Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/mQlJh1jb5v9By0AvFZmzk-5YjTU.roa
File: mQlJh1jb5v9By0AvFZmzk-5YjTU.roa (raw, json)
Hash identifier: zhgTDdLPPNlRf9tu36BWLOAd+cPzZMFrvvjdbi/fsiY=
Subject key identifier: 99:09:49:87:58:DB:E6:FF:41:CB:40:2F:15:99:B3:93:EE:58:8D:35
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 0188F77D30032CE4CDD13E58686144733337
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/mQlJh1jb5v9By0AvFZmzk-5YjTU.roa
Signing time: Mon 26 Jun 2023 11:35:56 +0000
ROA not before: Mon 26 Jun 2023 11:35:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
45.89.236.0/22 maxlen: 24
193.163.72.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:1::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 06 Jul 2023 16:12:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:7d:30:03:2c:e4:cd:d1:3e:58:68:61:44:73:33:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jun 26 11:35:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9909498758dbe6ff41cb402f1599b393ee588d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:56:51:b1:97:0e:29:54:16:70:b0:81:0c:08:
12:f4:dd:0d:7d:f9:b6:eb:60:f3:20:91:f7:8d:32:
e4:b4:3d:8f:79:28:fc:a5:49:52:50:51:9d:36:e6:
e7:89:8b:d1:59:9c:4e:d1:fd:b9:8e:35:90:cf:d5:
ab:07:9a:ed:51:76:21:fc:96:cb:67:ef:34:68:87:
61:ad:2e:a6:fc:cc:2d:40:15:d5:ae:54:36:c3:19:
e7:d5:58:9a:92:81:79:b9:71:8c:37:7d:d9:44:9f:
1d:2a:fa:33:22:ff:01:d0:c0:c0:00:d8:ac:89:b5:
50:5e:38:c4:f5:d9:83:f5:76:78:df:55:96:a2:6f:
9c:b5:46:a6:24:33:0c:14:aa:ae:d0:53:0e:6b:82:
c4:a3:d6:90:0c:2b:33:26:d7:50:bd:f3:b6:9f:26:
fe:19:94:19:ee:ff:86:53:20:96:da:0f:a2:b7:c8:
8d:80:df:e3:4b:9e:03:a3:cc:6f:0f:fd:7d:00:11:
6a:2e:ad:1a:fc:89:bc:1c:03:6f:19:da:7b:9f:38:
1e:1d:ce:33:43:14:dd:25:88:4f:e9:cb:f3:cb:48:
be:2d:25:67:9f:9c:20:49:11:2b:0f:e8:ec:93:5c:
a2:dd:00:cf:93:5e:16:4c:07:ff:65:15:38:d9:fb:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:09:49:87:58:DB:E6:FF:41:CB:40:2F:15:99:B3:93:EE:58:8D:35
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/mQlJh1jb5v9By0AvFZmzk-5YjTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.236.0/22
45.93.168.0/22
185.182.105.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
5b:6e:d7:f9:1a:7b:d0:3d:d2:b3:fc:00:3b:0c:e5:ab:90:7c:
f8:8e:64:c5:ab:7c:ba:c4:ca:2f:7e:c0:ae:57:aa:f1:40:e6:
b5:2f:65:30:11:a3:b6:61:fb:ab:2b:ad:e0:63:f0:40:10:89:
e0:99:09:0b:26:a5:a9:d3:a7:07:a4:4c:30:b7:b2:b1:7b:28:
08:9a:9f:9f:db:96:bd:6a:98:75:4b:ad:91:f3:53:09:78:50:
f1:2f:6c:e4:ab:93:76:6e:b0:5e:9c:4f:87:65:c9:84:c9:1a:
a5:19:4a:08:0f:d5:9c:c0:3b:76:d8:d9:bd:bb:e8:2e:70:dd:
03:6f:4c:2a:03:ac:7d:70:ff:22:7b:a7:8a:1b:7c:1c:07:51:
9c:c7:dd:ce:75:b5:d6:a3:5c:e2:5b:16:a2:d5:56:df:84:00:
05:5f:bd:58:cd:ed:46:28:2f:ea:79:7f:29:e8:29:21:10:71:
11:4d:62:05:de:55:48:da:cd:15:f6:ca:69:09:d0:49:33:0d:
b5:00:17:11:40:64:1b:73:fb:45:1a:70:5c:d1:1e:4e:58:fe:
6a:d3:d0:83:28:5d:d0:2d:60:63:20:ed:98:02:3e:de:f3:8e:
55:eb:c5:15:f3:93:12:64:fe:c2:40:92:8f:0f:d6:6d:fc:4c:
66:c7:ff:05
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org