Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/BZjnt43PtvyYMjU_miMMn87rUnQ.roa
File: BZjnt43PtvyYMjU_miMMn87rUnQ.roa (raw, json)
Hash identifier: JlTXHmDpIAFWSRJqflRzhiz4b2OzlU9ce68jXbZ63Ok=
Subject key identifier: 05:98:E7:B7:8D:CF:B6:FC:98:32:35:3F:9A:23:0C:9F:CE:EB:52:74
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018CE164CA775B8C10BEBB2746872C562516
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/BZjnt43PtvyYMjU_miMMn87rUnQ.roa
Signing time: Sun 07 Jan 2024 00:48:48 +0000
ROA not before: Sun 07 Jan 2024 00:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 10:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:e1:64:ca:77:5b:8c:10:be:bb:27:46:87:2c:56:25:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 7 00:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0598e7b78dcfb6fc9832353f9a230c9fceeb5274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:61:81:81:49:52:30:bc:2f:2f:08:6f:7e:e7:
53:59:cf:bd:13:3d:0f:78:b0:ff:c0:85:7a:62:e3:
82:e9:74:a7:72:d3:7a:1d:ce:77:33:ba:12:4b:50:
63:31:16:7e:c3:91:8c:af:e1:08:46:56:97:c6:9e:
64:53:02:cb:6f:0f:c5:d7:7d:2c:1d:d7:08:2d:87:
3c:00:c0:d2:b5:cf:48:4a:d6:50:49:cc:b7:d6:40:
63:50:ff:d2:7b:81:ad:d2:f8:35:3a:31:bf:ae:25:
eb:03:36:ac:e4:1a:dd:7c:cc:ea:59:73:7f:c2:d9:
54:1b:a1:3c:a9:cc:5e:2a:08:ee:f2:d0:a8:66:22:
bb:0b:f4:8b:41:11:df:fa:99:aa:93:ff:63:8c:fb:
bf:e6:43:99:6e:71:c7:80:52:41:96:82:aa:74:ff:
69:b8:4f:f3:b4:e6:ee:e7:5c:29:e5:a2:d6:43:84:
6f:ee:6d:f9:e9:21:9a:c4:fb:67:6d:4d:6f:84:55:
71:91:3a:fe:04:4e:34:9f:55:cd:f4:31:23:9c:7d:
5c:86:6e:f5:a1:57:a9:d0:b2:fe:e7:b0:ed:63:75:
2a:67:50:c8:84:68:05:82:fb:08:c2:d8:6f:7c:37:
97:71:8b:aa:02:99:18:b0:f2:15:72:76:f5:66:7b:
f4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:98:E7:B7:8D:CF:B6:FC:98:32:35:3F:9A:23:0C:9F:CE:EB:52:74
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/BZjnt43PtvyYMjU_miMMn87rUnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
185.199.151.0/24
185.199.213.0/24
185.226.181.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b5:ce:25:1d:62:fe:65:2e:e3:60:22:73:bb:a7:77:5b:38:
62:3b:62:05:dd:2f:30:7c:80:7e:15:2e:b5:33:76:8f:88:8a:
67:a5:44:2a:a6:cb:8e:e5:f0:3e:14:d5:b6:b3:19:4f:d0:13:
df:5e:0c:5a:1e:03:c2:9d:2a:0d:12:50:39:3c:4c:62:ab:37:
68:4f:34:41:3f:49:04:f2:27:a5:5b:1e:cd:ec:e0:ad:8d:35:
4c:f5:98:e9:6a:a7:dc:1e:b5:db:ae:9c:6b:61:f8:e8:c2:f4:
ca:a8:b4:63:ba:0d:b3:8d:13:97:92:10:0b:83:8f:d6:85:fe:
6d:e2:b5:3a:10:87:54:62:d3:20:cb:15:10:96:9d:63:3a:e6:
10:3e:93:6e:9f:a9:da:c6:0d:e9:17:41:db:d4:65:e4:04:af:
fa:67:fe:b4:81:6e:9a:41:1d:38:5d:f1:ac:23:59:ab:18:ba:
9e:6c:03:b6:ac:4a:28:13:c7:e2:62:21:22:e8:c9:14:18:a9:
fa:cc:ae:94:d0:a9:70:95:dc:13:49:f5:b6:a9:1d:0f:7e:38:
bc:0e:f1:8a:80:9e:dc:20:c0:fc:a8:5c:eb:e5:5c:4e:fe:9d:
7c:ff:da:6d:e9:09:c1:ce:42:e3:8d:d7:82:37:00:30:da:cb:
df:e5:d9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org