Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/l6_djIa_1xsgif_st-DS_OEgRFY.roa
File: l6_djIa_1xsgif_st-DS_OEgRFY.roa (raw, json)
Hash identifier: KwNG6QPO7N70JkOXtH2ZnLnOprFAmKRuTamqArm/OTk=
Subject key identifier: 97:AF:DD:8C:86:BF:D7:1B:20:89:FF:EC:B7:E0:D2:FC:E1:20:44:56
Certificate issuer: /CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Certificate serial: 018B1877A4789F3869CEEF811110C74C5DD6
Authority key identifier: 3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/l6_djIa_1xsgif_st-DS_OEgRFY.roa
Signing time: Tue 10 Oct 2023 07:22:55 +0000
ROA not before: Tue 10 Oct 2023 07:22:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 45.153.16.0/24 maxlen: 24
45.153.16.0/23 maxlen: 23
45.153.16.0/22 maxlen: 22
45.153.17.0/24 maxlen: 24
45.153.19.0/24 maxlen: 24
45.153.18.0/24 maxlen: 24
185.31.246.0/24 maxlen: 24
185.31.244.0/22 maxlen: 22
185.31.244.0/24 maxlen: 24
185.31.245.0/24 maxlen: 24
185.31.247.0/24 maxlen: 24
45.146.208.0/22 maxlen: 22
45.146.208.0/24 maxlen: 24
45.146.209.0/24 maxlen: 24
45.146.210.0/24 maxlen: 24
45.146.211.0/24 maxlen: 24
178.22.57.0/24 maxlen: 24
178.22.56.0/21 maxlen: 21
178.22.58.0/24 maxlen: 24
178.22.56.0/24 maxlen: 24
178.22.60.0/24 maxlen: 24
178.22.61.0/24 maxlen: 24
178.22.59.0/24 maxlen: 24
178.22.62.0/24 maxlen: 24
178.22.63.0/24 maxlen: 24
2a00:1e28::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 27 Oct 2023 12:05:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:77:a4:78:9f:38:69:ce:ef:81:11:10:c7:4c:5d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Validity
Not Before: Oct 10 07:22:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97afdd8c86bfd71b2089ffecb7e0d2fce1204456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:12:77:33:f4:23:90:0e:ef:7c:59:d4:17:
70:13:81:64:92:a1:d0:be:95:11:aa:2c:86:80:37:
07:42:d9:87:e1:f5:61:a2:a1:d3:0d:b0:8d:ac:1d:
f5:7a:90:28:74:1f:d0:c3:2a:8f:85:48:e1:c7:13:
80:b4:64:cf:19:27:c6:f5:39:ac:b9:d4:65:87:c6:
31:ff:61:be:8a:3f:a7:75:26:f6:ba:f7:67:16:68:
33:21:c8:3b:4e:63:23:e6:d0:af:82:e4:2f:07:ce:
b6:2e:8a:6a:e4:8d:79:83:1b:69:a7:58:42:af:4e:
22:3b:2c:ff:24:9a:96:03:8c:c7:52:bf:84:cd:c8:
bd:82:40:54:62:22:88:f0:ff:5a:0e:ca:1c:8d:22:
f7:8c:36:82:5c:ab:12:84:a9:5c:1b:4d:af:92:b3:
2c:58:09:57:5a:95:d3:94:9d:36:6c:82:1c:c9:e1:
d5:ba:ce:f6:ec:34:31:c5:96:9a:de:01:31:3d:01:
74:f7:00:89:91:40:39:52:33:4d:8b:58:e5:a1:e2:
a9:b3:f3:6b:ed:67:f7:3c:f9:e4:9d:0c:79:56:42:
a5:a7:12:23:3e:dd:13:01:1a:77:58:76:31:bb:a9:
49:a7:dd:2f:d3:26:c6:f9:ec:87:45:59:48:96:1b:
20:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AF:DD:8C:86:BF:D7:1B:20:89:FF:EC:B7:E0:D2:FC:E1:20:44:56
X509v3 Authority Key Identifier:
keyid:3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/l6_djIa_1xsgif_st-DS_OEgRFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.208.0/22
45.153.16.0/22
178.22.56.0/21
185.31.244.0/22
IPv6:
2a00:1e28::/32
Signature Algorithm: sha256WithRSAEncryption
39:10:96:0c:47:89:08:b8:b0:a8:e4:3f:5b:a5:8e:76:20:98:
3f:03:73:e2:4f:95:47:06:be:b5:7d:d0:00:e0:9d:1d:1c:41:
41:98:f8:f6:96:40:2b:07:d5:4d:6f:00:f9:c8:cb:15:92:b1:
57:ce:0e:e7:d8:cf:ab:ab:20:bc:3b:26:f5:e3:3b:20:7d:32:
bd:75:fe:23:4c:55:d6:d6:c4:11:05:06:fd:3b:ff:5d:28:8e:
be:af:69:64:2c:5b:a8:9e:f7:7c:16:60:36:11:ad:dd:c0:ac:
92:f0:36:8f:6c:4a:bf:af:85:35:37:df:88:c7:12:00:0d:bd:
1f:37:e9:a8:c7:b8:42:24:dd:63:89:ff:42:fa:3b:3e:55:30:
f0:1f:e0:06:4a:1c:e0:c3:df:41:e0:dc:ea:7f:2b:4b:a3:f7:
77:eb:9e:0c:06:ac:94:82:e0:4f:6f:63:1e:49:88:de:5d:6d:
f9:08:4f:66:13:ef:ac:26:4d:ea:d3:24:66:a8:c1:4a:22:ab:
ac:fe:d0:2c:e2:80:27:c1:8a:6e:cf:54:67:8a:12:40:ff:eb:
08:10:cd:6c:8c:1e:ba:58:ac:43:25:10:4f:d1:01:c5:d3:e9:
58:88:4b:c0:96:b5:8e:c3:b2:ba:ec:07:13:6f:46:0b:f3:7c:
d0:b8:05:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:12 2024 by rpki-client on console-ams.rpki-client.org