Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/FyVi-bYzIg8yUA8DLfDD0z3GrL8.roa
File: FyVi-bYzIg8yUA8DLfDD0z3GrL8.roa (raw, json)
Hash identifier: FuTfY7649rNr3xUoqWLaRBoTGUAdpIVL7CSBAfn2PZ4=
Subject key identifier: 17:25:62:F9:B6:33:22:0F:32:50:0F:03:2D:F0:C3:D3:3D:C6:AC:BF
Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Certificate serial: 01856F1DBA39691E540760A8CE0EC1698350
Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/FyVi-bYzIg8yUA8DLfDD0z3GrL8.roa
Signing time: Sun 01 Jan 2023 20:54:57 +0000
ROA not before: Sun 01 Jan 2023 20:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205199
IP address blocks: 194.35.182.0/24 maxlen: 24
194.35.95.0/24 maxlen: 24
194.35.92.0/24 maxlen: 24
193.43.14.0/24 maxlen: 24
193.43.28.0/24 maxlen: 24
193.43.37.0/24 maxlen: 24
45.136.156.0/22 maxlen: 22
185.157.168.0/22 maxlen: 22
45.150.160.0/22 maxlen: 22
193.42.219.0/24 maxlen: 24
194.35.78.0/24 maxlen: 24
185.241.172.0/22 maxlen: 22
45.138.140.0/22 maxlen: 22
45.144.116.0/22 maxlen: 22
194.147.242.0/23 maxlen: 23
45.134.120.0/22 maxlen: 22
194.147.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:ba:39:69:1e:54:07:60:a8:ce:0e:c1:69:83:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab
Validity
Not Before: Jan 1 20:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=172562f9b633220f32500f032df0c3d33dc6acbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:7b:96:72:10:2f:6c:a2:01:5a:50:09:d6:
59:50:23:06:e6:c3:35:21:f9:b4:7f:cf:d1:be:29:
dc:23:a4:1a:51:81:19:03:53:9a:bb:7f:64:2b:c2:
6d:c5:35:26:cd:d6:0e:a4:79:32:d7:8b:98:df:07:
bc:f1:78:09:30:a0:39:97:20:b2:e8:c8:d5:c0:aa:
cd:d4:d2:84:c2:57:cb:6d:3c:51:47:41:1f:7b:f4:
e6:70:6f:1f:f7:83:c0:20:7f:0f:68:2e:64:f0:eb:
d5:b2:3a:e9:b7:05:9e:79:d1:1d:8f:84:ca:45:29:
91:33:73:f7:80:4c:1d:c8:b0:45:f4:04:95:a6:e1:
04:2f:4d:a4:96:9b:89:8a:8b:f8:3f:8b:3f:9a:ac:
65:1e:91:1a:ab:3a:87:09:f7:fd:98:c2:a1:0e:a8:
a9:82:6a:69:79:ee:05:aa:fa:f8:13:be:bd:66:df:
d7:26:d8:6f:36:64:24:2e:02:f7:31:62:6b:d7:82:
46:a7:fd:62:cb:30:91:be:a5:4b:e8:bd:78:b8:e1:
d5:13:be:03:c2:a5:6b:b0:f2:01:6a:db:ec:12:21:
9f:77:81:92:46:a2:c1:1b:55:48:f1:a3:0d:95:ec:
ba:a3:a5:f5:ef:9d:8d:d2:a5:88:14:f5:db:ad:28:
a5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:25:62:F9:B6:33:22:0F:32:50:0F:03:2D:F0:C3:D3:3D:C6:AC:BF
X509v3 Authority Key Identifier:
keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/FyVi-bYzIg8yUA8DLfDD0z3GrL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.120.0/22
45.136.156.0/22
45.138.140.0/22
45.144.116.0/22
45.150.160.0/22
185.157.168.0/22
185.241.172.0/22
193.42.219.0/24
193.43.14.0/24
193.43.28.0/24
193.43.37.0/24
194.35.78.0/24
194.35.92.0/24
194.35.95.0/24
194.35.182.0/24
194.147.242.0/23
194.147.250.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:08:de:30:cd:7e:2b:63:9f:a1:08:dc:08:09:a1:fa:7a:b3:
30:db:62:83:5a:bd:c6:f8:9d:c4:69:ec:2e:58:cd:80:90:99:
9a:4d:3b:42:65:54:30:39:f2:ef:5c:77:48:4b:6e:d6:6e:77:
b5:2c:6b:68:e0:74:bb:0c:7b:d7:40:32:7c:97:70:37:ba:b5:
9b:59:5d:b0:c6:ff:51:f8:b9:06:a4:16:52:df:dd:98:59:9c:
6c:91:48:6c:92:39:b1:0b:b0:26:e5:6e:7f:06:5f:a0:1c:b8:
18:33:1e:bd:e0:27:5b:5c:da:96:4e:a0:57:00:fe:92:f6:4d:
68:5c:b6:de:a3:3e:4a:17:8e:5f:17:6b:65:ef:d3:13:e4:11:
fc:bb:66:ed:69:66:11:69:2a:34:d2:4c:1d:0d:bb:b8:b8:3c:
fe:ab:04:89:f3:7c:92:15:2e:28:94:ce:e5:e0:52:eb:bd:cd:
66:ce:09:51:7c:bc:f9:06:2e:8c:09:b2:a0:e5:a3:c0:2f:aa:
1f:91:52:dc:ed:e3:e3:9d:e5:fc:d8:15:2a:70:78:92:5a:57:
6f:5a:97:ab:5e:ec:cc:ed:16:26:39:ef:c3:3b:d9:24:58:3f:
fe:1d:17:e6:28:9a:27:ab:75:ec:53:1e:e1:b5:e6:47:c4:c2:
f3:dd:98:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:38 2024 by rpki-client on console-ams.rpki-client.org