Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kITgR-JKDvtZVY1r0qwKImPD9hU.roa
File: kITgR-JKDvtZVY1r0qwKImPD9hU.roa (raw, json)
Hash identifier: 4YxuycwO1VhFkP0Rtq7jHgSS1NPNvZoH/eo3D/Hf69Q=
Subject key identifier: 90:84:E0:47:E2:4A:0E:FB:59:55:8D:6B:D2:AC:0A:22:63:C3:F6:15
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0191B19C184648D37AEFF7636A2FBCE4AA6C
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kITgR-JKDvtZVY1r0qwKImPD9hU.roa
Signing time: Mon 02 Sep 2024 07:21:22 +0000
ROA not before: Mon 02 Sep 2024 07:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25211
IP address blocks: 45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.153.0/24 maxlen: 24
78.159.154.0/24 maxlen: 24
78.159.155.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.76.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 07:29:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b1:9c:18:46:48:d3:7a:ef:f7:63:6a:2f:bc:e4:aa:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Sep 2 07:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9084e047e24a0efb59558d6bd2ac0a2263c3f615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:72:4b:fc:11:eb:3e:35:89:13:d6:5d:c5:67:
d0:7f:78:d9:f8:2c:7e:ac:f3:c9:e8:d3:fa:b8:e3:
09:ad:87:66:42:68:1d:ef:c7:26:86:42:94:d7:7f:
5d:c2:88:11:ca:2c:8c:04:8c:31:77:1d:1a:7c:8b:
e9:80:f0:f0:22:6d:81:e8:55:d8:58:f3:bf:6e:26:
be:88:54:8d:22:1e:9d:b4:24:db:94:ae:3f:89:9c:
61:6a:e3:c2:c4:0c:c6:5f:a1:de:33:7d:8e:90:24:
72:bf:3c:d7:3a:b8:f7:4a:35:7e:74:41:45:c4:9f:
a3:36:84:80:33:43:e3:c8:93:cf:54:f5:ad:e2:1c:
a8:c1:82:cf:fb:b9:8d:de:b5:b6:3c:81:ff:02:4f:
a0:d2:62:c5:6f:9d:6e:70:3d:08:01:44:71:5d:d5:
3a:a9:26:4c:e3:01:ea:88:fc:24:56:d9:1b:2a:2d:
18:af:a7:c7:6a:3e:e1:e8:3c:d0:f3:f6:8c:7e:3d:
0f:ca:b2:19:12:df:00:71:da:d6:f3:5d:0e:f1:73:
2f:9c:2d:f6:eb:7e:1c:3c:ce:77:1c:fb:90:29:13:
3f:48:1f:ff:02:af:eb:23:20:58:43:9c:ff:59:77:
47:c5:06:22:d6:2c:d1:13:95:97:a2:ad:fd:4b:7a:
9f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:84:E0:47:E2:4A:0E:FB:59:55:8D:6B:D2:AC:0A:22:63:C3:F6:15
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/kITgR-JKDvtZVY1r0qwKImPD9hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/22
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0-91.92.46.255
91.92.49.0-91.92.53.255
93.152.206.0/23
93.152.209.0-93.152.211.255
93.152.213.0-93.152.218.255
93.152.220.0-93.152.224.255
93.152.226.0/23
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0/24
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:4e:b0:c3:38:73:17:c6:67:8d:62:2d:4f:65:0f:4b:29:da:
71:70:1c:67:8e:fc:66:8c:43:63:87:c3:47:8b:db:ca:c9:21:
2c:8a:d1:2a:b2:83:58:e1:49:e7:fa:b2:cd:79:fd:5a:bf:70:
9b:a8:b5:68:71:19:20:8c:0c:c2:d4:e7:c5:7a:3c:fa:5d:74:
80:fa:99:8e:39:2d:c4:a8:58:92:31:ec:6c:d4:4f:36:89:ba:
f0:0a:8d:13:bd:6b:77:69:7b:18:c0:d3:84:2c:29:36:07:f1:
f0:20:9a:d9:bd:66:23:01:1d:46:e8:36:b0:07:54:ef:86:6d:
51:e9:55:c2:0f:a5:9a:40:30:df:8b:e9:62:57:7f:e2:c9:c5:
d8:70:f7:32:a1:df:c9:c4:6c:9c:48:de:19:d0:c5:23:21:54:
38:f4:a4:ec:96:0f:03:5f:20:3e:29:61:51:c6:0a:e1:91:f4:
cb:2e:9b:79:a2:a2:ef:c3:bb:03:85:d9:5d:58:18:3a:08:63:
4d:21:9b:65:b2:06:fe:6a:3f:c2:66:e4:30:7f:0b:f4:3f:f9:
e9:a2:b7:a5:53:7b:e0:4f:b4:43:2b:f9:b0:06:83:cc:3c:22:
e9:f1:8f:6a:c3:43:1b:e7:7e:1c:da:75:da:36:45:59:62:85:
e5:d0:89:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 09:06:26 2024 by rpki-client on console-fra.rpki-client.org