Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ncveJC65lyZykvJlATnFTKYfCXY.roa
File: ncveJC65lyZykvJlATnFTKYfCXY.roa (raw, json)
Hash identifier: mZ3jCDM14ZV57gX8K+n67K/OssLh63zfE3kgzWt6VkM=
Subject key identifier: 9D:CB:DE:24:2E:B9:97:26:72:92:F2:65:01:39:C5:4C:A6:1F:09:76
Certificate issuer: /CN=e8bd0d9aa8c743cda182f00668583a46e600c32d
Certificate serial: 0187D7CBB985499194AC1FFA8D640A10BC48
Authority key identifier: E8:BD:0D:9A:A8:C7:43:CD:A1:82:F0:06:68:58:3A:46:E6:00:C3:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6L0NmqjHQ82hgvAGaFg6RuYAwy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ncveJC65lyZykvJlATnFTKYfCXY.roa
Signing time: Mon 01 May 2023 14:51:05 +0000
ROA not before: Mon 01 May 2023 14:51:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208770
IP address blocks: 45.151.24.0/22 maxlen: 22
45.151.24.0/24 maxlen: 24
45.151.24.0/23 maxlen: 23
45.151.27.0/24 maxlen: 24
45.151.25.0/24 maxlen: 24
45.151.26.0/23 maxlen: 23
45.151.26.0/24 maxlen: 24
195.80.32.0/22 maxlen: 24
45.145.76.0/24 maxlen: 24
45.145.77.0/24 maxlen: 24
45.145.78.0/24 maxlen: 24
45.145.76.0/22 maxlen: 22
45.145.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 07:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:cb:b9:85:49:91:94:ac:1f:fa:8d:64:0a:10:bc:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8bd0d9aa8c743cda182f00668583a46e600c32d
Validity
Not Before: May 1 14:51:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9dcbde242eb997267292f2650139c54ca61f0976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:59:fb:f0:f9:ea:68:93:ec:07:71:f9:c2:16:
85:84:6e:3c:49:1b:c2:68:2c:37:23:78:1c:de:9d:
89:d5:76:bf:cf:3f:11:8a:a2:16:f7:74:42:51:2f:
c4:4e:f9:c5:82:f8:c3:e0:a6:61:36:99:4a:a6:86:
36:2e:a9:c4:e6:bc:b4:65:c6:48:e0:c6:35:6e:b4:
55:1e:72:95:7e:33:81:6f:38:59:e2:08:51:3d:7e:
6a:3c:7f:de:27:1f:1a:9a:30:af:65:8c:73:1c:72:
38:b2:50:fd:7a:45:94:17:ff:55:08:b4:11:f2:65:
4c:19:24:3c:2f:7f:b1:ff:57:ad:16:0b:76:a4:93:
f3:be:ea:58:e4:88:ea:0a:7a:eb:c1:21:76:ec:7e:
64:88:af:ce:60:5e:71:d0:b7:04:a0:eb:12:18:8f:
16:1b:90:bd:d0:d0:54:ee:b5:aa:6d:ae:51:eb:94:
67:80:a7:3a:b2:3e:ec:92:29:ca:68:87:20:4a:ed:
6f:ac:97:85:e1:43:d6:b4:fc:ce:7e:a8:c5:4a:4f:
4d:bd:cf:80:13:bc:38:3c:20:ec:d6:37:63:2c:45:
b2:1b:06:77:22:68:98:8d:5b:9e:b1:af:ee:4d:5a:
51:d6:f0:55:91:c3:da:a9:2d:fb:55:83:cd:29:6f:
5c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:CB:DE:24:2E:B9:97:26:72:92:F2:65:01:39:C5:4C:A6:1F:09:76
X509v3 Authority Key Identifier:
keyid:E8:BD:0D:9A:A8:C7:43:CD:A1:82:F0:06:68:58:3A:46:E6:00:C3:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6L0NmqjHQ82hgvAGaFg6RuYAwy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ncveJC65lyZykvJlATnFTKYfCXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/6L0NmqjHQ82hgvAGaFg6RuYAwy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.76.0/22
45.151.24.0/22
195.80.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:72:2d:24:8e:2d:71:11:9f:fd:10:f8:07:19:04:54:0e:d5:
d8:0f:e8:15:e5:44:53:88:7d:4d:f1:ed:76:a6:98:d2:9a:ca:
a8:d8:61:b6:4c:d6:a0:70:24:76:63:09:a7:d9:73:6b:b2:bf:
55:da:f9:81:b9:e7:89:a0:d1:2e:7b:fb:ad:43:dc:27:92:f2:
64:35:6e:a8:2f:ef:5d:56:23:38:ec:ee:a1:be:ed:f4:e0:ee:
f0:e8:bd:a2:97:3a:c3:3c:25:b6:40:bb:b1:33:63:82:6f:30:
90:18:a7:97:6f:72:44:08:3b:19:2b:37:b2:a8:1a:bd:63:6b:
c3:b1:1f:84:fa:ca:00:ce:8d:b5:8a:dd:ff:1b:dd:39:0c:20:
01:12:57:c4:0b:17:8d:24:3c:50:4e:f8:27:6e:83:9c:e9:34:
fa:cb:ea:7d:af:df:5a:92:73:6b:d6:58:1a:18:95:b0:76:cb:
95:9f:b6:84:84:3f:59:98:59:23:02:0b:f1:1b:00:a4:be:8e:
c8:25:1b:90:85:d1:02:a3:89:b1:93:cb:d9:ae:4f:8f:d1:23:
e9:9d:b9:f1:8e:e2:27:c8:bd:ab:40:86:b6:44:33:00:0f:5e:
ab:35:4c:5b:b3:80:a7:f7:6d:ab:e4:0b:b3:c3:57:cc:fa:8c:
53:cb:d8:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:06 2024 by rpki-client on console-fra.rpki-client.org