Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/kwBCy9qKLwTfHemk3Mgsz4hSSJs.roa
File: kwBCy9qKLwTfHemk3Mgsz4hSSJs.roa (raw, json)
Hash identifier: 4ahwpuwBXg7tYLqj6l6Q9P+Ddu6oVO8YxMuRZrn1xfA=
Subject key identifier: 93:00:42:CB:DA:8A:2F:04:DF:1D:E9:A4:DC:C8:2C:CF:88:52:48:9B
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CC5011D36DA731D03708CE8E282DDEFC6
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/kwBCy9qKLwTfHemk3Mgsz4hSSJs.roa
Signing time: Mon 01 Jan 2024 12:30:33 +0000
ROA not before: Mon 01 Jan 2024 12:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 23 Mar 2024 17:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:1d:36:da:73:1d:03:70:8c:e8:e2:82:dd:ef:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 12:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=930042cbda8a2f04df1de9a4dcc82ccf8852489b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:d1:50:56:c0:ea:dc:88:c9:fd:d2:61:4e:
a2:ca:57:36:96:eb:f9:41:92:94:cf:09:ab:e3:20:
11:87:a6:47:1a:44:79:22:ac:95:8a:08:d0:c7:83:
1b:75:44:bb:e0:28:b6:8c:56:28:45:9a:ea:09:65:
ac:b9:87:b1:6f:cf:1d:6e:ad:67:20:c3:63:85:7f:
0c:78:ca:6e:ee:66:13:77:67:f6:05:76:f7:d9:0a:
62:a0:2f:45:fd:b1:1e:e0:5a:fb:3a:7f:b0:90:6f:
ff:a8:73:61:b2:23:41:92:d4:d9:df:5f:fe:5e:1c:
d7:09:a5:be:ec:b4:7e:d5:6a:a6:a8:da:c1:a7:79:
94:ff:fa:f7:2e:31:d7:05:0e:27:4b:2a:20:97:32:
08:22:04:d2:76:73:ff:c2:da:ff:4b:8a:31:e9:35:
a2:a4:7a:44:9a:15:36:fb:18:e7:da:5d:12:fb:a7:
e9:5c:d1:ec:41:45:0b:50:c3:d6:c4:82:0f:a7:20:
59:80:fd:e9:45:0d:fc:e2:01:6b:80:a4:b4:9f:6c:
e4:18:ab:52:f6:79:72:73:88:4c:68:ec:01:af:14:
ed:78:42:a2:44:e2:90:cc:a4:07:61:a0:8f:a6:5e:
f3:e4:e1:dc:99:bf:82:b7:70:c5:d0:38:43:6a:30:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:00:42:CB:DA:8A:2F:04:DF:1D:E9:A4:DC:C8:2C:CF:88:52:48:9B
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/kwBCy9qKLwTfHemk3Mgsz4hSSJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
02:16:5c:56:80:c0:28:69:92:e4:a1:7c:d3:3e:0b:07:3f:db:
ad:03:20:37:af:a6:6f:6e:aa:47:5c:0d:e2:96:0d:03:42:86:
72:80:02:30:67:aa:c9:47:a3:59:53:c8:29:71:8e:28:73:d4:
04:c9:ac:35:31:a0:7f:8e:b5:8c:0e:33:49:36:4a:d5:93:ca:
61:cb:65:36:45:89:36:b5:43:0d:ee:fc:07:e7:8b:13:00:dc:
86:0f:61:54:e1:6e:7a:77:72:1d:3c:2a:88:62:b0:27:09:fc:
5b:89:f7:1f:e3:77:5e:f9:1c:8c:d0:e6:56:ba:67:97:15:b0:
09:91:d6:d9:c3:08:2c:2d:04:56:9f:5e:d8:9c:3c:e7:ab:4a:
4b:78:ee:0b:e9:86:21:75:8e:bc:ec:32:db:8c:86:f0:e7:aa:
a8:3c:c6:42:34:45:fb:f2:19:ed:c3:c5:6d:2d:f3:3e:fe:fa:
f4:70:59:61:2c:9e:d7:63:e2:28:b4:b6:79:e6:73:89:02:5d:
e6:b9:99:17:ef:74:71:dd:10:36:c9:2a:c6:c0:31:c9:f2:82:
20:eb:bc:b4:45:67:5f:2c:54:8d:54:17:61:7f:64:2d:3d:95:
19:2d:55:1c:ba:e2:1a:d7:6f:8e:d2:8b:b9:03:72:f1:73:9e:
9e:1f:16:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org