Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CBuUHt9-rgVwnmKS7a8iZxxU1TI.roa
File: CBuUHt9-rgVwnmKS7a8iZxxU1TI.roa (raw, json)
Hash identifier: H6uksnOtTd/HRsQh9L+BHQQ0Hkm+GDlQkO6Slybkskg=
Subject key identifier: 08:1B:94:1E:DF:7E:AE:05:70:9E:62:92:ED:AF:22:67:1C:54:D5:32
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018B6CCC3B53966B30DA564DB9FC72FCA234
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CBuUHt9-rgVwnmKS7a8iZxxU1TI.roa
Signing time: Thu 26 Oct 2023 16:23:25 +0000
ROA not before: Thu 26 Oct 2023 16:23:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 45.90.96.0/23 maxlen: 23
45.90.96.0/24 maxlen: 24
45.134.39.0/24 maxlen: 24
45.131.65.0/24 maxlen: 24
185.117.0.0/24 maxlen: 24
45.13.226.0/24 maxlen: 24
204.11.1.0/24 maxlen: 24
2.56.246.0/24 maxlen: 24
45.67.139.0/24 maxlen: 24
45.145.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 16:57:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6c:cc:3b:53:96:6b:30:da:56:4d:b9:fc:72:fc:a2:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 26 16:23:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=081b941edf7eae05709e6292edaf22671c54d532
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:67:d2:92:d3:de:63:dd:27:49:ba:fc:83:60:
d9:c3:76:02:22:2e:a6:59:6f:a8:15:cf:6f:d6:49:
1c:96:c3:51:de:13:37:cd:65:ca:6a:ad:fc:5b:f6:
7d:76:fe:aa:3f:6a:89:ec:b6:c3:fa:31:ae:2a:48:
c7:e8:2e:bd:20:45:c7:6a:c3:7d:3d:d5:22:e9:f5:
12:09:a2:80:bf:ff:fb:42:c7:16:d4:56:c1:e2:e2:
11:e9:09:66:e6:fe:71:8b:5e:d7:e4:1c:e1:18:46:
e0:1a:5b:e9:64:bf:10:bc:06:72:97:16:4b:9d:75:
5b:28:59:bb:84:2f:69:7e:11:ab:af:ed:37:fd:a3:
cd:80:b4:f6:c1:c5:00:72:c3:ce:ad:e7:0b:65:a2:
aa:d8:78:2a:0b:e4:47:01:59:8e:e3:86:87:e4:39:
1a:c1:0e:3f:4b:c5:d0:01:cb:f1:65:1d:f1:9a:5b:
c7:3d:1e:1a:41:3c:8f:a6:d6:f6:17:6d:bf:aa:58:
2e:e1:f3:0f:5d:7d:90:11:a5:ea:aa:39:79:26:fb:
52:91:ce:6c:c3:39:b7:fe:68:4a:1b:a4:ac:42:8d:
9f:95:85:44:5c:4a:e3:a3:5c:fb:60:46:f6:8f:ed:
4a:31:33:6a:e8:41:52:df:ce:04:09:67:ea:95:a6:
54:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1B:94:1E:DF:7E:AE:05:70:9E:62:92:ED:AF:22:67:1C:54:D5:32
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CBuUHt9-rgVwnmKS7a8iZxxU1TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.246.0/24
45.13.226.0/24
45.67.139.0/24
45.90.96.0/23
45.131.65.0/24
45.134.39.0/24
45.145.226.0/24
185.117.0.0/24
204.11.1.0/24
Signature Algorithm: sha256WithRSAEncryption
11:d2:32:9c:59:0a:8d:2e:fd:0a:a7:43:e7:bb:cd:7f:06:1f:
1c:bd:28:7c:e4:ae:5f:f1:af:1f:43:d1:3c:90:c1:1c:70:21:
80:d2:f3:9f:55:4f:a2:0f:a2:d1:d6:29:ea:3a:ef:14:4e:3c:
fb:32:60:d6:61:97:10:88:31:52:7a:18:cb:a0:64:e9:67:bc:
3b:c1:47:83:68:03:c2:66:42:5e:2a:a0:6c:43:95:d5:5e:dd:
4d:27:71:28:42:86:a5:0a:1f:ad:19:19:9b:09:f4:12:cf:ea:
aa:d7:e9:f3:dc:14:ed:a2:ac:52:98:06:33:72:27:da:b3:43:
08:35:52:7b:54:64:64:e1:4a:8b:c5:82:9a:f5:a1:97:56:cf:
8f:28:11:67:47:8b:89:b1:a5:9e:8a:5d:cb:83:90:d0:12:c5:
94:c4:c5:90:71:c6:18:dc:27:89:31:3c:7c:c9:8e:5c:02:65:
b5:9b:58:30:a2:52:50:f0:40:81:a9:3f:4b:48:ee:7d:62:9d:
a7:0e:01:9c:a3:8a:b6:f1:92:96:85:d2:1b:92:66:9e:f9:3b:
1e:1d:20:58:44:9d:a5:c0:02:35:c0:b5:c2:1c:d0:9c:1f:1a:
67:10:df:ef:fd:53:71:dd:92:f3:51:b5:74:ba:56:3a:7c:e1:
6f:57:66:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org