Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/OtG17DvkWdo9muYq-pgSbWQ0Q4Q.roa
File: OtG17DvkWdo9muYq-pgSbWQ0Q4Q.roa (raw, json)
Hash identifier: VGFVFjpMs86doedj/8/wgcOSxO+hso9J8TKo/oKsLmQ=
Subject key identifier: 3A:D1:B5:EC:3B:E4:59:DA:3D:9A:E6:2A:FA:98:12:6D:64:34:43:84
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A2C567B3F544CAFD49E54A9B64742444D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/OtG17DvkWdo9muYq-pgSbWQ0Q4Q.roa
Signing time: Fri 25 Aug 2023 10:56:19 +0000
ROA not before: Fri 25 Aug 2023 10:56:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Aug 2023 14:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:56:7b:3f:54:4c:af:d4:9e:54:a9:b6:47:42:44:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 25 10:56:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ad1b5ec3be459da3d9ae62afa98126d64344384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ef:6f:89:85:43:c3:e9:76:d1:db:66:84:bc:
c3:80:b9:f5:ed:b3:8c:03:5c:02:42:3c:3f:bf:b3:
1e:9d:6e:e4:49:31:35:de:5d:d3:18:61:10:07:2e:
98:2f:25:bf:f9:43:eb:da:26:d0:1c:d3:60:77:2f:
93:52:94:27:66:9c:62:80:ba:2f:c2:f0:49:f3:e1:
8f:2e:f5:da:2a:e4:3b:16:67:90:2a:b7:da:cb:05:
51:7d:fe:7f:3f:9d:db:3e:e0:b6:71:f2:64:c3:77:
8f:67:44:91:42:ff:ee:1a:22:73:23:63:a6:b8:ea:
9b:26:75:59:2d:34:2c:ee:9d:ae:69:89:bd:9b:9c:
85:9d:84:90:a9:b9:a1:b3:b6:c3:a6:ae:40:e4:e1:
f0:74:89:92:3f:52:e1:4c:02:06:5c:77:41:3a:f0:
ec:72:5b:25:62:38:63:04:6c:a8:00:ed:19:40:35:
97:2e:25:ea:9c:d0:2d:1d:ac:67:be:ee:b6:7e:7a:
40:49:9e:29:dd:e3:50:c5:02:22:01:1c:53:50:06:
83:63:76:e9:d4:fc:ae:ec:f9:89:59:c1:e4:5a:a5:
89:bc:b0:ce:77:ad:30:3d:2c:98:4a:9b:32:0c:14:
3b:7e:bb:89:45:44:1d:26:5c:53:8a:64:88:7a:a6:
e4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D1:B5:EC:3B:E4:59:DA:3D:9A:E6:2A:FA:98:12:6D:64:34:43:84
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/OtG17DvkWdo9muYq-pgSbWQ0Q4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.56.239.0/24
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
07:47:d1:fc:1a:04:37:8b:c2:d1:bd:7a:02:1b:6c:a4:1c:e6:
f9:0e:8c:94:4e:cf:fc:28:ea:2f:9c:9e:e0:53:4e:06:ad:b9:
d6:4e:6c:03:52:e5:6a:49:d8:5a:dc:68:10:9d:50:2b:2b:89:
e3:a2:5b:d7:20:de:2c:ea:4e:8c:cc:06:43:68:86:6b:cf:69:
a7:fb:3e:23:96:2d:80:c2:e5:15:24:eb:c3:dd:e4:dd:c0:ab:
31:d7:cd:1b:7c:6f:47:3b:71:5e:a8:92:85:c0:6b:14:65:50:
ca:9e:46:85:b4:f6:09:20:c1:6f:6a:03:d2:3b:b6:9e:23:b4:
b3:ac:6a:77:c2:08:5f:af:74:4d:6f:9a:b9:61:48:44:74:6f:
87:b3:09:6a:c4:ff:d9:0d:9a:70:32:aa:f8:ef:d7:32:a9:57:
77:7d:e9:59:a2:d5:09:e3:7b:75:cc:17:d9:9f:66:be:fd:c2:
af:22:c5:f2:09:b3:4e:b9:0d:16:5b:ea:fa:1b:f8:0b:e1:05:
39:eb:80:90:e7:d3:7c:cd:c7:6c:b4:4b:e8:ec:89:06:36:1f:
8c:e9:57:ef:97:62:51:b6:e3:f0:7c:dc:6c:17:32:7a:78:60:
3b:42:af:e2:f8:7e:eb:95:de:82:0d:89:71:42:cf:a7:89:aa:
45:1b:55:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org