Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/oRiAVwMC6qBkJLyDxVUHWs4ndCE.roa
File: oRiAVwMC6qBkJLyDxVUHWs4ndCE.roa (raw, json)
Hash identifier: ts/I7bYoQ0AX8hPfMrB36vnwee3gDOA+9yWU3/K7Pec=
Subject key identifier: A1:18:80:57:03:02:EA:A0:64:24:BC:83:C5:55:07:5A:CE:27:74:21
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 01905866ECF72AC986B6F75313818AD5BF5E
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/oRiAVwMC6qBkJLyDxVUHWs4ndCE.roa
Signing time: Thu 27 Jun 2024 06:34:18 +0000
ROA not before: Thu 27 Jun 2024 06:34:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25211
IP address blocks: 45.141.232.0/24 maxlen: 24
45.141.233.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.128.0/24 maxlen: 24
78.159.129.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
78.159.136.0/24 maxlen: 24
78.159.137.0/24 maxlen: 24
78.159.138.0/24 maxlen: 24
78.159.139.0/24 maxlen: 24
78.159.149.0/24 maxlen: 24
78.159.150.0/24 maxlen: 24
78.159.152.0/22 maxlen: 22
78.159.153.0/24 maxlen: 24
78.159.154.0/24 maxlen: 24
78.159.155.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
78.159.157.0/24 maxlen: 24
78.159.158.0/24 maxlen: 24
78.159.159.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.40.0/24 maxlen: 24
91.92.41.0/24 maxlen: 24
91.92.42.0/24 maxlen: 24
91.92.43.0/24 maxlen: 24
91.92.44.0/24 maxlen: 24
91.92.45.0/24 maxlen: 24
91.92.46.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
91.92.50.0/24 maxlen: 24
91.92.51.0/24 maxlen: 24
91.92.52.0/24 maxlen: 24
91.92.53.0/24 maxlen: 24
93.152.206.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
93.152.211.0/24 maxlen: 24
93.152.213.0/24 maxlen: 24
93.152.214.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.216.0/24 maxlen: 24
93.152.217.0/24 maxlen: 24
93.152.218.0/24 maxlen: 24
93.152.220.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.222.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
93.152.226.0/24 maxlen: 24
93.152.227.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
94.26.28.0/24 maxlen: 24
94.26.29.0/24 maxlen: 24
94.26.76.0/22 maxlen: 22
94.26.76.0/24 maxlen: 24
94.26.77.0/24 maxlen: 24
94.26.78.0/24 maxlen: 24
94.26.79.0/24 maxlen: 24
94.26.89.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
185.96.252.0/24 maxlen: 24
185.96.253.0/24 maxlen: 24
185.96.255.0/24 maxlen: 24
212.102.105.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Jul 2024 17:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:66:ec:f7:2a:c9:86:b6:f7:53:13:81:8a:d5:bf:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jun 27 06:34:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a11880570302eaa06424bc83c555075ace277421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:98:f6:b9:72:3b:0b:7f:1c:6d:97:89:4e:
f9:24:0b:2e:5c:07:4a:b6:30:46:be:0a:b0:dd:50:
ab:ff:ef:79:90:bc:c8:6b:dc:67:64:51:28:4c:6f:
8c:ec:68:8a:08:6a:f8:2c:82:62:40:11:8e:5c:0c:
95:28:23:97:3e:bf:c9:92:00:75:24:97:9c:76:56:
20:40:e7:bd:74:20:9e:64:05:7e:bd:0f:97:45:57:
12:7c:05:23:92:ed:02:28:0d:3c:c5:68:7f:e0:85:
24:40:0e:fe:7c:2d:25:bc:a8:95:f2:f5:49:c8:c5:
c1:1e:f2:5b:c7:78:8a:74:70:a6:de:d0:4b:46:98:
ed:32:b5:3b:bd:3f:5c:5c:17:4b:29:77:1c:06:9c:
17:db:35:3e:5b:17:1d:09:89:a6:3d:05:82:b6:a0:
e2:78:24:1e:f4:c1:3b:60:dc:71:50:02:bb:33:b4:
1a:4b:e8:b9:17:e3:20:f8:b9:e9:10:4d:f4:1a:94:
f9:53:87:c8:b8:a9:07:c2:a2:d8:d2:aa:52:3c:58:
db:a7:1d:5f:ac:24:6b:7f:d1:66:c6:71:3d:88:93:
e3:63:e3:2c:a7:1a:0d:74:d2:27:d4:20:4e:8d:96:
d4:b8:b5:01:25:28:b7:57:0d:88:e8:1a:c3:ad:20:
6b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:18:80:57:03:02:EA:A0:64:24:BC:83:C5:55:07:5A:CE:27:74:21
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/oRiAVwMC6qBkJLyDxVUHWs4ndCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/22
78.159.128.0/23
78.159.131.0/24
78.159.136.0/22
78.159.149.0-78.159.150.255
78.159.152.0/21
91.92.33.0-91.92.35.255
91.92.40.0-91.92.46.255
91.92.49.0-91.92.53.255
93.152.206.0-93.152.211.255
93.152.213.0-93.152.218.255
93.152.220.0-93.152.224.255
93.152.226.0/23
93.152.230.0/24
94.26.28.0/23
94.26.76.0/22
94.26.89.0/24
94.190.195.0/24
185.96.252.0/23
185.96.255.0/24
212.102.105.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
54:c0:05:e3:ed:6b:55:c8:8d:14:e6:63:e5:95:45:99:50:76:
44:6e:20:21:8f:96:38:d5:fc:9b:cc:2f:4c:68:c8:91:22:ab:
f0:b3:ab:6c:68:cd:25:fd:54:43:54:28:b7:02:d4:14:40:14:
c3:28:b1:0e:45:67:b4:fc:d3:f2:5a:a5:df:1b:d4:14:ba:d4:
79:b9:f1:2c:05:89:8e:10:98:60:56:cf:6a:4a:07:91:b8:d4:
b2:da:ea:60:c9:dd:54:18:7e:d9:df:07:5c:0d:16:1f:9b:4b:
c7:ed:13:d4:77:5d:c3:1e:bf:cd:6d:9c:7f:e7:ae:ac:6a:38:
6d:20:07:ba:81:8a:e1:3b:1b:d4:76:2e:32:30:92:60:5d:f8:
a1:0c:e5:48:bb:3e:98:12:a2:e8:b8:29:d6:da:16:c9:1a:c9:
4a:14:16:9a:98:a7:a5:52:bd:07:95:53:1a:03:d9:c8:72:45:
57:51:f5:fa:c1:3f:fb:f4:78:ec:05:34:d3:fc:bd:8c:07:21:
73:dd:33:56:24:c6:bb:e0:8f:4c:e5:5b:aa:49:3e:3d:77:c3:
fd:75:5c:9a:5e:26:2b:46:bd:b9:00:36:66:c4:23:74:9e:90:
6a:34:4d:49:c9:bd:93:a6:e8:5e:e3:bc:7b:4a:f5:1b:68:58:
e1:51:99:05
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 28 18:58:24 2024 by rpki-client on console-fra.rpki-client.org