Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/C3FLxlAOu0TkLek3IPUx3-ext1M.roa
File: C3FLxlAOu0TkLek3IPUx3-ext1M.roa (raw, json)
Hash identifier: izSXfB9UgHYeG84WW4P2EKWTEgMsdlt4l5Byb/HPdvg=
Subject key identifier: 0B:71:4B:C6:50:0E:BB:44:E4:2D:E9:37:20:F5:31:DF:E7:B1:B7:53
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01884CCB7FDA65880709F069126F39AB882E
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/C3FLxlAOu0TkLek3IPUx3-ext1M.roa
Signing time: Wed 24 May 2023 08:06:24 +0000
ROA not before: Wed 24 May 2023 08:06:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 25 Aug 2023 10:56:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:cb:7f:da:65:88:07:09:f0:69:12:6f:39:ab:88:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 24 08:06:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b714bc6500ebb44e42de93720f531dfe7b1b753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2a:8d:7d:48:fa:50:52:f3:aa:8c:05:43:31:
9a:bd:2c:43:52:01:44:05:63:2b:8b:49:a2:9e:3a:
82:88:24:73:16:c1:f6:fb:58:13:c1:13:0a:70:ee:
5d:c3:f0:36:d5:e1:0c:d0:8b:e1:e3:7b:f5:11:47:
ae:85:69:44:70:77:20:26:03:0b:69:df:8e:f6:73:
0e:1d:70:39:02:50:c4:97:ed:bb:4e:c4:1f:36:c3:
c0:95:25:81:19:29:9f:15:6b:d6:a7:79:33:25:75:
37:9c:ac:c0:1e:78:5f:e1:23:72:76:29:81:e0:a3:
8c:0f:88:e1:37:ab:a0:47:a6:91:bd:f4:46:73:ec:
b2:c0:ed:48:41:e0:37:e3:73:88:58:38:77:92:0b:
81:18:ce:1d:ca:9c:cc:41:4b:0a:f6:87:db:fa:36:
c0:10:57:ce:85:51:c1:2a:04:57:58:57:23:c3:17:
ed:7b:88:18:53:64:4d:8f:ed:35:ec:f0:f5:44:c6:
d4:d3:03:33:7b:c5:67:94:01:77:25:b3:27:b9:d8:
90:c2:49:46:4d:85:73:b6:de:69:06:1a:c8:cf:3a:
94:99:36:2f:e5:bd:aa:03:32:9e:3f:40:af:50:5b:
b8:e8:f4:10:8f:7f:a7:6f:7e:6e:98:9e:2f:3e:c1:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:71:4B:C6:50:0E:BB:44:E4:2D:E9:37:20:F5:31:DF:E7:B1:B7:53
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/C3FLxlAOu0TkLek3IPUx3-ext1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
35:90:ea:2f:5b:12:d2:aa:3a:50:6e:d1:63:c9:14:ff:fc:f0:
8d:1b:5f:06:4a:9e:9f:fb:a3:6d:c2:48:dd:ab:21:f7:b6:4b:
c1:83:86:0e:2b:fb:0c:fd:5e:ae:6f:ce:30:4f:05:04:fc:b4:
86:be:c4:65:40:56:a0:e8:98:65:e7:86:82:f6:59:fd:d5:4e:
0d:e8:b1:8c:33:58:f0:e9:2f:c6:5e:bf:03:2b:23:ac:70:17:
55:80:a8:51:6d:4e:d6:53:55:b0:87:c9:50:aa:a9:ac:43:8c:
37:9e:b0:99:40:82:c3:d5:b4:de:be:5a:29:f8:0a:a6:d1:2b:
2b:10:88:d4:ff:7f:0b:48:40:40:55:fd:9e:d4:e8:e6:9e:61:
71:bd:4a:0d:5c:f8:69:37:03:e3:8c:5b:9c:04:a3:7b:bc:6e:
dc:a6:06:6f:2c:89:d8:7c:18:fd:1c:8a:65:61:42:c9:f1:d9:
12:cb:b9:a6:8e:09:3e:62:d1:2b:10:b8:12:c1:fb:f9:50:db:
c4:1b:98:21:4f:27:94:36:36:ef:b0:28:ac:67:1b:a2:41:86:
3c:ad:39:de:70:24:a9:87:af:3d:40:08:49:62:c8:08:29:ab:
40:00:9c:28:67:7f:28:ab:7c:5b:41:e5:42:f6:d5:71:3f:5a:
87:90:59:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org