Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/tmtHSRkqs5duZsOfhsHIjc7sezA.roa
File: tmtHSRkqs5duZsOfhsHIjc7sezA.roa (raw, json)
Hash identifier: eVHd9y/VC+UzfSCBHTGcDaspkANTo16eKQIX1guVFvo=
Subject key identifier: B6:6B:47:49:19:2A:B3:97:6E:66:C3:9F:86:C1:C8:8D:CE:EC:7B:30
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 018CB10006FD68755CAA49EC4E4EF9B8BD3D
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/tmtHSRkqs5duZsOfhsHIjc7sezA.roa
Signing time: Thu 28 Dec 2023 15:16:58 +0000
ROA not before: Thu 28 Dec 2023 15:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.155.52.0/22 maxlen: 32
45.91.52.0/22 maxlen: 32
195.16.74.0/24 maxlen: 24
45.150.64.0/24 maxlen: 32
45.150.67.0/24 maxlen: 32
45.150.65.0/24 maxlen: 32
45.140.166.0/24 maxlen: 32
5.181.20.0/24 maxlen: 32
45.140.167.0/24 maxlen: 32
5.181.22.0/24 maxlen: 32
5.181.21.0/24 maxlen: 32
185.234.247.0/24 maxlen: 32
5.181.23.0/24 maxlen: 32
45.144.29.0/24 maxlen: 32
45.144.28.0/24 maxlen: 32
45.144.31.0/24 maxlen: 32
45.144.30.0/24 maxlen: 32
45.14.244.0/24 maxlen: 32
45.14.246.0/24 maxlen: 32
45.14.245.0/24 maxlen: 32
45.14.247.0/24 maxlen: 32
45.140.147.0/24 maxlen: 32
45.140.146.0/24 maxlen: 32
146.19.230.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b1:00:06:fd:68:75:5c:aa:49:ec:4e:4e:f9:b8:bd:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Dec 28 15:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b66b4749192ab3976e66c39f86c1c88dceec7b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:3a:db:e5:a1:01:cc:99:9c:0a:a1:2a:e1:
5d:94:3e:eb:06:5a:0a:22:9b:9f:c4:c5:9f:78:6a:
f8:42:d8:5a:62:67:6b:90:f1:91:1e:a6:84:b1:64:
93:56:4d:4f:a1:cc:83:58:7c:b2:17:c3:b8:8e:ca:
b9:cf:33:6b:34:49:10:38:53:cb:22:86:ce:d0:36:
95:79:86:09:38:1a:8f:eb:a7:25:12:46:b9:77:56:
17:c6:0e:6e:20:09:c8:62:bc:98:83:e3:f8:4e:ec:
2d:02:a3:a0:3c:c4:7f:3a:39:d9:2a:18:20:13:58:
1e:e3:ec:61:ba:e7:e4:e2:63:64:39:ef:5a:e5:ec:
9a:6b:31:df:48:5b:ca:96:1a:2a:97:f3:16:2f:92:
3f:fb:ba:c0:5c:29:fe:dd:91:b5:68:2b:e8:33:70:
c3:52:21:ac:70:b1:18:af:7c:fc:c5:d3:60:b7:a0:
de:6f:b7:ae:2d:a7:7e:89:66:66:f9:5d:90:c4:02:
b1:69:a9:a0:3d:29:93:45:fd:c8:4b:23:2e:dd:d6:
72:bf:93:15:5f:2d:e4:ef:0a:fd:fb:02:66:97:cf:
81:8e:ee:21:74:fe:97:bc:8c:97:97:10:48:e4:7c:
6b:c6:5c:bf:20:bd:77:14:89:d6:ec:41:5b:10:69:
9b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6B:47:49:19:2A:B3:97:6E:66:C3:9F:86:C1:C8:8D:CE:EC:7B:30
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/tmtHSRkqs5duZsOfhsHIjc7sezA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.20.0/22
45.14.244.0/22
45.91.52.0/22
45.140.146.0/23
45.140.166.0/23
45.144.28.0/22
45.150.64.0/23
45.150.67.0/24
45.155.52.0/22
146.19.230.0/24
185.234.247.0/24
195.16.74.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:6e:0b:5f:88:a9:32:af:8a:72:fe:af:c8:73:9d:c2:7e:1d:
e7:85:89:ba:8c:cb:5f:df:07:62:5b:ae:15:ad:c3:ab:92:f0:
32:5d:05:c4:da:ac:88:85:c8:dc:40:ea:61:46:4b:8d:79:9a:
df:6f:85:8b:31:ae:70:70:9b:2b:9d:05:4a:33:7c:ea:b1:40:
7f:ae:33:1b:7f:8d:3c:5c:18:c0:ca:f1:5a:b3:5e:fc:a6:97:
95:4b:1a:8c:d0:10:e3:12:e7:41:b2:df:8d:c2:0d:14:4f:d2:
2f:15:42:d4:fc:33:00:a3:fc:eb:c9:3f:0a:14:19:ec:7b:a8:
8d:6e:cf:5e:08:91:99:76:9a:10:ef:6f:fe:05:2a:c2:df:57:
04:9d:3a:96:95:a8:f7:5d:e0:65:66:36:02:06:b1:aa:f7:2d:
ae:89:a2:0b:22:10:6c:7d:93:ba:c8:a6:f8:d9:c6:e7:c2:86:
58:75:39:59:34:96:84:3b:c4:5a:7a:1d:dc:44:19:b6:c8:f6:
44:01:41:60:8e:6b:5e:8d:a9:e9:ca:40:3e:77:b7:24:97:32:
2b:f3:fa:05:5c:91:ff:02:3d:70:7b:01:d2:c9:5f:e7:84:e6:
d9:7e:7e:6d:7d:ab:c4:f7:8b:a8:24:91:64:da:9b:35:65:cd:
24:65:d7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:29 2024 by rpki-client on console-ams.rpki-client.org