Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/iI19eDqPuh9YT_35a2OPfG7vgcE.roa
File: iI19eDqPuh9YT_35a2OPfG7vgcE.roa (raw, json)
Hash identifier: De7wO56UJiQTuk17SAzpDZew3Z1RAxRDrAX2uW5CBaM=
Subject key identifier: 88:8D:7D:78:3A:8F:BA:1F:58:4F:FD:F9:6B:63:8F:7C:6E:EF:81:C1
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0190FA5EF22855CF1AAB0DAB48D30345BE82
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/iI19eDqPuh9YT_35a2OPfG7vgcE.roa
Signing time: Sun 28 Jul 2024 17:24:04 +0000
ROA not before: Sun 28 Jul 2024 17:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25211
IP address blocks: 45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.153.0/24 maxlen: 24
78.159.154.0/24 maxlen: 24
78.159.155.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.76.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 12:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fa:5e:f2:28:55:cf:1a:ab:0d:ab:48:d3:03:45:be:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 28 17:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=888d7d783a8fba1f584ffdf96b638f7c6eef81c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f4:4a:d9:94:84:27:39:fc:20:c8:e4:b0:65:
69:ca:42:b0:af:67:43:7a:88:af:c5:f0:97:87:a7:
46:50:cd:75:01:1e:dc:ef:62:d3:78:b6:98:f8:52:
39:cd:18:31:a8:ec:d2:a0:1c:aa:3f:ef:64:c3:9c:
b7:79:44:45:6e:f5:98:43:d4:22:71:e6:4a:40:8d:
e5:5d:f1:d1:86:11:91:07:48:99:36:d8:98:f1:9b:
94:9d:02:9d:a8:23:a5:a0:63:8f:2f:e0:fe:b9:a5:
e1:e1:a9:a9:ca:80:66:27:0b:6e:d1:9c:74:e8:f9:
32:ee:53:e2:a4:55:a5:9a:64:e2:bb:bc:fb:2f:20:
9b:fb:b0:a5:b2:39:6f:e3:e9:ce:d3:71:c5:9c:97:
d5:49:8e:c4:b1:34:91:36:aa:2f:b1:08:ae:91:fb:
d4:4a:f4:eb:fc:d2:b0:30:33:7b:4a:2b:00:d2:bc:
4a:7a:f4:32:d2:4e:0f:42:4b:e8:37:90:78:38:be:
27:e7:0e:e9:61:13:49:b1:d4:48:0f:42:b9:16:a9:
78:85:b4:ff:99:cb:78:b5:58:45:cb:25:a5:c2:f8:
bd:c7:a9:a6:18:3a:af:51:26:e6:79:ea:14:99:27:
74:25:a7:d0:54:d6:d9:99:5e:90:5b:c5:8b:3e:41:
c6:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8D:7D:78:3A:8F:BA:1F:58:4F:FD:F9:6B:63:8F:7C:6E:EF:81:C1
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/iI19eDqPuh9YT_35a2OPfG7vgcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/23
45.141.235.0/24
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.34.255
91.92.40.0-91.92.46.255
91.92.49.0-91.92.53.255
93.152.206.0-93.152.211.255
93.152.213.0-93.152.218.255
93.152.220.0-93.152.224.255
93.152.226.0/23
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0/24
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d6:19:39:eb:56:00:88:ab:97:28:5f:ef:6b:be:11:ad:ae:
bb:61:86:41:99:fe:be:50:b8:51:1f:48:d3:68:cc:15:52:c4:
85:76:ce:5f:8c:5d:9d:a4:95:76:80:3c:3e:b9:f4:21:65:32:
9d:bd:05:c1:4e:e0:d3:cd:1c:90:cc:2e:cc:83:0b:84:28:da:
49:df:8c:48:20:ab:8d:b4:c9:c6:98:b4:4c:d8:fb:8c:71:83:
22:7b:cd:dd:02:22:62:fa:83:8d:6c:2d:e3:7d:92:49:f4:ca:
b1:b9:3e:79:34:3c:8e:d4:10:5a:dd:b6:d4:36:31:97:3d:a7:
61:d5:42:2d:60:42:42:0b:2a:5d:cf:bc:da:2c:b6:7a:d7:a4:
99:99:be:22:42:d8:ba:f0:24:82:3e:ed:95:1d:f2:13:bc:12:
ab:75:8c:8b:88:c1:c4:9f:6a:21:b8:00:94:45:c7:84:9d:cd:
52:b4:73:31:ed:63:22:9b:27:f0:4f:7c:62:ae:63:e2:8e:f0:
aa:e9:0b:97:6b:06:33:a5:70:0a:75:35:96:79:07:36:0e:a3:
9d:ba:c2:01:38:2a:06:41:c5:a3:1f:f0:24:9c:bd:97:c2:4a:
be:10:d1:67:e5:75:54:b3:ec:1f:1b:52:3b:56:e8:9a:ce:fb:
f3:ec:ca:c5
-----BEGIN CERTIFICATE-----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Generated at Mon Aug 5 14:56:18 2024 by rpki-client on console-fra.rpki-client.org