Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4e3_B9X2SFPsYJJQTywFUev6Uz8.roa
File: 4e3_B9X2SFPsYJJQTywFUev6Uz8.roa (raw, json)
Hash identifier: tuQY/+p86mO6ctKlpdKsaD2ZIfO1+4LulaoxU51sXjU=
Subject key identifier: E1:ED:FF:07:D5:F6:48:53:EC:60:92:50:4F:2C:05:51:EB:FA:53:3F
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 01897CFC76CC87D4CA09D966D73CA91AE111
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4e3_B9X2SFPsYJJQTywFUev6Uz8.roa
Signing time: Sat 22 Jul 2023 09:44:27 +0000
ROA not before: Sat 22 Jul 2023 09:44:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.245.0/24 maxlen: 24
79.98.246.0/24 maxlen: 24
79.98.244.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jul 2023 18:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7c:fc:76:cc:87:d4:ca:09:d9:66:d7:3c:a9:1a:e1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jul 22 09:44:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1edff07d5f64853ec6092504f2c0551ebfa533f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:95:e4:67:81:08:07:41:58:44:ba:67:02:37:
35:94:a1:d1:33:0e:ce:54:ce:54:ef:ae:ab:dc:95:
f6:60:55:f1:c3:f4:af:11:b1:a4:0f:ca:20:f3:03:
e3:01:a5:ab:7d:65:f2:90:5e:bd:8c:ad:15:a9:b0:
19:32:86:a2:aa:bb:01:82:93:ae:db:1d:a2:86:69:
e6:79:b4:69:4a:3f:11:8c:ee:1b:fd:08:f4:8f:90:
61:c3:f8:4a:9b:72:1a:c9:27:ff:a0:72:6f:20:f8:
24:09:51:30:58:d1:17:41:b8:d7:62:80:50:cb:f0:
8a:db:25:07:68:b7:a3:bd:48:fc:c4:4b:47:32:6c:
af:4d:45:e8:b9:2a:52:54:2d:f8:6f:6c:23:a8:32:
dd:d8:6f:9a:ae:11:96:7a:aa:a8:24:62:7d:c9:ed:
3d:b0:d9:67:a7:c7:12:2a:9d:24:e9:37:ba:dc:b2:
c7:c9:12:a0:46:df:07:37:cb:37:a0:db:13:21:53:
a3:b6:45:0c:39:ab:c2:c1:78:69:49:00:7c:23:55:
c0:62:c5:a2:43:f5:92:a0:08:12:0f:c2:3d:de:89:
12:80:56:2d:8a:75:c8:1c:08:a3:29:5c:c9:de:7d:
3d:86:09:0c:d9:c9:99:74:d4:be:2c:35:5a:cf:bc:
1e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:ED:FF:07:D5:F6:48:53:EC:60:92:50:4F:2C:05:51:EB:FA:53:3F
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/4e3_B9X2SFPsYJJQTywFUev6Uz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.244.0/22
185.199.151.0/24
185.199.212.0/23
185.225.168.0/22
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:96:02:f2:f7:a9:f8:de:b1:a7:9d:39:7b:f3:4a:2d:9e:5b:
28:00:c4:f7:c9:73:d1:c3:b9:83:03:ef:61:a1:3e:f9:94:61:
d5:0e:0b:be:28:72:26:95:c3:a5:f1:d9:e2:0d:53:94:28:50:
a9:f1:29:8a:27:4f:17:5a:9a:5d:ea:e3:79:b0:b1:67:70:78:
77:22:55:78:fd:fc:27:9f:87:5b:6f:b9:4c:e6:6b:12:3e:d7:
38:d4:08:c5:ff:ff:f9:44:d1:7d:f7:fd:18:14:97:f1:cb:a9:
9d:f0:3c:72:47:04:8a:65:6b:ec:85:e2:62:ce:9c:c2:4d:e2:
ce:ce:a1:ce:fb:ae:7b:5a:a5:28:3a:db:09:5d:61:b1:94:0d:
78:14:61:bd:65:80:4a:d3:17:00:bd:74:d9:ea:9e:38:e4:12:
4b:00:54:d1:64:84:8c:7d:01:aa:84:a4:68:12:54:1e:fb:e5:
13:55:74:79:e9:97:15:40:51:d7:6a:95:7a:1d:44:7b:c1:0a:
3b:ee:5c:5e:e5:bf:65:3b:01:58:03:7f:60:45:73:8f:0b:21:
19:16:95:0a:c5:9a:6d:49:78:af:70:38:fa:0c:d1:29:e4:a4:
1a:69:26:69:8c:d0:00:32:42:2e:6b:65:05:91:c2:c5:d6:dd:
1a:4a:80:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org