Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/aGLJN00nh8i8m_ufm_VcANfwIUs.roa
File: aGLJN00nh8i8m_ufm_VcANfwIUs.roa (raw, json)
Hash identifier: uMe1ANBqYAXPXjMyBCWPlrEQNr9xB/DH0VYc/zayouI=
Subject key identifier: 68:62:C9:37:4D:27:87:C8:BC:9B:FB:9F:9B:F5:5C:00:D7:F0:21:4B
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 018DE5C2D8B58211A0CD9D01F2F924CCEC11
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/aGLJN00nh8i8m_ufm_VcANfwIUs.roa
Signing time: Mon 26 Feb 2024 14:12:48 +0000
ROA not before: Mon 26 Feb 2024 14:12:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208949
IP address blocks: 45.88.0.0/24 maxlen: 24
45.142.1.0/24 maxlen: 24
45.142.2.0/24 maxlen: 24
45.148.145.0/24 maxlen: 24
185.217.136.0/24 maxlen: 24
185.217.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 15:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e5:c2:d8:b5:82:11:a0:cd:9d:01:f2:f9:24:cc:ec:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: Feb 26 14:12:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6862c9374d2787c8bc9bfb9f9bf55c00d7f0214b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ef:70:9d:72:e9:26:ab:77:3d:82:38:0a:0a:
0c:7b:63:b8:d4:9c:8f:c6:d6:f8:99:16:72:76:aa:
88:6d:51:50:7f:28:cd:b6:89:7c:38:48:82:6f:8f:
a1:30:c4:0d:45:2c:f9:f6:2c:a0:72:7f:86:3b:53:
96:2a:84:6c:2b:c7:75:3b:61:32:5b:15:1c:cf:f2:
3b:cf:eb:0a:cb:54:7a:64:51:b3:b4:9c:23:0d:06:
39:24:5e:ac:f3:4d:33:21:be:dc:4a:dc:1d:b9:f9:
de:47:4a:e5:5c:d7:69:2f:fa:e8:1f:13:cf:1f:21:
52:b3:e4:4b:7e:2b:f2:b1:42:4a:16:41:b6:f8:f0:
ca:fb:39:a1:60:65:90:fe:d2:3c:a0:06:e6:b0:3e:
c1:4e:83:3c:3b:b6:04:d4:d4:12:37:4a:87:f9:cc:
8d:91:bb:a3:80:3e:07:8b:b7:ff:4b:07:e5:65:87:
0d:5f:c6:61:35:2e:dd:52:d4:ee:ee:3b:4b:d2:85:
8b:3f:1f:b2:c4:b8:51:12:b2:ac:84:b6:34:c1:2e:
3d:34:57:ad:58:72:b4:b5:7c:aa:0d:9a:83:66:74:
31:ef:89:69:8a:cd:8c:b0:44:a6:8a:7a:3f:9e:dd:
59:9c:b9:ef:c5:04:2b:46:73:56:f8:47:42:97:f8:
5a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:62:C9:37:4D:27:87:C8:BC:9B:FB:9F:9B:F5:5C:00:D7:F0:21:4B
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/aGLJN00nh8i8m_ufm_VcANfwIUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.0.0/24
45.142.1.0-45.142.2.255
45.148.145.0/24
185.217.136.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:77:77:ee:e7:af:13:3e:49:aa:82:81:50:15:95:e2:9a:78:
60:59:31:81:2d:ee:5d:73:92:de:f3:ff:3c:a5:9b:4d:04:be:
7c:a9:3a:a8:f3:43:e6:af:aa:b4:c0:eb:fd:65:b2:a3:fc:26:
2f:82:a2:b9:bf:5a:dc:d4:00:ea:81:02:87:7f:4b:c6:96:c2:
f6:20:c3:2a:de:5d:b1:6b:83:3e:64:c9:72:89:4f:58:bf:3d:
b0:2f:e4:8b:d1:9a:70:9c:55:06:b6:fa:34:ab:37:95:9f:70:
50:f8:48:51:78:b2:bb:c1:3e:1e:b9:2e:2d:b1:d8:8e:d7:f2:
0d:ca:5d:09:d8:65:90:b0:f0:68:5e:3c:3c:f2:90:a8:be:20:
42:66:c5:b4:a8:77:ec:79:45:a8:6d:94:0b:4b:7e:9b:27:52:
ad:7c:fd:88:19:fa:d8:6a:14:3f:8b:4a:e0:e2:2d:94:17:db:
bd:6b:4d:ef:03:65:08:4c:a7:66:dd:2f:eb:d8:b7:41:e6:87:
00:29:92:f8:f7:54:fa:dc:09:47:bb:2e:ba:48:15:2d:ed:2f:
e2:b7:d8:65:58:ad:31:f1:e6:c8:03:d3:fa:76:2a:98:96:01:
f6:05:1d:b7:da:5f:bf:11:7c:42:50:3f:44:03:5a:d3:a4:d5:
48:d9:32:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:08 2024 by rpki-client on console-fra.rpki-client.org