Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/vjNHY5Y6dy4fhU5rEDZWrD-vOK0.roa
File: vjNHY5Y6dy4fhU5rEDZWrD-vOK0.roa (raw, json)
Hash identifier: AToMwi8G2Ik1MUxP0NnCYO1dCdGSgann33reVa+yb6M=
Subject key identifier: BE:33:47:63:96:3A:77:2E:1F:85:4E:6B:10:36:56:AC:3F:AF:38:AD
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018F5931A6110A9CD0C927F07E991D687053
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/vjNHY5Y6dy4fhU5rEDZWrD-vOK0.roa
Signing time: Wed 08 May 2024 17:12:57 +0000
ROA not before: Wed 08 May 2024 17:12:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208258
IP address blocks: 45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 May 2024 22:37:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:59:31:a6:11:0a:9c:d0:c9:27:f0:7e:99:1d:68:70:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 8 17:12:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be334763963a772e1f854e6b103656ac3faf38ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:81:02:84:d6:94:3a:61:7e:d8:0c:a9:66:d4:
2e:fd:1f:0f:2e:44:90:c1:e9:ec:10:71:c8:e4:65:
af:0d:a1:9e:39:2a:40:c6:a1:56:d2:76:ae:42:5d:
eb:aa:a7:2f:be:9e:1e:b2:b3:40:61:24:d8:4a:55:
e7:e7:a6:fb:1d:8b:67:39:06:6c:cf:bb:6f:74:28:
01:eb:0c:e2:5d:11:ee:a3:ea:e3:1c:da:b5:7d:07:
75:c9:af:c9:c4:01:19:2b:c5:73:ae:bf:71:a3:d4:
dc:d0:35:8e:e1:9f:73:d8:0d:c2:0b:ce:42:cb:ab:
15:b7:06:a9:56:b5:bf:53:01:e4:63:5d:37:02:14:
a2:f3:20:85:5c:20:c4:e3:a1:69:65:89:31:33:86:
d7:1b:d3:b4:3a:af:86:29:9c:7a:fd:9b:2a:94:a4:
d9:fe:34:65:d8:3d:21:eb:95:ac:a4:3d:aa:b5:04:
6c:97:59:23:1c:7a:d1:99:1c:e8:7e:86:b1:ea:1a:
d5:59:ef:a2:98:5b:64:e3:f2:2d:b5:4f:69:5d:29:
b3:d3:2a:2a:b0:e3:6c:5e:2a:aa:ff:70:67:d3:46:
c8:9e:8d:96:c2:37:22:3e:15:b4:08:93:ca:0f:b5:
35:2e:96:f4:d4:92:b6:06:25:3f:e2:e1:a4:ce:3a:
11:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:33:47:63:96:3A:77:2E:1F:85:4E:6B:10:36:56:AC:3F:AF:38:AD
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/vjNHY5Y6dy4fhU5rEDZWrD-vOK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
193.56.239.0/24
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
7f:19:9a:fe:1d:d0:09:42:db:39:7f:ef:46:9f:a0:e2:51:fa:
c1:b8:13:df:df:27:73:01:08:0b:56:9b:8d:ab:ea:a2:6a:db:
ae:30:9a:55:d3:3b:5e:e4:39:5e:db:20:2a:b0:f1:45:4b:77:
fc:0b:78:0e:87:76:7a:a6:89:ab:ae:e2:0f:e2:bd:23:f9:2a:
a8:0b:1f:00:e5:ca:ac:ba:0d:1f:4a:c5:1e:71:c5:01:85:df:
2f:f9:6d:e1:9a:d1:23:87:cc:63:a4:ed:65:f3:e9:10:fb:ba:
2e:0d:84:bb:3d:60:96:3f:a5:11:81:4d:98:9f:0f:1a:93:d9:
f2:77:fa:5c:2b:fa:f0:45:dc:07:c8:d0:40:ea:6d:6f:d6:30:
7a:12:c8:7f:ae:9e:56:63:d4:fd:71:8d:f2:39:cd:8f:ac:86:
58:88:84:91:b7:c5:b2:55:19:cf:46:b9:91:64:08:25:49:e9:
f8:c2:07:14:a2:c7:4c:8d:1a:54:17:0f:4a:6d:03:91:23:2b:
a5:2b:28:19:f7:f9:a5:7f:43:bb:03:18:33:96:6b:72:6d:2d:
11:4b:2c:3a:4c:62:c0:b5:ab:2d:56:0b:83:38:52:89:b8:6a:
ab:49:39:50:21:ea:42:1a:e4:bb:2e:bc:de:b1:04:91:9c:2b:
81:8e:5a:df
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:26 2024 by rpki-client on console-fra.rpki-client.org