Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/pTXGR2ZzPBLmahaxESvgShWoWhc.roa
File: pTXGR2ZzPBLmahaxESvgShWoWhc.roa (raw, json)
Hash identifier: ETvYjuyH5GOQ2OPbSF8XomvMKh0MgEKLHxDEF4RjaFA=
Subject key identifier: A5:35:C6:47:66:73:3C:12:E6:6A:16:B1:11:2B:E0:4A:15:A8:5A:17
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018B6B5B2054B0ADC6E7C265A895490B2108
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/pTXGR2ZzPBLmahaxESvgShWoWhc.roa
Signing time: Thu 26 Oct 2023 09:40:15 +0000
ROA not before: Thu 26 Oct 2023 09:40:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
45.130.53.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 03 Nov 2023 13:35:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6b:5b:20:54:b0:ad:c6:e7:c2:65:a8:95:49:0b:21:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Oct 26 09:40:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a535c64766733c12e66a16b1112be04a15a85a17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:48:c1:ca:1f:d9:9c:67:ee:c3:19:10:1d:9a:
6f:65:57:d4:87:6a:f3:c7:7c:21:de:f3:85:50:9f:
3e:d2:bb:80:ab:7f:ad:89:98:8a:6e:70:68:06:4e:
9d:3e:58:6e:fa:74:9e:34:15:03:37:a0:e0:b0:c3:
7e:fe:59:19:f7:58:e3:7b:ba:7b:48:d7:44:ef:ef:
4c:5c:72:d1:d3:2d:66:a7:a9:6f:26:44:79:16:ab:
59:23:cb:e2:44:cc:4e:e4:ab:c6:79:ab:05:a2:8b:
cf:7b:25:fb:1a:ae:84:bb:7e:16:71:b0:8f:b7:0c:
86:88:4b:2a:d4:2c:2c:7d:37:13:77:cb:54:40:1f:
55:8e:f2:c3:e6:b8:b1:13:80:de:4f:ee:d0:34:e5:
10:7c:c9:8b:b7:e3:60:3f:0d:2e:5b:61:94:17:eb:
56:54:02:3b:b4:53:40:7a:17:22:76:64:98:14:7f:
96:83:5b:26:69:aa:9d:1f:f0:b9:d1:4a:11:b8:49:
c6:69:17:b3:43:64:3b:c3:3d:cf:45:a2:05:e6:f0:
db:23:2b:6b:8d:a9:f3:11:c1:de:78:77:e0:77:32:
42:e7:6d:da:90:bc:22:9e:b5:80:33:f4:ec:0e:4d:
2a:ac:ce:27:4e:53:7f:48:7d:a8:c5:8a:34:bd:d7:
2a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:35:C6:47:66:73:3C:12:E6:6A:16:B1:11:2B:E0:4A:15:A8:5A:17
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/pTXGR2ZzPBLmahaxESvgShWoWhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.56.239.0/24
194.146.48.0/24
195.26.6.0/23
195.88.227.0/24
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
5d:ec:3a:26:39:ce:b4:c4:a8:34:20:8c:2b:e6:db:f6:ea:8a:
b9:e7:89:5e:77:2d:0d:e9:f3:37:56:05:bf:03:1f:4b:87:ab:
bf:28:8d:10:05:20:a8:45:63:9c:79:27:be:8d:13:0f:f0:32:
c7:0e:17:0a:71:4e:32:a7:e3:a7:06:d8:d7:34:e6:13:2e:2e:
d7:e7:3f:63:2c:ba:e1:a4:8d:15:10:1e:e8:ca:34:f2:6a:62:
32:27:32:55:e1:cd:86:84:e2:1a:8c:02:85:48:15:f0:c8:aa:
16:92:ce:b0:7b:bd:b8:18:71:30:87:5b:17:00:ee:cb:a2:6c:
3e:9f:49:07:7e:9c:94:d7:f5:1c:06:8d:62:c1:5a:b9:ef:61:
08:42:53:16:f2:1c:6e:7b:dc:32:f3:87:cd:37:13:f4:b0:03:
ac:5d:35:49:f3:95:9a:59:1e:3e:54:39:b1:98:ae:91:14:b9:
90:4c:1d:06:78:ef:5d:f3:cf:ae:4f:78:c6:ab:6b:5d:6b:9c:
d1:d8:f3:49:d7:5f:af:84:da:1a:28:24:5d:82:9b:43:5e:fa:
ae:40:61:2f:76:79:e6:cc:e5:aa:69:90:85:f2:c5:c2:08:78:
cb:13:4c:e0:ab:6d:3f:a6:7d:bd:f4:f0:09:81:5d:1a:fb:5c:
6c:32:09:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org