Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/P2u7uiwaurWyMq-6_HgyLji-YNc.roa
File: P2u7uiwaurWyMq-6_HgyLji-YNc.roa (raw, json)
Hash identifier: xkVZNvF6SxpLV0NEROEp+otNpIbSGPLnQ0yNugp2L5w=
Subject key identifier: 3F:6B:BB:BA:2C:1A:BA:B5:B2:32:AF:BA:FC:78:32:2E:38:BE:60:D7
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188016F448B48B5BF82CA67ADB59DCE5D07
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/P2u7uiwaurWyMq-6_HgyLji-YNc.roa
Signing time: Tue 09 May 2023 16:54:09 +0000
ROA not before: Tue 09 May 2023 16:54:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.254.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
45.157.210.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.199.149.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.180.0/24 maxlen: 24
45.155.253.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
79.98.246.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 08:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:01:6f:44:8b:48:b5:bf:82:ca:67:ad:b5:9d:ce:5d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 9 16:54:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f6bbbba2c1abab5b232afbafc78322e38be60d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:70:f7:1e:ca:d4:87:d2:05:bf:f9:a2:be:
41:18:49:75:75:b1:a7:be:7d:a6:dc:c6:a1:13:ce:
04:ed:ae:9e:c9:46:90:aa:68:4e:a5:ab:2e:34:e4:
95:94:e2:09:ac:0f:a0:20:b1:e6:62:0a:c5:66:cf:
9d:73:ce:49:dd:98:0c:54:cb:62:07:b0:f8:e2:b5:
4d:5b:ad:88:95:f0:c2:6e:23:0f:2c:b2:99:de:1e:
03:97:9d:1f:b0:52:36:47:fc:3f:23:ad:df:1f:3c:
7c:b5:dc:56:f7:bd:f6:71:57:05:ea:b4:a6:ce:ed:
60:c1:c4:5a:3d:e9:48:5b:70:80:f9:ac:aa:27:31:
27:56:24:2a:ab:ba:d8:4a:29:0e:2b:c9:4c:4c:99:
5a:54:55:4a:c9:ef:8a:f0:c9:0e:9b:dd:3e:7f:27:
6b:48:a0:b2:0b:5c:d6:13:48:88:6f:9a:06:0f:29:
4c:a6:d3:ec:f8:67:cf:68:e1:14:08:d8:5e:7d:ef:
e0:59:52:04:7a:0e:fc:63:70:83:09:ce:2a:09:2c:
1d:d6:00:63:d8:ac:b0:b8:5a:27:f6:cb:33:fd:cb:
e3:b1:b1:92:a8:b6:6d:5d:6d:a6:3a:a2:88:6b:59:
aa:0d:e8:65:14:43:1a:ea:b8:d6:6e:ab:1e:47:e1:
68:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6B:BB:BA:2C:1A:BA:B5:B2:32:AF:BA:FC:78:32:2E:38:BE:60:D7
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/P2u7uiwaurWyMq-6_HgyLji-YNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0-45.155.254.255
45.157.210.0/24
79.98.246.0/23
185.199.148.0/23
185.199.212.0/24
185.225.170.0/23
185.226.180.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
98:48:a7:9f:51:1e:6e:2e:4a:2c:c0:7c:ab:60:61:38:53:c3:
75:ed:b2:01:bc:b1:6c:d9:76:6e:cd:39:3a:a5:b3:d8:0e:b8:
9e:c4:44:88:8b:76:dd:d4:e9:de:ae:c1:02:42:bc:ac:64:0f:
2f:28:93:59:b7:b7:33:c5:b7:a1:6e:b0:99:c5:2b:bd:9d:be:
63:ba:30:1b:7b:c9:1e:ba:06:f4:51:f6:36:b8:29:5c:0d:16:
78:25:ab:42:ea:5c:4b:5a:dc:d7:e8:b3:d2:81:d2:70:1a:52:
7d:d1:3b:36:5d:bb:a2:49:56:96:e1:a0:3a:41:06:4e:1b:43:
f4:57:ab:cd:56:94:95:8f:e8:62:0c:04:4c:92:40:6d:78:5b:
7c:fc:8c:59:31:37:42:0c:ec:ff:0a:d1:77:0e:aa:52:d1:9d:
09:b0:98:e4:42:53:1e:fa:9d:91:8e:4d:70:b6:a2:4b:91:b9:
0c:c0:02:e9:31:49:74:af:1e:b4:47:a4:fb:12:cd:38:46:92:
46:22:4f:d8:bd:bb:6c:9f:5e:eb:cb:ee:9d:3f:43:2f:24:79:
0f:4f:46:f1:16:29:8c:bb:e4:a6:0d:8f:87:33:5b:5f:68:7e:
c5:e0:47:6e:7c:41:8d:d4:88:2c:37:05:55:eb:a9:75:0e:7c:
f7:df:4a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org