Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/e4pUf4ZROD5-MqZvMc5ke0qF1qE.roa
File: e4pUf4ZROD5-MqZvMc5ke0qF1qE.roa (raw, json)
Hash identifier: NtIAgjCR0TYuKEGxFViJtz9FndWlZrrOGMjFpTCfaSs=
Subject key identifier: 7B:8A:54:7F:86:51:38:3E:7E:32:A6:6F:31:CE:64:7B:4A:85:D6:A1
Certificate issuer: /CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Certificate serial: 018635916C02C84D96A464A18F46374CF3FE
Authority key identifier: 3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/e4pUf4ZROD5-MqZvMc5ke0qF1qE.roa
Signing time: Thu 09 Feb 2023 09:46:08 +0000
ROA not before: Thu 09 Feb 2023 09:46:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 45.146.210.0/24 maxlen: 24
45.146.211.0/24 maxlen: 24
45.146.208.0/22 maxlen: 22
45.146.208.0/24 maxlen: 24
45.146.209.0/24 maxlen: 24
45.153.17.0/24 maxlen: 24
45.153.16.0/24 maxlen: 24
45.153.16.0/22 maxlen: 22
45.153.19.0/24 maxlen: 24
45.153.18.0/24 maxlen: 24
185.31.246.0/24 maxlen: 24
185.31.244.0/22 maxlen: 22
185.31.244.0/24 maxlen: 24
185.31.245.0/24 maxlen: 24
185.31.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 14:35:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:91:6c:02:c8:4d:96:a4:64:a1:8f:46:37:4c:f3:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Validity
Not Before: Feb 9 09:46:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b8a547f8651383e7e32a66f31ce647b4a85d6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8d:98:5a:c0:29:8b:ca:be:40:b0:b6:93:bb:
91:f5:7a:43:81:56:63:82:19:07:b6:91:79:27:66:
6b:04:15:d7:59:29:32:66:b3:b9:5e:d5:4a:a6:e0:
aa:6d:a1:85:a8:00:1d:8c:97:8f:a4:33:b2:5b:04:
82:c4:5a:ef:d9:aa:b2:85:61:07:a7:14:32:5c:56:
1b:9c:73:56:11:6c:3b:f7:24:e5:4c:3c:28:9e:4e:
ec:58:08:00:c3:fc:a5:e5:a7:8a:02:4b:ed:00:8c:
ec:ee:6a:7d:93:cf:7f:3c:11:99:db:56:d8:5e:bc:
f4:ac:9c:59:2b:42:ac:4d:47:56:6a:89:82:63:4a:
50:cb:56:ac:09:06:15:87:2a:a7:ef:7b:34:7a:f3:
90:ea:c6:7e:f9:5e:19:69:29:77:b8:41:80:d0:14:
ec:5e:32:52:5b:2b:16:1d:7f:06:cc:3c:13:49:76:
56:40:8d:b5:35:e3:da:10:b8:fb:0e:29:1f:cd:32:
3d:85:1a:76:31:09:39:6c:50:dd:b6:2b:a6:56:75:
cb:c6:80:89:d6:55:8f:22:58:e2:b4:1f:77:e7:62:
31:fa:bf:f3:f2:1c:0e:4d:73:70:4e:60:a8:34:9d:
8d:e5:47:cd:12:1b:7f:6c:c0:9c:9d:52:44:fe:ed:
72:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8A:54:7F:86:51:38:3E:7E:32:A6:6F:31:CE:64:7B:4A:85:D6:A1
X509v3 Authority Key Identifier:
keyid:3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/e4pUf4ZROD5-MqZvMc5ke0qF1qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.208.0/22
45.153.16.0/22
185.31.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:1a:a0:ec:16:7a:c2:44:cd:1c:36:fb:0f:15:04:48:67:ea:
d2:7e:e3:74:3e:49:80:11:d1:86:43:04:95:29:81:45:9d:7b:
7d:40:87:4e:cc:00:60:7c:51:5a:48:3f:5a:05:85:3e:5d:45:
50:34:22:4a:ec:2b:9c:65:59:80:84:0b:3f:28:73:ff:ee:5e:
98:02:d2:e1:a1:0a:2b:6e:5e:bd:51:a8:86:e7:76:20:40:83:
f0:1b:0d:bc:fd:22:4c:1f:5e:63:a5:8e:c3:b9:62:6e:a4:91:
b6:10:01:97:39:68:37:01:11:c5:64:3a:5a:78:2e:01:9d:c6:
bc:97:4e:31:e5:7d:45:17:b3:13:0d:df:78:31:22:7f:9c:af:
65:fb:a4:8d:49:01:05:64:51:9a:1a:69:65:4b:37:12:8b:e5:
76:8f:eb:46:ab:0b:68:2c:66:f2:b8:87:57:be:65:94:a5:b9:
27:ec:3c:96:14:0b:ba:7d:4e:ad:b2:a0:d0:4a:e9:c7:62:d7:
13:cf:5f:97:eb:01:d4:20:8b:fd:1f:b0:9b:36:5d:1a:b9:fc:
ce:a5:dc:fb:8b:79:78:ad:a1:e4:49:e1:03:08:28:bd:b6:bb:
78:6d:50:fc:74:fe:51:2a:1d:56:9b:37:6e:57:ac:98:97:eb:
86:f5:78:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:52 2024 by rpki-client on console-fra.rpki-client.org