Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/SUHtWNIZSTcdeSXk4yILNgvkgG4.roa
File: SUHtWNIZSTcdeSXk4yILNgvkgG4.roa (raw, json)
Hash identifier: yGDBEQKzOGZUpHCMYFO/wHpnL2ftDBxr8nErEYVsqLE=
Subject key identifier: 49:41:ED:58:D2:19:49:37:1D:79:25:E4:E3:22:0B:36:0B:E4:80:6E
Certificate issuer: /CN=a8b31004df135aa1a8b943033db14691b11a63dd
Certificate serial: 01856D01B3E72B2F99F0B836C643055D935F
Authority key identifier: A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/SUHtWNIZSTcdeSXk4yILNgvkgG4.roa
Signing time: Sun 01 Jan 2023 11:05:06 +0000
ROA not before: Sun 01 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31617
IP address blocks: 192.166.252.0/24 maxlen: 24
192.172.232.0/24 maxlen: 24
185.186.92.0/22 maxlen: 24
192.188.248.0/24 maxlen: 24
194.143.142.0/23 maxlen: 24
45.66.100.0/22 maxlen: 24
193.23.114.0/24 maxlen: 24
192.207.14.0/24 maxlen: 24
45.92.148.0/22 maxlen: 24
185.252.52.0/22 maxlen: 24
195.88.230.0/23 maxlen: 24
195.88.234.0/23 maxlen: 24
91.241.86.0/23 maxlen: 24
62.192.148.0/22 maxlen: 24
217.26.180.0/22 maxlen: 24
2a0b:7380::/29 maxlen: 29
2a0e:2140::/29 maxlen: 29
2a0c:2140::/29 maxlen: 29
2a0d:9b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:b3:e7:2b:2f:99:f0:b8:36:c6:43:05:5d:93:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8b31004df135aa1a8b943033db14691b11a63dd
Validity
Not Before: Jan 1 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4941ed58d21949371d7925e4e3220b360be4806e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7a:75:2f:88:35:e3:f1:3e:d6:ac:85:2e:b8:
d8:35:f5:2c:39:28:7a:21:f5:6b:47:2b:b9:97:26:
2e:d6:d7:de:e5:d3:8c:e5:b3:0c:cf:2c:6b:0f:2e:
0f:9d:29:f2:88:37:54:b0:9a:0b:7b:f1:28:e3:d9:
cb:c2:a4:a9:9e:99:86:d2:82:95:b3:23:ad:4f:b6:
56:f9:39:57:c4:bf:c0:f3:6f:f0:2a:de:fe:83:3b:
e7:8c:c9:53:e8:81:89:42:cf:57:35:87:fc:6c:32:
39:82:a6:d7:17:7a:84:36:ab:c9:40:c6:7e:99:3b:
da:85:32:1d:4d:ca:96:4e:f0:62:cd:b5:6b:d7:b9:
93:2c:56:93:8a:6a:76:18:12:4f:0f:ce:1e:ed:18:
1f:5a:c8:b1:2a:11:76:e5:2d:5b:46:3a:fa:1e:94:
2f:f9:81:79:db:09:c5:af:e7:27:df:54:ce:f6:d0:
d1:42:fe:a0:1e:4b:41:90:63:6c:22:8b:e5:54:dd:
66:79:d8:84:e5:a4:dd:da:11:49:e3:b7:89:77:02:
94:0a:f7:f0:95:ca:7d:3b:24:0c:2a:35:4e:87:29:
07:f8:1c:0b:75:1d:69:e5:70:16:a6:6b:e2:71:21:
24:ff:fb:32:cc:ec:00:e2:09:26:c6:f2:88:6f:a4:
ef:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:41:ED:58:D2:19:49:37:1D:79:25:E4:E3:22:0B:36:0B:E4:80:6E
X509v3 Authority Key Identifier:
keyid:A8:B3:10:04:DF:13:5A:A1:A8:B9:43:03:3D:B1:46:91:B1:1A:63:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qLMQBN8TWqGouUMDPbFGkbEaY90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/SUHtWNIZSTcdeSXk4yILNgvkgG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/5e23ae-6338-48dd-a304-c2a43b080d6f/1/qLMQBN8TWqGouUMDPbFGkbEaY90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.100.0/22
45.92.148.0/22
62.192.148.0/22
91.241.86.0/23
185.186.92.0/22
185.252.52.0/22
192.166.252.0/24
192.172.232.0/24
192.188.248.0/24
192.207.14.0/24
193.23.114.0/24
194.143.142.0/23
195.88.230.0/23
195.88.234.0/23
217.26.180.0/22
IPv6:
2a0b:7380::/29
2a0c:2140::/29
2a0d:9b40::/29
2a0e:2140::/29
Signature Algorithm: sha256WithRSAEncryption
9b:33:8e:d3:04:32:9b:f4:de:c1:c6:dc:79:76:d5:1e:cb:b5:
54:77:12:db:14:45:dd:34:93:dc:85:93:34:fc:70:a4:40:60:
ef:a8:67:51:94:cf:da:04:ad:0e:42:b1:f1:f9:63:c4:e6:26:
aa:76:2d:db:d0:cd:6c:98:e4:ac:b2:ea:32:fe:c6:f2:31:7b:
88:fa:f7:fd:a7:83:86:85:63:e0:f1:9c:3d:79:42:29:94:b3:
67:42:c5:a5:f4:4b:f8:da:fd:cb:5e:fe:eb:91:82:9f:cb:c3:
4c:34:ec:fd:7f:be:35:32:55:e2:d5:09:12:96:e5:d4:86:7b:
db:46:94:27:7b:1d:2c:6a:8c:07:0a:f6:37:c1:d4:bb:d6:a3:
41:20:75:60:95:6d:e1:05:0a:57:05:32:02:6d:96:b3:f8:d7:
76:87:6f:91:98:a8:2b:48:ec:6f:64:62:e5:c4:a0:88:40:0b:
03:26:76:4a:48:69:fe:37:21:71:5b:63:e6:e5:dc:f1:7a:e5:
e7:46:1d:78:af:75:95:36:3d:9b:12:52:39:39:b0:32:12:df:
93:eb:44:b2:6c:df:82:30:4f:38:32:c2:07:0f:51:cb:66:52:
1a:6a:93:e2:29:e8:a5:ae:89:e5:ea:fa:c7:90:3c:ed:e2:8d:
c4:18:14:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:20 2024 by rpki-client on console-ams.rpki-client.org