Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-dUSEbVS7KHSAnpMA28UkAkju80.roa
File: 1-dUSEbVS7KHSAnpMA28UkAkju80.roa (raw, json)
Hash identifier: rT7dOrqSFiAYfMZgvwaVFD3zzsCnWKZ4yUtZ+8QZFQQ=
Subject key identifier: F9:D5:12:11:B5:52:EC:A1:D2:02:7A:4C:03:6F:14:90:09:23:BB:CD
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0189CF447877BA0F8CEE5B807373CE6FE20B
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-dUSEbVS7KHSAnpMA28UkAkju80.roa
Signing time: Mon 07 Aug 2023 09:11:58 +0000
ROA not before: Mon 07 Aug 2023 09:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 18:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:44:78:77:ba:0f:8c:ee:5b:80:73:73:ce:6f:e2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Aug 7 09:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9d51211b552eca1d2027a4c036f14900923bbcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:45:c5:42:f5:77:d8:47:a7:58:b8:6f:fa:5f:
d3:fa:77:61:df:3b:3f:80:b6:7d:22:96:a9:7b:01:
d3:87:b7:e7:38:34:33:d5:94:de:05:44:c5:48:df:
42:15:20:b8:4b:ba:20:35:00:aa:4d:6c:6e:09:67:
68:87:f7:68:62:37:51:90:dd:3c:ec:75:ff:85:85:
d6:f6:ba:c3:f8:71:9f:5c:e6:7d:c6:fa:33:07:03:
49:dd:97:03:d0:5c:79:68:ac:cb:ce:87:69:80:a2:
01:36:eb:c6:37:21:31:99:9b:ea:ef:85:de:83:e2:
9a:2a:04:07:f0:49:23:97:87:af:b2:59:4f:30:aa:
97:86:24:47:9f:ca:6f:cd:c7:a4:ad:e5:a2:72:f8:
7e:97:cb:3d:e4:1b:0b:af:6d:aa:ea:ae:52:d4:05:
e5:d6:b9:88:74:0d:01:f5:d4:84:cf:68:0f:e2:a5:
63:7a:31:05:06:81:31:da:a9:88:57:4e:4b:f6:7d:
dd:03:b4:c1:6d:22:9e:56:62:4a:44:6b:7d:91:0f:
fb:61:27:96:29:a0:0a:d2:0a:22:28:c1:23:04:15:
f9:f7:5e:4f:ce:9d:54:b0:5e:5e:c5:0a:a3:84:9f:
8c:65:5f:f6:f5:b4:1c:77:db:01:3b:f3:dc:d4:fe:
b7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D5:12:11:B5:52:EC:A1:D2:02:7A:4C:03:6F:14:90:09:23:BB:CD
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/1-dUSEbVS7KHSAnpMA28UkAkju80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
79.98.247.0/24
176.125.250.0/24
185.199.151.0/24
185.199.212.0/23
185.221.25.0/24
185.225.168.0-185.225.170.255
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:17:fa:e8:70:a1:24:4d:52:2d:5a:27:e5:55:3c:17:eb:aa:
f0:41:82:34:f9:86:40:36:48:96:2f:52:2c:26:71:9a:dc:9d:
31:84:16:6c:a5:66:69:c8:70:61:c4:6b:33:b4:68:9c:d7:ec:
6a:67:a0:09:df:5d:30:f7:56:0d:74:5b:0d:bb:38:17:4a:97:
a0:11:c2:25:1c:2e:91:84:06:b4:09:82:af:1e:8e:8b:27:fd:
06:0f:91:31:78:ea:45:3d:08:d9:fb:ef:f1:55:9d:76:2f:46:
8f:59:d8:37:e5:11:c9:e4:4a:f4:18:ad:34:24:2b:cd:c5:93:
93:ca:80:45:7e:f4:17:f8:f1:0b:ed:33:7b:90:ba:d5:bd:7b:
b6:51:f9:d6:24:90:03:f1:ea:e1:8a:7c:7f:3c:23:07:05:4b:
ad:09:a5:0b:bf:74:1c:b5:ef:97:6d:43:b1:46:79:f4:50:49:
26:b1:1a:84:00:3f:06:ec:42:6e:e6:0c:e3:cb:d4:a6:71:10:
bf:3d:27:8c:bc:7a:8a:64:0e:bc:6f:ae:51:2b:b7:39:ba:23:
7c:c9:4a:c7:44:41:7b:c2:e6:02:58:16:cc:9d:fc:9f:74:94:
be:00:c1:ad:16:d4:80:02:3c:44:3b:ed:ec:83:e1:66:df:ef:
7c:ba:d6:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:34 2024 by rpki-client on console-ams.rpki-client.org