Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/uh92A7ov6_SkOXbtfpvpVrh8Fnw.roa
File: uh92A7ov6_SkOXbtfpvpVrh8Fnw.roa (raw, json)
Hash identifier: Ky98PaS2qCRnng2VF4Gd80Pzj13lx9DIVlz0rwgnNRk=
Subject key identifier: BA:1F:76:03:BA:2F:EB:F4:A4:39:76:ED:7E:9B:E9:56:B8:7C:16:7C
Certificate issuer: /CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Certificate serial: 018636A6D2C2713B4D1369A42F3490A392E2
Authority key identifier: 3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/uh92A7ov6_SkOXbtfpvpVrh8Fnw.roa
Signing time: Thu 09 Feb 2023 14:49:07 +0000
ROA not before: Thu 09 Feb 2023 14:49:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 45.153.16.0/24 maxlen: 24
45.153.16.0/22 maxlen: 22
45.153.17.0/24 maxlen: 24
45.153.19.0/24 maxlen: 24
45.153.18.0/24 maxlen: 24
185.31.246.0/24 maxlen: 24
185.31.244.0/22 maxlen: 22
185.31.244.0/24 maxlen: 24
185.31.245.0/24 maxlen: 24
185.31.247.0/24 maxlen: 24
45.146.208.0/22 maxlen: 22
45.146.208.0/24 maxlen: 24
45.146.209.0/24 maxlen: 24
45.146.210.0/24 maxlen: 24
45.146.211.0/24 maxlen: 24
178.22.57.0/24 maxlen: 24
178.22.56.0/21 maxlen: 21
178.22.58.0/24 maxlen: 24
178.22.56.0/24 maxlen: 24
178.22.60.0/24 maxlen: 24
178.22.61.0/24 maxlen: 24
178.22.59.0/24 maxlen: 24
178.22.62.0/24 maxlen: 24
178.22.63.0/24 maxlen: 24
2a00:1e28::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 10 Oct 2023 07:22:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:a6:d2:c2:71:3b:4d:13:69:a4:2f:34:90:a3:92:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3de49b1844fe4422afbe10cdd2819c7448277e65
Validity
Not Before: Feb 9 14:49:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba1f7603ba2febf4a43976ed7e9be956b87c167c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:21:d5:a4:c7:3b:cd:f9:5e:b4:cc:0c:6a:47:
ee:78:bf:28:a0:d5:55:a0:74:56:2e:9a:7d:48:07:
69:01:2b:88:3e:62:a8:bb:cf:a4:24:78:e6:9e:11:
50:7e:8d:30:66:f9:78:e9:8c:3c:14:24:7a:44:23:
db:20:e3:9a:1d:49:6f:60:6c:1e:d7:98:16:ab:61:
a8:37:1e:f4:50:c0:9e:5b:dd:1b:b7:73:58:5b:ca:
ce:3d:c9:9e:df:41:09:47:12:cf:65:7f:c4:c2:ff:
b8:ac:34:1c:5f:a3:8c:30:a9:ed:5b:16:05:97:64:
76:95:b1:fe:04:32:ec:1f:ec:b6:30:5c:d7:10:bd:
49:8d:b5:fc:7e:1a:13:7b:2c:84:7b:e2:37:08:26:
30:64:df:02:c1:ec:33:45:70:5b:4c:a8:11:91:35:
38:93:c7:cc:2f:39:d9:84:fd:bb:74:6b:81:cd:a2:
76:4f:0c:c7:9e:e4:35:0f:49:b2:14:f8:40:da:88:
58:fd:c8:82:f9:da:0d:05:e0:0f:a1:3c:c8:cf:ba:
49:f9:17:a9:2b:78:1e:77:b5:8e:fe:ec:d5:14:84:
52:fc:0a:ce:86:5f:55:cc:bb:4a:bc:f3:bc:11:c2:
5d:4a:58:cc:86:03:2f:bf:3a:de:9b:65:3f:36:79:
af:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1F:76:03:BA:2F:EB:F4:A4:39:76:ED:7E:9B:E9:56:B8:7C:16:7C
X509v3 Authority Key Identifier:
keyid:3D:E4:9B:18:44:FE:44:22:AF:BE:10:CD:D2:81:9C:74:48:27:7E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PeSbGET-RCKvvhDN0oGcdEgnfmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/uh92A7ov6_SkOXbtfpvpVrh8Fnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/81b188-255d-49c7-9f98-0ac9b4d7eab7/1/PeSbGET-RCKvvhDN0oGcdEgnfmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.208.0/22
45.153.16.0/22
178.22.56.0/21
185.31.244.0/22
IPv6:
2a00:1e28::/32
Signature Algorithm: sha256WithRSAEncryption
4c:0a:97:24:e2:e0:c8:84:bc:80:e8:a5:1e:3a:aa:00:fd:0c:
83:81:22:07:a2:c3:fa:80:b3:da:1c:6c:5c:61:ca:d5:e5:f5:
55:05:07:f1:82:1c:64:6c:d3:46:09:35:85:09:c0:dd:1f:95:
27:40:b1:58:cd:e1:70:b5:18:1d:74:4e:46:d2:68:65:24:cd:
19:7d:fa:17:d1:d8:2b:36:49:50:1d:4f:c2:f0:05:ab:fd:a3:
25:14:28:b2:53:11:00:c8:ea:0f:41:f9:1c:85:ad:c3:75:d9:
84:5d:48:f1:29:09:af:89:6a:e8:35:f7:9d:5b:db:77:ff:1d:
3a:ae:f9:5b:72:99:03:29:4c:e9:40:42:49:78:b0:d1:53:75:
82:b4:4a:bc:46:a5:81:0f:48:b9:40:00:c2:d4:8c:e6:c6:71:
ea:6e:72:b8:69:76:bb:84:ed:07:c2:0b:c1:ce:b6:15:df:78:
f5:33:5d:2a:cc:26:19:4d:19:02:89:86:a9:02:11:a1:21:51:
7e:a6:69:3f:b6:00:a5:fd:0b:0a:20:1b:49:9e:a7:30:34:c9:
c7:81:ac:ea:5e:fe:fe:2a:0e:e5:9b:ae:61:da:22:44:8c:71:
24:3a:a7:05:fa:81:1e:d2:83:20:47:e4:96:62:e4:63:03:9d:
89:d3:87:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:52 2024 by rpki-client on console-fra.rpki-client.org