Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bA3tF3ktNnjYliCYaqaa3XbbCgA.roa
File: bA3tF3ktNnjYliCYaqaa3XbbCgA.roa (raw, json)
Hash identifier: xz3diwJ59JF2ZOnfqpIFDcAJ9LtTtFyOXK8Bpep0mNk=
Subject key identifier: 6C:0D:ED:17:79:2D:36:78:D8:96:20:98:6A:A6:9A:DD:76:DB:0A:00
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0185A07E22CF264C2CD11937CA5D1111A8AF
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bA3tF3ktNnjYliCYaqaa3XbbCgA.roa
Signing time: Wed 11 Jan 2023 11:01:39 +0000
ROA not before: Wed 11 Jan 2023 11:01:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
193.109.137.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Apr 2023 14:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a0:7e:22:cf:26:4c:2c:d1:19:37:ca:5d:11:11:a8:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 11 11:01:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c0ded17792d3678d89620986aa69add76db0a00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0c:31:1d:54:37:dc:7e:a4:84:e2:1b:e1:7f:
aa:70:1b:bf:87:bc:6d:13:4f:af:e1:69:a3:67:93:
db:5b:d5:5e:22:50:e2:2b:e1:6e:e8:f0:5c:f0:9d:
f4:3e:e2:4f:29:d5:5b:cb:62:b4:2e:e1:66:ba:df:
e0:d1:5a:f4:3e:90:6f:77:3a:f2:a3:b4:24:6c:50:
36:07:70:dc:cd:82:ec:e5:55:29:62:ac:28:8a:45:
a3:50:7c:b2:bc:f5:c8:8a:fc:44:9b:dd:ad:0f:44:
50:f7:38:ab:d2:61:88:ca:fa:5b:12:26:45:e4:da:
6e:8c:09:91:85:cb:97:60:95:3e:eb:6c:96:82:9f:
30:23:b6:cf:e8:8a:7b:fe:65:21:2d:e1:aa:cb:07:
79:94:42:b2:30:67:e1:33:5c:6b:8f:94:a7:30:eb:
e6:48:51:e2:fa:7d:2b:8f:3a:a9:b5:11:45:aa:19:
3a:d5:e6:37:4e:b4:a9:95:85:b4:09:3c:d8:f3:6a:
f6:fe:99:08:6f:57:72:e6:69:0f:68:b0:ec:09:6a:
d4:f3:b7:90:31:ad:a5:41:f1:de:65:f6:97:3d:c9:
9f:ca:f3:1a:66:3c:9b:e6:81:bd:ba:16:00:33:7a:
96:fb:e6:86:44:8f:dc:37:83:2e:84:c0:b8:3a:82:
c3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0D:ED:17:79:2D:36:78:D8:96:20:98:6A:A6:9A:DD:76:DB:0A:00
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/bA3tF3ktNnjYliCYaqaa3XbbCgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.109.137.0/24
194.146.48.0/24
195.26.6.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
ac:42:0a:ac:84:f7:97:0a:5e:12:1c:6b:0b:2f:f4:05:43:2e:
c7:cd:c0:dd:b3:b5:e0:39:e8:2b:72:e1:58:ae:6f:1d:aa:87:
bc:33:c6:f7:ad:26:b6:7d:79:ba:76:31:91:e9:aa:b2:9a:97:
92:a4:e5:e5:6a:92:02:b7:99:6b:da:cc:c0:a4:0e:32:9a:66:
d3:64:47:bd:cc:d6:5c:85:2e:e5:38:b9:54:1c:81:0a:76:7b:
60:08:9a:e7:1a:bd:46:44:96:6f:3a:76:a8:a6:3f:fc:b5:16:
b8:83:51:3d:49:b8:35:dc:fd:5f:4a:3b:db:75:60:fb:ed:c1:
7a:68:1e:3f:a2:cf:d1:f5:a6:c0:1b:cf:b4:bb:66:d6:21:e2:
ca:ff:1c:91:fe:18:fb:88:ef:4d:15:f6:68:25:28:0e:4d:da:
26:ee:c6:2a:0b:cc:06:06:e9:01:ed:0c:97:8e:90:35:cf:1b:
42:71:8b:37:7f:9d:32:e9:90:3e:69:d8:9f:96:c2:c2:f8:08:
60:79:58:e7:1e:69:cd:75:ae:f8:6a:74:a1:6f:8a:d2:c7:d9:
83:f0:8f:db:fb:a0:08:66:6d:5f:ed:2d:f5:11:96:9d:af:10:
1e:11:81:87:62:28:1c:64:81:8f:f9:9c:5f:a0:99:7a:dc:4e:
b9:bf:f5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org