Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JwmfPw355V5fu-bvkl1Ch1pBOgE.roa
File: JwmfPw355V5fu-bvkl1Ch1pBOgE.roa (raw, json)
Hash identifier: bL+CZkdEsxgv5HFuPZf4/jUHAHdqDjV4Q/GsNIBOuMU=
Subject key identifier: 27:09:9F:3F:0D:F9:E5:5E:5F:BB:E6:EF:92:5D:42:87:5A:41:3A:01
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018964895B702D535D418338910CF09B139E
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JwmfPw355V5fu-bvkl1Ch1pBOgE.roa
Signing time: Mon 17 Jul 2023 15:47:50 +0000
ROA not before: Mon 17 Jul 2023 15:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 194.156.0.0/24 maxlen: 24
193.8.171.0/24 maxlen: 24
91.188.231.0/24 maxlen: 24
91.188.228.0/24 maxlen: 24
91.188.229.0/24 maxlen: 24
91.188.230.0/24 maxlen: 24
91.220.229.0/24 maxlen: 24
194.156.27.0/24 maxlen: 24
45.143.142.0/24 maxlen: 24
91.213.35.0/24 maxlen: 24
45.135.177.0/24 maxlen: 24
91.220.206.0/24 maxlen: 24
45.142.74.0/24 maxlen: 24
45.142.75.0/24 maxlen: 24
45.142.72.0/24 maxlen: 24
45.142.73.0/24 maxlen: 24
87.247.141.0/24 maxlen: 24
45.138.144.0/24 maxlen: 24
45.138.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 16:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:89:5b:70:2d:53:5d:41:83:38:91:0c:f0:9b:13:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 17 15:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27099f3f0df9e55e5fbbe6ef925d42875a413a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f6:1a:91:9b:1c:6b:31:29:71:ff:4a:a7:4e:
8c:05:34:b2:62:f7:51:e8:e6:65:5e:53:d0:f6:e1:
de:d0:08:68:9a:ec:2a:b5:ff:2f:88:0b:05:38:e4:
cb:b3:7b:ed:c2:a4:b5:96:ef:cb:92:02:dc:54:77:
98:d6:dc:83:e7:4c:11:19:b5:c6:f0:a1:03:10:77:
9c:e8:cf:ae:79:37:89:97:4b:22:84:6b:e1:a2:5f:
f1:9f:c2:3d:05:e3:48:70:18:7e:4a:5c:2d:b0:32:
29:38:73:d5:99:59:a3:b5:6d:43:3c:e3:13:c9:01:
47:7e:91:08:7f:57:e1:25:38:9c:3c:45:5d:91:03:
5f:b6:a1:91:28:d1:db:7e:4b:db:84:f3:42:10:cf:
cb:54:b1:6c:b3:13:79:4a:33:a0:5b:fa:53:49:35:
73:aa:4b:f4:23:dd:7f:27:06:c9:27:7e:35:ef:54:
f6:c7:67:94:8b:5a:3b:c1:55:21:da:83:f9:73:bc:
48:fc:ab:8c:0b:7a:ed:3f:e1:00:2c:ec:36:69:9c:
d5:ee:18:7e:ca:1f:eb:7c:c7:8c:20:52:3c:b8:28:
ba:35:5e:b1:71:e4:5c:51:0c:be:d2:ee:3f:02:4d:
d2:65:03:15:29:6f:f1:18:76:d2:8a:9e:5f:7c:22:
62:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:09:9F:3F:0D:F9:E5:5E:5F:BB:E6:EF:92:5D:42:87:5A:41:3A:01
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/JwmfPw355V5fu-bvkl1Ch1pBOgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.177.0/24
45.138.144.0/24
45.138.147.0/24
45.142.72.0/22
45.143.142.0/24
87.247.141.0/24
91.188.228.0/22
91.213.35.0/24
91.220.206.0/24
91.220.229.0/24
193.8.171.0/24
194.156.0.0/24
194.156.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:66:42:ee:56:9f:16:9c:22:3e:cf:4e:8c:9c:c8:a4:2d:81:
22:ef:75:cc:58:b8:a8:d2:9b:a7:bd:ec:df:05:84:18:86:8f:
80:04:6b:e2:2e:18:dc:05:b5:6e:0b:b1:ea:97:e4:36:fe:59:
45:5b:96:78:1f:08:ea:87:f7:8f:79:f4:0d:83:f9:67:88:06:
54:fe:8b:0f:bc:35:8f:80:d8:93:50:30:74:7e:f7:fa:f4:d7:
52:9b:c0:8a:9f:12:d2:aa:da:b9:3c:70:8b:db:e7:36:6c:5e:
20:2c:aa:99:01:d5:28:2a:9e:65:80:5e:59:16:a1:ee:99:44:
91:25:0a:4d:f2:b1:92:fa:e7:62:b6:65:6f:a4:0c:66:2a:98:
0c:0f:82:d5:a0:ad:dc:64:9c:40:f3:43:a3:03:7d:99:ee:eb:
08:86:12:dc:ad:a2:6f:69:01:3c:3e:0e:5d:7b:3d:71:2d:17:
24:96:90:7c:44:27:d0:f4:14:1f:bc:56:9c:12:d6:75:37:73:
f8:62:f7:7c:05:b1:f3:39:e8:51:22:fc:4e:04:8c:1e:36:4a:
30:aa:86:01:39:b9:ff:b5:f0:fc:09:80:59:15:73:c0:31:62:
6e:7c:b4:dc:be:31:c9:68:c3:32:8f:9d:cd:62:68:91:7a:be:
1c:93:75:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org