Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FfJr8szbk09WPRtwil4GkRJDlts.roa
File: FfJr8szbk09WPRtwil4GkRJDlts.roa (raw, json)
Hash identifier: dNrmOlGjIiSyviRvsngqL2GLqedpb7GYH1t4Q9i03Z8=
Subject key identifier: 15:F2:6B:F2:CC:DB:93:4F:56:3D:1B:70:8A:5E:06:91:12:43:96:DB
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0191E5EEA9FEC45C4730698800B954219B6E
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FfJr8szbk09WPRtwil4GkRJDlts.roa
Signing time: Thu 12 Sep 2024 11:11:49 +0000
ROA not before: Thu 12 Sep 2024 11:11:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 45.133.38.0/24 maxlen: 24
45.143.96.0/24 maxlen: 24
185.148.243.0/24 maxlen: 24
185.169.183.0/24 maxlen: 24
185.174.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 08:53:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:ee:a9:fe:c4:5c:47:30:69:88:00:b9:54:21:9b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Sep 12 11:11:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15f26bf2ccdb934f563d1b708a5e0691124396db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:85:de:91:f6:45:0d:50:f3:bb:25:c3:43:28:
b1:9b:79:68:f9:b9:5c:c2:27:db:2b:c9:7b:8a:38:
aa:8c:85:db:c4:ea:18:84:e2:e8:7d:97:01:17:ea:
35:b9:dc:81:dd:d6:fd:db:8e:5f:c2:28:b4:6b:07:
19:5a:85:60:ba:86:f1:d6:02:d0:80:14:28:51:0f:
7f:92:77:0f:ef:69:6d:05:0e:e0:c9:f8:10:4a:6c:
7d:78:71:b3:09:8b:ff:1f:31:fe:61:83:fc:28:4c:
4e:ef:8d:be:8b:41:f9:1f:b4:3a:67:0e:d9:e5:de:
08:a1:55:91:6d:1a:a3:07:cd:77:58:1d:04:1a:72:
6a:45:70:3e:18:47:3e:05:71:19:62:1a:4f:c6:e7:
5c:58:d1:23:ca:8a:4d:c8:67:2d:b0:bf:d1:02:b7:
2c:65:5d:bd:a2:71:ee:7c:92:6f:d4:46:99:f0:e5:
73:14:0e:18:b4:e4:99:93:7f:2a:37:0b:1b:24:46:
d6:1c:df:83:d2:ab:db:e7:3b:99:be:ff:9b:0b:f2:
b1:71:8c:dd:b4:14:be:9d:7a:00:37:f9:85:2c:fe:
e8:5d:17:1d:e7:a7:3c:67:8e:87:df:53:67:b2:24:
e6:a7:07:03:9d:73:12:10:48:57:36:a9:b0:ef:6e:
37:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F2:6B:F2:CC:DB:93:4F:56:3D:1B:70:8A:5E:06:91:12:43:96:DB
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/FfJr8szbk09WPRtwil4GkRJDlts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.38.0/24
45.143.96.0/24
185.148.243.0/24
185.169.183.0/24
185.174.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:05:a5:d1:25:88:c7:b0:30:64:5e:f2:40:61:3d:25:9a:a1:
e5:dc:4e:04:fb:18:52:85:34:e4:58:c6:dc:8b:0b:1a:1a:21:
de:ec:0f:bc:0a:a3:00:6e:67:c5:eb:15:83:f9:57:4b:2e:3f:
21:53:34:9d:48:4c:5e:cb:3a:f8:5c:c4:62:36:93:62:0e:33:
e9:c9:46:36:cb:2e:74:fb:2a:e7:d6:e3:bc:36:7c:e7:c7:67:
9d:e2:cd:62:c0:81:f3:e0:88:b4:3c:58:01:d4:cb:0c:5d:94:
85:72:48:aa:46:f9:c9:b8:d6:b9:c0:a7:ab:13:6a:62:ae:0c:
05:db:8a:ae:34:72:6c:a4:9d:ea:bd:67:eb:32:9e:d3:23:92:
5e:fe:17:13:d9:b5:0d:8a:b3:b2:00:1f:bd:40:5a:e8:18:d8:
e7:81:d3:93:70:59:11:df:16:b8:31:50:39:82:81:ec:d3:78:
7d:4a:56:21:c8:05:87:de:ce:89:71:33:dd:9d:27:9f:ad:46:
74:17:95:08:f3:dd:a7:72:04:6e:1d:ba:ed:50:1b:90:57:26:
44:9d:af:5c:b2:d8:31:3d:81:25:ee:1b:88:a6:53:ff:a4:2e:
24:52:9b:9d:53:20:db:d0:39:78:12:5d:50:77:2b:34:e6:79:
c3:96:eb:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 13:12:31 2024 by rpki-client on console-ams.rpki-client.org