Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/m3ogUTsqnV4Y9Z42Aoq7Rfjvwq8.roa
File: m3ogUTsqnV4Y9Z42Aoq7Rfjvwq8.roa (raw, json)
Hash identifier: hiPIqfOh6O254W88a3IcpBEYcqWhBfreLpI8Ex0YaT0=
Subject key identifier: 9B:7A:20:51:3B:2A:9D:5E:18:F5:9E:36:02:8A:BB:45:F8:EF:C2:AF
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018E0A7718DDDA0B95A66014FD5D94E83015
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/m3ogUTsqnV4Y9Z42Aoq7Rfjvwq8.roa
Signing time: Mon 04 Mar 2024 17:16:01 +0000
ROA not before: Mon 04 Mar 2024 17:16:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 45.133.37.0/24 maxlen: 24
185.169.182.0/24 maxlen: 24
185.169.183.0/24 maxlen: 24
185.174.20.0/24 maxlen: 24
185.174.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 20:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:77:18:dd:da:0b:95:a6:60:14:fd:5d:94:e8:30:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Mar 4 17:16:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b7a20513b2a9d5e18f59e36028abb45f8efc2af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:07:3e:d6:af:7b:29:ad:7f:08:c1:d1:fb:4e:
74:28:e8:a4:21:09:70:d1:1c:2a:d8:d7:35:90:92:
54:01:89:91:c5:4b:a8:e0:93:9c:4a:b9:58:ba:8b:
3b:be:23:49:d2:25:88:7d:fe:95:d5:53:c5:4d:13:
4f:9c:f6:fb:c5:83:98:03:f5:7a:97:2d:54:7e:69:
8b:c8:69:58:c7:fe:52:3d:32:37:4b:1b:ec:14:b6:
aa:d2:0e:20:b1:7a:91:ec:cc:8f:15:1b:16:c5:45:
cc:89:ea:61:6e:15:9b:a7:88:d5:bd:63:e4:9f:7f:
f9:af:4a:14:0e:ae:d4:a5:04:8e:92:24:4b:c2:09:
86:52:4c:16:17:ab:82:e9:2a:d5:bd:b8:c0:ec:de:
d8:6b:ad:c1:87:38:ea:a0:e9:a8:f9:e1:86:aa:42:
8a:33:5b:ff:f0:cf:7a:9d:4c:90:34:66:04:01:27:
25:de:fc:01:2a:8b:b5:fc:ef:ac:af:a2:af:89:23:
f3:52:7e:2b:84:94:90:e0:d0:28:e9:ed:54:65:e8:
c9:1d:4f:c9:0f:16:0d:7c:0f:db:67:5e:b3:ac:a6:
db:22:a4:55:5f:b3:91:49:e9:b7:b1:fd:0e:e3:83:
99:fd:5a:0f:4a:d5:5a:2f:2f:f2:bf:8b:b8:fe:34:
14:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7A:20:51:3B:2A:9D:5E:18:F5:9E:36:02:8A:BB:45:F8:EF:C2:AF
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/m3ogUTsqnV4Y9Z42Aoq7Rfjvwq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.37.0/24
185.169.182.0/23
185.174.20.0/23
Signature Algorithm: sha256WithRSAEncryption
23:09:25:08:4a:f1:2b:2b:a0:86:28:3f:ec:70:b1:95:1f:fe:
3d:31:38:41:13:09:1b:53:2b:fe:f9:c7:44:49:1e:21:58:66:
fc:d7:80:bc:39:b1:cf:f1:cd:b4:b1:fa:ee:04:3d:44:7d:90:
11:a3:eb:82:2a:ac:db:3e:29:b9:d0:65:ef:04:24:dd:d0:b1:
f8:3a:91:2a:9a:5c:ef:a9:27:24:23:5e:1c:de:13:07:37:28:
df:0a:76:8a:b4:eb:ef:db:80:14:61:89:97:30:7f:25:9f:fe:
95:0f:8d:b3:f9:71:82:89:51:4f:3b:f0:30:8c:00:9b:36:52:
ae:0c:68:98:b3:5f:08:d8:2e:a7:88:4f:15:be:b5:c1:ee:4a:
f3:6d:7f:69:59:d5:45:1c:af:e1:e9:44:b6:d3:c3:9a:4a:90:
39:e7:64:56:06:27:e7:aa:d2:4a:9a:9c:52:59:6c:9c:bd:67:
04:3b:6b:2f:31:8f:97:ae:3e:65:af:1e:a5:67:d3:4f:d3:d7:
6b:23:cf:a7:14:f1:1a:f8:79:1b:12:36:71:05:c3:9b:b9:57:
40:7d:c0:28:db:ec:d3:8c:21:07:c7:cc:03:ed:94:b8:23:62:
9f:d3:d2:9e:a2:ef:22:bd:9d:85:0f:fa:84:93:40:ec:04:7a:
c4:87:08:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org