Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ILGjKibkicvbI9sDLsV3en3mt2w.roa
File: ILGjKibkicvbI9sDLsV3en3mt2w.roa (raw, json)
Hash identifier: IL+bi36vBlW63JvM+L1CzRmPzl/2tmf9boKA/75ZJE4=
Subject key identifier: 20:B1:A3:2A:26:E4:89:CB:DB:23:DB:03:2E:C5:77:7A:7D:E6:B7:6C
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018A5D02936CCFA39CFA56B7582457DD1070
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ILGjKibkicvbI9sDLsV3en3mt2w.roa
Signing time: Sun 03 Sep 2023 21:46:04 +0000
ROA not before: Sun 03 Sep 2023 21:46:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.250.25.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
79.98.244.0/23 maxlen: 24
185.221.24.0/24 maxlen: 24
185.221.26.0/23 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 11:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5d:02:93:6c:cf:a3:9c:fa:56:b7:58:24:57:dd:10:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Sep 3 21:46:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20b1a32a26e489cbdb23db032ec5777a7de6b76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bb:d9:bc:a8:9e:c5:45:d1:2d:61:09:68:ff:
c6:4a:17:7f:79:f6:eb:bf:70:35:b9:87:85:e0:d0:
45:67:24:59:06:8e:4e:89:83:aa:9b:08:dd:b1:fa:
62:e9:ca:f5:a4:ba:56:54:52:ab:84:44:a5:ae:7c:
df:c8:5e:7f:ca:01:26:ee:7a:97:aa:30:ce:e9:a7:
df:76:05:64:96:85:8c:cb:8d:5f:ab:53:b7:5d:62:
98:e6:bf:72:36:a9:4c:30:b3:dd:7c:ad:39:d5:40:
26:d1:06:12:3a:b5:cf:6c:b6:43:68:8d:08:20:dd:
ba:1c:ad:54:b7:10:01:15:0b:14:ad:34:73:e8:16:
55:d1:45:1b:6f:ea:91:e8:8e:65:a0:44:bc:4c:79:
ec:66:dc:6e:99:1d:0c:fa:bf:cc:0d:b2:2f:15:59:
b7:84:2a:bd:66:b4:df:1b:a8:c8:f9:3e:ec:47:15:
64:db:72:67:c5:9d:49:ff:1c:b1:17:64:d4:54:f5:
5c:3c:cf:28:01:ea:4a:f1:00:e9:e1:78:bd:e9:01:
41:90:54:84:d6:e1:41:63:23:b9:86:c7:40:39:64:
67:79:eb:9f:a1:ac:0f:1f:58:b7:4b:21:53:ff:66:
ee:22:6c:0a:50:2b:12:6b:92:72:dd:65:d9:22:c0:
c1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:B1:A3:2A:26:E4:89:CB:DB:23:DB:03:2E:C5:77:7A:7D:E6:B7:6C
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ILGjKibkicvbI9sDLsV3en3mt2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
79.98.244.0/22
176.125.250.0/24
185.199.151.0/24
185.199.212.0/23
185.221.24.0/22
185.225.168.0/22
185.250.25.0-185.250.26.255
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:63:5a:1c:a1:c6:0b:eb:80:f6:e3:f4:b8:70:09:8a:c8:ec:
c0:83:8e:5f:23:37:92:bf:62:53:17:1f:5f:da:fb:c4:ee:71:
29:f1:63:b1:eb:b5:d4:23:d7:c7:06:0d:ce:99:16:9e:5f:74:
ac:b3:b4:d1:96:0b:d0:15:6c:dc:b3:f9:46:64:50:d8:7c:c3:
71:ee:1c:cf:ab:76:bc:da:e7:47:b6:49:38:71:73:31:7a:2e:
be:6b:6d:92:ae:09:f0:65:62:bd:06:4f:ce:3a:f7:85:f2:bb:
4a:ed:52:46:13:76:65:fe:53:72:25:3a:f6:8e:18:c6:2f:2d:
53:99:e3:b9:4e:13:42:e8:c8:b1:71:12:44:66:20:0b:18:3b:
f7:50:6b:45:ee:e2:66:c1:18:ff:29:04:1b:52:77:ce:de:02:
06:ce:a6:67:da:99:d5:9a:e7:c7:9f:24:46:cd:b7:47:f2:6b:
e5:0f:12:c2:b7:0f:02:5b:c1:30:4c:85:cc:be:5b:b3:40:20:
38:fa:70:68:79:9e:9d:56:7c:ef:0c:1c:06:17:30:23:2f:0a:
c9:44:2f:f2:9d:bb:5e:7e:58:5e:b9:61:81:5d:0e:64:d0:5a:
16:39:90:3f:33:64:ff:ef:17:9d:b5:3d:95:b6:b0:d6:f3:ed:
b9:f9:78:6d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org