Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/84942f-721f-4234-88c1-dbf3969ca75f/1/mBFJqsKO0o-Hj7nX3mFdrnWYp7Y.roa
File: mBFJqsKO0o-Hj7nX3mFdrnWYp7Y.roa (raw, json)
Hash identifier: hzdVdt3Th4cmmdcVYGG7lNXbgG+4GOO/GCkRLtFxhCs=
Subject key identifier: 98:11:49:AA:C2:8E:D2:8F:87:8F:B9:D7:DE:61:5D:AE:75:98:A7:B6
Certificate issuer: /CN=c0b8bb485eba392b80c3166929b7fcb958f449bc
Certificate serial: 018D8E3672F777D5CA604CF6E3A83F5B496F
Authority key identifier: C0:B8:BB:48:5E:BA:39:2B:80:C3:16:69:29:B7:FC:B9:58:F4:49:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wLi7SF66OSuAwxZpKbf8uVj0Sbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/84942f-721f-4234-88c1-dbf3969ca75f/1/mBFJqsKO0o-Hj7nX3mFdrnWYp7Y.roa
Signing time: Fri 09 Feb 2024 14:12:29 +0000
ROA not before: Fri 09 Feb 2024 14:12:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208175
IP address blocks: 185.245.28.0/24 maxlen: 24
185.245.29.0/24 maxlen: 24
185.245.30.0/24 maxlen: 24
185.245.31.0/24 maxlen: 24
2a09:1500::/48 maxlen: 48
2a09:1500:8::/48 maxlen: 48
2a09:1500:13::/48 maxlen: 48
2a09:1500:20::/48 maxlen: 48
2a09:1500:1000::/40 maxlen: 40
2a09:1500:2000::/40 maxlen: 40
2a09:1500:2400::/40 maxlen: 40
2a09:1500:3400::/40 maxlen: 40
2a09:1500:4600::/40 maxlen: 40
2a09:1500:5400::/40 maxlen: 40
2a09:1500:5600::/40 maxlen: 40
2a09:1500:5800::/40 maxlen: 40
2a09:1500:6600::/40 maxlen: 40
2a09:1500:7000::/40 maxlen: 40
2a09:1501::/48 maxlen: 48
2a09:1501:3000::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 09 Feb 2024 16:35:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8e:36:72:f7:77:d5:ca:60:4c:f6:e3:a8:3f:5b:49:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0b8bb485eba392b80c3166929b7fcb958f449bc
Validity
Not Before: Feb 9 14:12:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=981149aac28ed28f878fb9d7de615dae7598a7b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c0:fb:ac:e9:dd:e3:96:2b:70:78:c9:7d:4b:
e2:d0:f0:0e:01:68:ea:1c:d7:69:d5:3e:4f:e4:33:
ae:8a:fc:ed:11:46:70:fc:1f:28:a8:26:2b:27:65:
cd:62:f2:ac:1b:76:c6:8a:9a:60:0a:02:74:9e:5f:
7d:2d:89:02:f7:dd:f7:09:11:e8:3c:68:96:04:66:
00:43:00:13:a2:06:1d:5a:a7:82:cd:23:b0:97:36:
9e:d4:9d:1c:73:69:45:45:d9:b4:d0:01:c2:95:34:
8f:73:23:73:80:94:9e:25:f2:16:82:16:dc:2b:44:
59:bb:14:3a:a4:b5:2e:98:51:a1:b4:44:1b:2d:cd:
00:f5:ce:5f:db:e6:22:64:75:cc:c1:ce:af:66:88:
d4:c9:aa:aa:15:11:b9:99:e4:c7:5e:78:16:cf:b3:
b7:db:4a:b6:ec:0d:9c:35:a8:56:95:e4:e2:ff:b1:
48:08:cd:f2:13:2a:18:2e:be:eb:10:66:d9:55:9c:
ae:fd:27:ed:03:3e:7d:e9:cf:3c:26:27:cf:a9:f5:
58:cb:b1:65:f0:3b:f2:f3:6e:9f:b8:a8:55:12:99:
f0:59:7a:c7:8f:f9:8d:f3:2d:be:97:a1:15:78:0f:
7b:96:08:36:17:b0:95:f7:13:50:10:ee:15:27:c0:
eb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:11:49:AA:C2:8E:D2:8F:87:8F:B9:D7:DE:61:5D:AE:75:98:A7:B6
X509v3 Authority Key Identifier:
keyid:C0:B8:BB:48:5E:BA:39:2B:80:C3:16:69:29:B7:FC:B9:58:F4:49:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wLi7SF66OSuAwxZpKbf8uVj0Sbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/84942f-721f-4234-88c1-dbf3969ca75f/1/mBFJqsKO0o-Hj7nX3mFdrnWYp7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/84942f-721f-4234-88c1-dbf3969ca75f/1/wLi7SF66OSuAwxZpKbf8uVj0Sbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.28.0/22
IPv6:
2a09:1500::/48
2a09:1500:8::/48
2a09:1500:13::/48
2a09:1500:20::/48
2a09:1500:1000::/40
2a09:1500:2000::/40
2a09:1500:2400::/40
2a09:1500:3400::/40
2a09:1500:4600::/40
2a09:1500:5400::/40
2a09:1500:5600::/40
2a09:1500:5800::/40
2a09:1500:6600::/40
2a09:1500:7000::/40
2a09:1501::/48
2a09:1501:3000::/40
Signature Algorithm: sha256WithRSAEncryption
73:3d:25:e3:63:da:47:16:6c:73:e0:0c:fd:0d:10:29:fa:84:
2d:34:e7:29:0a:83:7b:c1:d7:06:97:3d:19:1b:e6:45:e0:52:
30:04:c5:c7:71:17:dd:04:81:cd:9b:41:e7:7a:61:e1:65:a4:
51:4a:32:7b:fc:f1:ad:84:8a:de:76:06:14:7f:fb:28:02:cc:
c7:b6:b4:9a:16:f9:10:55:bc:b1:cb:14:c5:35:44:ef:eb:6a:
e2:78:86:cf:6f:b8:a1:25:20:6e:94:20:18:4b:d3:c9:1f:06:
2d:e4:a2:1a:e6:cd:fd:dc:4b:03:3f:13:ba:e6:cf:30:32:3d:
fc:12:18:f7:23:46:87:11:a9:89:f2:ce:21:df:bd:17:f1:16:
e1:1a:db:21:48:03:71:82:c1:14:e2:ac:ad:8a:a0:f3:71:8f:
ec:0b:d6:22:94:26:38:7d:4e:2e:71:eb:27:9b:f2:bb:1a:5a:
a5:7e:3d:75:0b:65:24:fc:3b:9e:32:9a:4e:d5:2e:bd:eb:7e:
84:49:0f:f6:fd:12:78:3b:58:d5:ef:32:c6:2f:3f:7b:53:9f:
e1:e9:7c:fe:e1:ba:f7:ea:43:9e:d6:d4:9c:e4:9a:e4:de:19:
5d:4d:7d:76:0a:cd:2e:65:50:e7:f2:7e:89:1d:44:4d:59:05:
a4:96:b8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:12 2024 by rpki-client on console-fra.rpki-client.org