Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rGHVpV2glPdGVDTXGd8PAUlHyE0.roa
File: rGHVpV2glPdGVDTXGd8PAUlHyE0.roa (raw, json)
Hash identifier: n64d/7CWJG1BEud9OFH6mbVY3dpL0FgjXNjjBOVYmeY=
Subject key identifier: AC:61:D5:A5:5D:A0:94:F7:46:54:34:D7:19:DF:0F:01:49:47:C8:4D
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC4255B0BBF09BBFF1960764A89E68664
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rGHVpV2glPdGVDTXGd8PAUlHyE0.roa
Signing time: Mon 01 Jan 2024 08:30:31 +0000
ROA not before: Mon 01 Jan 2024 08:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35913
IP address blocks: 45.140.221.0/24 maxlen: 24
45.140.220.0/24 maxlen: 24
185.242.225.0/24 maxlen: 24
185.186.67.0/24 maxlen: 24
185.234.75.0/24 maxlen: 24
45.154.196.0/22 maxlen: 24
185.227.71.0/24 maxlen: 24
193.105.177.0/24 maxlen: 24
178.218.145.0/24 maxlen: 24
194.56.224.0/24 maxlen: 24
45.90.145.0/24 maxlen: 24
45.90.146.0/24 maxlen: 24
85.202.162.0/24 maxlen: 24
77.83.241.0/24 maxlen: 24
77.83.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 15:24:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:5b:0b:bf:09:bb:ff:19:60:76:4a:89:e6:86:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac61d5a55da094f7465434d719df0f014947c84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b6:e8:ab:35:e1:aa:76:01:71:bd:a8:dc:41:
50:87:81:73:dc:a6:74:cd:0d:9a:ed:3d:33:f0:17:
92:d9:9a:33:03:aa:69:ef:21:93:e6:5f:ba:9b:b8:
89:c0:30:c5:00:a2:01:79:84:70:19:5e:b0:3a:66:
1a:db:3b:98:1b:98:72:f4:ec:53:de:57:b0:27:30:
96:3d:18:30:24:0b:17:7c:61:57:dc:1f:03:4c:18:
74:03:3f:ea:a8:19:4d:cf:e4:27:c9:eb:d6:04:2a:
e9:7a:ad:41:42:65:b4:0c:ed:a4:4a:c4:bd:b2:e9:
1c:1e:da:2f:8b:39:b3:87:97:f8:f1:a6:5c:84:e9:
1a:31:34:98:bf:64:62:88:87:c7:af:de:a4:15:3f:
56:21:53:60:df:97:f0:1f:db:59:2c:85:7a:5a:b7:
2b:ac:99:01:2c:57:51:4e:a0:ec:ec:8b:64:5d:c2:
b7:6b:77:f7:e5:d3:c1:a5:e7:3b:25:a6:9f:2c:6e:
dc:6f:a9:7b:93:76:01:25:f4:b7:c8:5e:1d:56:ce:
53:4c:ef:ba:34:f7:50:b4:11:e0:cc:c4:07:c5:14:
6f:73:ee:4e:12:e4:00:98:c7:87:99:c9:b1:3c:fb:
b6:c5:18:17:f9:9c:6b:c3:8a:9b:f1:d4:eb:38:e0:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:61:D5:A5:5D:A0:94:F7:46:54:34:D7:19:DF:0F:01:49:47:C8:4D
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/rGHVpV2glPdGVDTXGd8PAUlHyE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.145.0-45.90.146.255
45.140.220.0/23
45.154.196.0/22
77.83.241.0/24
77.83.243.0/24
85.202.162.0/24
178.218.145.0/24
185.186.67.0/24
185.227.71.0/24
185.234.75.0/24
185.242.225.0/24
193.105.177.0/24
194.56.224.0/24
Signature Algorithm: sha256WithRSAEncryption
63:20:86:f7:72:bf:30:79:6c:c2:8c:b2:d5:4d:02:df:b4:63:
bc:56:ec:e4:a5:15:ee:05:39:8d:d9:94:30:0f:46:e9:90:05:
00:33:8e:a3:15:9b:8a:76:68:4b:3b:b8:79:96:b0:56:68:ac:
89:7c:cf:0f:a7:83:e3:81:29:c9:a4:db:a7:45:fd:bc:f3:6a:
2b:05:52:49:fc:c1:c8:96:5c:00:59:cd:ee:e1:0e:78:a1:4d:
ce:8c:ac:bb:31:26:66:83:9b:f2:3a:7e:e1:2d:8e:a0:a1:d8:
19:95:80:fa:44:3e:cf:ae:21:1b:85:78:1d:02:79:3f:a3:98:
3a:71:19:51:1b:05:55:16:9a:61:54:ca:bb:19:85:a8:73:92:
e5:36:9b:2e:73:6c:ac:8c:c9:a5:38:a1:e8:b6:61:8b:42:e2:
19:97:e5:63:b4:66:ef:ce:62:4c:46:52:2b:06:19:de:30:4a:
7d:81:66:9a:39:15:e2:3f:17:d9:1a:b8:6f:be:3f:8a:89:dd:
0c:e1:cb:c4:7a:48:a7:2c:38:cf:88:c8:08:b2:f5:76:a3:48:
bc:e6:c6:d5:ee:a5:ed:f8:9c:95:59:f3:35:8d:3b:92:59:ef:
d3:ec:ad:5b:80:ba:b6:4a:4d:33:3d:fd:91:fb:4c:f4:1f:10:
59:9d:57:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 20:48:59 2024 by rpki-client on console-fra.rpki-client.org