Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rujKQ_1yzOUV7vg-_vBDSrGH4r0.roa
File: rujKQ_1yzOUV7vg-_vBDSrGH4r0.roa (raw, json)
Hash identifier: 9WHHBvNgDvVWXYN26b70h21rdAndGTZU4Uu2rrt08GQ=
Subject key identifier: AE:E8:CA:43:FD:72:CC:E5:15:EE:F8:3E:FE:F0:43:4A:B1:87:E2:BD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018FB9D963B4F325C44197354912F262E708
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rujKQ_1yzOUV7vg-_vBDSrGH4r0.roa
Signing time: Mon 27 May 2024 11:39:42 +0000
ROA not before: Mon 27 May 2024 11:39:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212552
IP address blocks: 45.146.241.0/24 maxlen: 24
46.249.98.0/23 maxlen: 24
46.249.100.0/22 maxlen: 24
46.249.111.0/24 maxlen: 24
82.115.13.0/24 maxlen: 24
82.115.16.0/24 maxlen: 24
82.115.17.0/24 maxlen: 24
82.115.18.0/24 maxlen: 24
82.115.19.0/24 maxlen: 24
82.115.20.0/23 maxlen: 24
82.115.24.0/22 maxlen: 24
89.251.8.0/23 maxlen: 24
103.75.196.0/22 maxlen: 24
185.80.196.0/24 maxlen: 24
185.215.244.0/23 maxlen: 24
193.36.84.0/23 maxlen: 24
202.133.88.0/24 maxlen: 24
202.133.89.0/24 maxlen: 24
202.133.90.0/24 maxlen: 24
212.90.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 07:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b9:d9:63:b4:f3:25:c4:41:97:35:49:12:f2:62:e7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: May 27 11:39:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aee8ca43fd72cce515eef83efef0434ab187e2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:80:5c:42:2a:5b:e4:92:9f:2c:ed:09:95:4b:
f2:f1:70:a7:35:79:bc:02:07:89:d8:cb:53:c6:b2:
40:47:4e:ae:26:4d:bc:7a:5d:fe:8a:9a:25:5a:28:
a8:28:ca:d1:79:8b:31:a3:e1:3e:1e:f7:9a:fd:8e:
7e:cf:3a:67:40:3d:5f:64:49:29:5c:e2:a0:77:ab:
2c:a7:74:35:36:e6:c6:c4:69:6b:30:e5:41:3b:ed:
f7:0c:d7:7f:18:e5:f0:bc:df:e4:b7:b2:51:29:e9:
5c:46:15:c1:20:c6:5e:8a:d9:03:f5:89:d0:9f:f2:
de:a1:c7:44:16:39:a8:99:17:7b:fc:ee:3b:d5:83:
d2:8f:db:b0:45:cc:95:56:3e:55:35:b8:ee:f0:7e:
d8:75:c9:13:46:a0:42:b8:b0:49:9f:e7:92:80:7a:
0a:06:63:ea:23:7d:23:85:9e:0a:dd:1a:dc:7a:bc:
04:32:27:d9:e6:0f:e9:45:57:a3:27:60:0b:a9:32:
5b:ca:78:33:bf:94:3f:bf:73:0d:7d:bd:38:14:eb:
78:5d:d2:ac:b8:9e:13:ba:5a:eb:8f:8f:3d:9a:0b:
51:d8:67:6a:e3:a9:3e:93:15:88:f0:a4:59:2b:0c:
2b:6b:de:9d:5f:42:b3:61:9f:ba:30:3e:e2:a8:44:
e3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E8:CA:43:FD:72:CC:E5:15:EE:F8:3E:FE:F0:43:4A:B1:87:E2:BD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/rujKQ_1yzOUV7vg-_vBDSrGH4r0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.241.0/24
46.249.98.0-46.249.103.255
46.249.111.0/24
82.115.13.0/24
82.115.16.0-82.115.21.255
82.115.24.0/22
89.251.8.0/23
103.75.196.0/22
185.80.196.0/24
185.215.244.0/23
193.36.84.0/23
202.133.88.0-202.133.90.255
212.90.102.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:81:ca:31:39:dd:a2:96:32:3b:66:c7:d5:2a:39:53:ac:e5:
db:00:92:97:d5:11:5b:7c:a4:42:c4:2a:e8:15:1c:88:ac:ef:
a4:a9:77:ee:3a:01:75:54:62:d1:e9:33:5d:41:8d:3b:45:c6:
f5:48:8b:f7:24:b8:a8:ec:96:96:b5:73:9f:bf:c3:8d:35:a2:
a5:e3:62:b4:0c:c2:35:8f:db:a3:c5:ec:3c:af:6b:9e:a0:11:
4b:38:75:53:99:65:e4:c7:03:32:41:83:8d:11:01:1c:f6:f6:
70:53:37:d4:3b:8d:16:b0:9b:cd:10:eb:f2:ca:9c:cd:f9:d8:
b0:54:37:eb:ce:cb:60:b8:70:ee:55:07:86:d8:4c:26:a0:92:
23:d2:67:1b:4f:9b:6f:64:66:4b:86:df:50:77:0a:13:d9:04:
3f:dd:1f:b3:6c:f1:bc:e6:33:c0:47:a3:a4:4e:14:a2:0c:ba:
50:bb:d6:f4:37:f4:0f:a8:3f:b4:a9:ec:19:72:77:65:60:07:
fb:38:23:7a:03:ca:c5:b8:94:2d:91:b5:17:42:44:07:87:17:
4b:31:46:47:73:60:b5:3e:41:1f:38:2c:62:29:7c:ce:8d:50:
3c:8d:d6:04:eb:2a:13:5b:f2:46:6d:1b:15:8a:18:24:d4:c7:
88:75:70:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org