Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/s5jALRxqqApl7VpQu_9n4GNKTrs.roa
File: s5jALRxqqApl7VpQu_9n4GNKTrs.roa (raw, json)
Hash identifier: 8Uy2NZXCCXJTZ3Pwg5yAOkI0AAgMwwWIhXD9MN7E/xk=
Subject key identifier: B3:98:C0:2D:1C:6A:A8:0A:65:ED:5A:50:BB:FF:67:E0:63:4A:4E:BB
Certificate issuer: /CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Certificate serial: 018C10D67E95EBED165BF2571BC20390FA90
Authority key identifier: 7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/s5jALRxqqApl7VpQu_9n4GNKTrs.roa
Signing time: Mon 27 Nov 2023 12:52:21 +0000
ROA not before: Mon 27 Nov 2023 12:52:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203067
IP address blocks: 185.145.49.0/24 maxlen: 24
185.145.50.0/24 maxlen: 24
185.145.48.0/24 maxlen: 24
185.145.51.0/24 maxlen: 24
46.175.51.0/24 maxlen: 24
46.175.48.0/22 maxlen: 22
46.175.48.0/24 maxlen: 24
46.175.49.0/24 maxlen: 24
46.175.54.0/24 maxlen: 24
46.175.52.0/24 maxlen: 24
46.175.53.0/24 maxlen: 24
46.175.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:d6:7e:95:eb:ed:16:5b:f2:57:1b:c2:03:90:fa:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a362d783284659dc04eedaf8b8a6fe6e930bd27
Validity
Not Before: Nov 27 12:52:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b398c02d1c6aa80a65ed5a50bbff67e0634a4ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f0:bb:aa:4a:78:d4:58:2a:17:b9:df:e4:b2:
af:f2:43:4c:53:30:9e:ca:c0:5c:2d:a0:1d:ce:27:
7a:66:74:01:ec:33:33:5d:69:94:0e:b0:4f:2a:f7:
fc:04:49:f1:1e:5e:4b:bf:ff:60:49:77:b9:06:bb:
83:8d:87:42:69:4d:10:9a:ab:84:7d:66:f3:8e:6e:
9e:03:32:61:a7:ac:8c:1e:4e:85:93:88:ac:a6:5d:
ed:5a:61:3f:f0:10:db:9c:42:84:02:98:8b:95:ee:
09:e9:a0:2b:99:b9:15:8b:0b:b4:84:e9:a4:c9:b4:
6e:65:50:d7:0b:3a:a8:f7:e9:bc:cf:42:3f:a1:fb:
31:a3:be:39:be:12:58:0e:28:8a:56:50:a8:ef:44:
ba:c6:b1:5b:7f:ca:b0:0c:04:dd:c9:d1:4c:b4:68:
53:49:aa:95:9e:99:b2:df:16:8a:ad:c1:9b:be:af:
cb:e1:fe:e1:30:d0:5a:75:24:25:0e:09:ed:9c:df:
23:c1:ed:d3:7a:c2:3b:0b:5d:8d:12:09:94:e0:29:
86:ef:6d:ad:10:21:5b:69:c7:7c:da:52:ef:a7:19:
b8:3a:08:fc:44:ee:27:2a:b0:49:0b:3d:d2:99:65:
cc:82:3f:d5:8e:26:76:3f:e8:c3:2e:ed:17:d9:d7:
3d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:98:C0:2D:1C:6A:A8:0A:65:ED:5A:50:BB:FF:67:E0:63:4A:4E:BB
X509v3 Authority Key Identifier:
keyid:7A:36:2D:78:32:84:65:9D:C0:4E:ED:AF:8B:8A:6F:E6:E9:30:BD:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejYteDKEZZ3ATu2vi4pv5ukwvSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/s5jALRxqqApl7VpQu_9n4GNKTrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/be68b9-9b62-4b3e-a6a4-865031fa0bf7/1/ejYteDKEZZ3ATu2vi4pv5ukwvSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.48.0/21
185.145.48.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:c1:4d:57:17:db:ca:12:ef:c5:bf:2b:f6:0d:3b:4e:89:86:
2c:eb:d8:40:3b:c3:83:30:59:e4:c7:47:0c:cc:30:2d:98:39:
03:7e:f4:3a:fe:57:43:61:21:b3:d8:36:6b:ce:fc:59:bd:7c:
a5:dd:b3:0c:78:10:17:db:71:8a:06:1b:19:d5:13:c2:92:68:
d4:7b:c3:df:d7:6b:88:a2:d6:62:55:b2:6b:7f:7a:53:6e:5d:
ed:c8:91:b4:46:59:23:22:3d:99:4e:a0:0d:25:76:e4:de:bc:
99:a9:27:f7:76:0f:4b:51:33:26:1b:24:e5:57:f5:9a:f3:bd:
eb:d7:a3:b5:89:34:b7:3f:09:66:2c:d3:8a:8e:ec:0f:ff:37:
91:fd:51:29:15:62:51:34:9b:c2:81:7f:b2:86:a9:78:94:47:
39:f4:ee:81:3a:b1:62:ef:a8:23:d9:21:67:20:9c:93:e4:96:
b2:f7:be:a7:97:4e:63:98:d4:c2:d9:d5:3b:1b:6f:ff:17:8c:
ce:63:89:12:ec:e8:04:35:14:39:49:fc:37:9d:ac:e0:1b:b9:
e4:4f:96:22:0b:a1:04:68:6e:e4:13:b2:81:4d:d9:b0:81:b8:
d4:e4:30:e6:44:1b:42:c6:26:57:c5:3c:23:56:ee:6e:1a:51:
f6:5d:9d:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:52 2024 by rpki-client on console-fra.rpki-client.org