1b:b7:a4:ad:41:9d:db:26:9d:
90:d7:7e:62:56:c5:7a:44:02:13:65:78:22:df:95:80:07:ea:
62:1a:a0:ee
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgISAY9W4GIKTmo0Nv6j9SMriGxAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjQwNTA4MDYyNDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWM4YjI4MDM1MjhlN2UxNDkxZTBjMGNkM2E3MDZhN2VhN2EzM2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5aifEYe2fayXohrH0+YavISdOKO1
u/C6S2oL7fxTxBb7op66Dhi2oSV1/Fjo8Z8NRqLGfUA4zdBjn4ZVUD41eftunGor
VqfzQGClSDHW3PIhNri2u28YuF79+Ch5+596ixrM6gE+FNGLzy2lHWDyv5DjAhFQ
0AS8c6pl14pLqYI5eF1EzaKq4gxqKjFqJwIRIdURqKh9Un8K43Fs6v43boDhKQjL
ekomS/csPZuem9dCobn5K482GCVH5yOpSEkduFB7SvB7+kve7mT3fa7uWTZhlElL
hKNPv05I7oYiqpp8hJVKgCarEWlFfM4j0HbGANmTqa3BgciM+NWL5ICzzQIDAQAB
o4ICjTCCAokwHQYDVR0OBBYEFHHIsoA1KOfhSR4MDNOnBqfqejPbMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvY2NpeWdEVW81LUZKSGd3TTA2Y0dwLXA2TTlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGiBggrBgEFBQcBBwEB/wSBkjCBjzBwBAIAATBqMAwDBAAt
CakDBAItCagDBAEtDgoDBAAtWF0wDAMEBE3ykAMEAE3ylAMEAE3ylwMEAFjRwQME
AFjRxAMEAFjR0AMEAFjR0gMEAljR1AMEAVjR9gMEA1w00AMEAFw02wMEA7L4yAME
AMGKfTAbBAIAAjAVAwUDKgAfQAMFAyoF9cADBQMqDPHAMA0GCSqGSIb3DQEBCwUA
A4IBAQDAwCHBrYdkfZL5jj1S+qaxPAepwM01tBIAB5dtBDYuLHLeS4nAXHYf37vV
9VP1arRN5zyR71fJSoPgOtCg0TMAB2kHkW9oX0CWL3sI8EStItlfQogqNiafwCRo
axKBYt5WbdBiaC33DqPkUZdAfSt8D/SeNqQ/fRm37cbDe9rEPKwL3lSXCXAfuqaf
XdsWuZ3trFOAHOQrSY0t8eZPQccS/QAzmrKrJH4MB5maBDopZSoO6E2hJKRmFcG0
ElEfZZtPwNXLmS0PiW2jMxMpI2szCAkF/0raYwG5bMQVM5C72ygbt6StQZ3bJp2Q
135iVsV6RAITZXgi35WAB+piGqDu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:28 2024 by rpki-client on console-fra.rpki-client.org