Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/t6YKIl0KeXJ7wFPip_00q-sEmoM.roa
File: t6YKIl0KeXJ7wFPip_00q-sEmoM.roa (raw, json)
Hash identifier: ENrglrbyVKmqYTPq4oX3k1kFYlczWfrh/w7Z1/fiyRM=
Subject key identifier: B7:A6:0A:22:5D:0A:79:72:7B:C0:53:E2:A7:FD:34:AB:EB:04:9A:83
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CAAB911DE98B801A86AAB2E794ADFA1BA
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/t6YKIl0KeXJ7wFPip_00q-sEmoM.roa
Signing time: Wed 27 Dec 2023 10:01:44 +0000
ROA not before: Wed 27 Dec 2023 10:01:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:b9:11:de:98:b8:01:a8:6a:ab:2e:79:4a:df:a1:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 27 10:01:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7a60a225d0a79727bc053e2a7fd34abeb049a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5c:c3:c5:4e:b2:ce:70:a3:14:e9:2e:41:7d:
1c:9e:09:90:d7:c2:50:89:25:89:8a:40:8d:fd:06:
0c:c0:8f:c0:43:04:54:62:bb:5c:af:48:8a:c0:c7:
af:75:ee:6d:5b:95:3c:75:93:aa:17:50:a8:53:68:
89:fa:ae:09:14:ff:47:45:57:a5:c4:4d:1b:f3:93:
0a:41:3d:b0:63:ee:7e:46:f8:6a:95:38:78:9f:ea:
85:d7:d0:2b:bf:01:2f:a2:a6:70:76:67:62:32:63:
53:d1:b7:76:9a:c8:5a:3c:a3:31:9e:87:f6:6a:90:
ce:1a:18:4d:f4:7e:95:b9:b3:76:22:8b:ab:82:eb:
c5:bb:fb:ad:2b:34:92:f1:87:b7:20:3d:45:d4:28:
16:3a:3f:d8:69:d7:91:c9:4d:e4:3b:3f:c4:b6:57:
e4:33:54:5a:fe:b7:15:bb:20:7d:39:24:43:c8:8e:
c1:b7:0e:de:57:2f:ef:ab:62:b4:ae:9a:c3:6d:a2:
9f:a1:5a:42:a3:d4:ef:2b:a3:a4:11:b0:cd:1c:a0:
43:fa:5e:ba:7d:92:38:8f:c5:cc:af:05:c9:d4:16:
92:3e:4f:2c:da:90:23:ad:99:25:88:51:3b:a5:5b:
88:67:f4:b1:3b:45:d6:5b:d4:92:09:ab:59:9b:87:
08:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A6:0A:22:5D:0A:79:72:7B:C0:53:E2:A7:FD:34:AB:EB:04:9A:83
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/t6YKIl0KeXJ7wFPip_00q-sEmoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
89:4d:97:49:d0:7b:17:97:bc:ae:cc:2e:e6:65:dc:7c:b5:da:
3d:af:53:8e:5b:dc:1a:df:91:78:e0:28:7d:7f:1e:58:94:02:
42:35:dc:0c:c7:b7:a3:d9:96:5e:16:a0:52:9c:c1:98:e9:4a:
9b:27:c2:25:11:a3:1a:0e:35:43:0c:7f:43:d8:3a:51:81:51:
4f:6f:05:f2:8d:2d:fe:6a:cd:83:d5:db:98:ff:08:34:96:77:
99:7c:d5:d4:f7:a8:46:40:ef:2d:ce:81:ae:b4:e2:cb:1e:e6:
5f:a0:2f:41:07:c8:8f:6f:e8:74:e0:bb:b5:55:ea:5e:d3:4f:
0e:2f:94:4b:7a:16:75:5c:44:dc:c2:26:82:ef:59:c5:a1:83:
a4:a6:7c:47:1e:66:4e:4f:49:4a:cb:d8:76:c7:0c:6b:28:a8:
68:65:bf:00:07:65:5a:53:a6:ac:5d:df:3d:61:8c:b0:63:8f:
00:30:29:2a:c7:8f:1f:1d:b2:b0:ad:db:a1:51:32:77:41:3a:
74:5f:d9:1f:44:dc:19:b5:21:9f:71:82:30:8b:1d:0f:4b:97:
c9:cb:df:eb:bd:89:cd:b7:5d:8e:00:96:b6:c8:dd:b3:0e:6f:
55:b9:58:23:36:5d:d0:e9:ef:df:06:98:f4:2c:ac:a6:f2:47:
23:30:b7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org