Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Ebu7arAV_MMG2vi-j_zQcZDm1-A.roa
File: Ebu7arAV_MMG2vi-j_zQcZDm1-A.roa (raw, json)
Hash identifier: BFu6QMt3PnmqTuqMGDTjMWIKk6HARhFHXuWua8j+jqc=
Subject key identifier: 11:BB:BB:6A:B0:15:FC:C3:06:DA:F8:BE:8F:FC:D0:71:90:E6:D7:E0
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018C919F53F3C6A1944E197BA25B9C821310
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Ebu7arAV_MMG2vi-j_zQcZDm1-A.roa
Signing time: Fri 22 Dec 2023 13:03:07 +0000
ROA not before: Fri 22 Dec 2023 13:03:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
193.109.137.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
45.130.53.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Dec 2023 14:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:9f:53:f3:c6:a1:94:4e:19:7b:a2:5b:9c:82:13:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 22 13:03:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11bbbb6ab015fcc306daf8be8ffcd07190e6d7e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1c:6b:cb:7b:c1:54:0b:62:9b:ce:f3:3b:2d:
f4:a2:73:92:32:cf:5a:49:80:c7:99:c7:a4:2f:a5:
ea:59:2b:e7:ae:98:fd:d5:b8:03:6a:b5:b2:a4:3a:
ff:94:9f:71:19:ab:86:e6:4b:d6:b3:ef:30:97:3e:
0e:fc:ac:9e:53:dd:41:e8:2d:30:2b:6f:c8:66:59:
a5:9e:37:61:72:e2:07:75:3b:7e:0b:67:8f:57:95:
ea:f8:39:90:78:44:b8:13:d2:37:29:64:57:87:71:
4a:c8:e1:19:f6:07:d1:ff:59:93:cf:dd:54:4c:a5:
92:87:ec:3b:9b:b1:08:2a:84:2e:e0:d7:b4:e0:cf:
14:90:a0:d7:cd:89:0e:7b:51:f6:ca:da:9f:a8:c8:
d5:dc:43:fc:82:cb:5c:b9:fc:1b:4c:f0:cc:ad:52:
58:f7:65:f9:22:ee:36:f1:de:ff:f4:4d:ec:1d:6e:
19:89:1b:4e:bb:85:71:f7:50:d9:3d:80:f6:68:86:
44:6f:16:28:78:3b:6e:10:a6:66:56:9c:b9:32:a5:
d4:04:d3:b6:f4:49:1a:a5:3b:dc:b1:64:aa:a6:e2:
16:51:ca:92:35:55:85:7b:47:5e:a6:12:53:6e:be:
72:42:32:e9:1a:14:af:a8:eb:29:62:39:b8:33:c9:
7d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:BB:BB:6A:B0:15:FC:C3:06:DA:F8:BE:8F:FC:D0:71:90:E6:D7:E0
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/Ebu7arAV_MMG2vi-j_zQcZDm1-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.109.137.0/24
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
52:10:6e:1f:0d:f3:2f:2f:0d:46:de:97:f3:74:e0:2b:5f:60:
c5:cd:90:96:f2:b0:d3:0f:47:31:ce:65:c2:5d:27:e5:b5:78:
f0:f3:78:a2:b1:b7:cf:fd:9e:a8:6b:cc:59:b7:5b:bd:b8:0d:
31:7c:db:66:98:f2:ec:7d:0c:32:d2:ca:3b:63:5b:f2:82:98:
bb:a2:35:7a:3c:b1:91:41:8f:5d:c2:ec:5e:26:7b:7b:a8:a2:
6c:2f:33:a9:f7:85:9e:f6:69:d9:a5:43:3f:fc:11:39:30:1b:
bf:a4:16:0e:3d:27:4e:2f:24:69:e2:dc:a4:d5:98:d0:62:85:
96:09:55:2b:f6:52:c7:da:d1:ae:c2:ad:e2:51:cd:f8:ac:4d:
58:f4:62:4d:6c:b1:6a:01:8e:06:cf:8b:98:cb:c7:92:86:6f:
73:6d:f0:b4:dc:2d:54:09:f8:ed:c1:79:1e:8f:5b:9a:28:02:
c4:da:fc:00:fe:51:a2:4b:65:ab:99:fd:a1:34:d6:81:bf:45:
f2:80:90:4b:81:a9:5f:ef:63:41:40:ba:7d:3b:85:35:d7:5e:
9b:2b:f9:f3:89:29:f7:c5:8b:93:14:44:85:6f:75:37:ad:69:
e0:df:f1:10:e4:aa:28:ce:4e:09:68:02:19:96:9e:7a:9a:99:
b0:3f:12:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org