Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UUr9lO72Los0s_a0JMbCXPEfNBI.roa
File: UUr9lO72Los0s_a0JMbCXPEfNBI.roa (raw, json)
Hash identifier: 13zWtFbc7IrewxjhSxqqoWMskyBjIVmi2Y4SC4nWmg0=
Subject key identifier: 51:4A:FD:94:EE:F6:2E:8B:34:B3:F6:B4:24:C6:C2:5C:F1:1F:34:12
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018D94F14214EE51D7194766CA93D502B905
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UUr9lO72Los0s_a0JMbCXPEfNBI.roa
Signing time: Sat 10 Feb 2024 21:34:15 +0000
ROA not before: Sat 10 Feb 2024 21:34:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 08:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:94:f1:42:14:ee:51:d7:19:47:66:ca:93:d5:02:b9:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Feb 10 21:34:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=514afd94eef62e8b34b3f6b424c6c25cf11f3412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:30:6a:82:4c:28:dd:84:75:33:ce:0e:ae:2e:
f0:f6:26:eb:63:2c:19:12:bc:9a:93:e2:26:e6:79:
c5:3a:b5:55:fb:2b:1f:75:5c:de:ac:70:bc:2e:3b:
28:bc:5f:06:f1:80:45:20:45:a2:27:c4:0c:01:65:
d0:b2:a2:ac:f2:07:69:24:f2:ac:91:8c:ff:3f:9f:
42:b6:f2:7e:e1:e7:c2:c8:85:70:bb:00:02:35:13:
e1:c3:d3:c2:27:5f:05:ae:ed:a0:d4:6c:6b:08:4d:
95:1c:a6:39:1a:e9:bf:b8:47:90:33:1e:76:e7:de:
2a:3c:96:ae:89:83:0d:fc:c7:8a:25:f9:2a:0a:42:
1f:03:39:c3:5e:5a:68:c7:8c:70:5c:12:3a:b5:3f:
34:10:de:0c:41:0c:f9:00:45:d8:d5:24:ed:c3:89:
e3:02:35:0c:ae:1c:d2:f6:34:f8:dd:aa:e9:a9:dc:
5e:8d:22:34:32:af:10:5a:8e:c3:ab:3e:fa:87:4f:
fc:82:4d:74:3f:f8:3f:04:e5:c6:a4:ad:49:c4:9a:
f7:03:a9:ad:31:34:25:8b:47:b6:94:50:f0:a8:0e:
4d:2d:c0:77:d1:03:ba:ec:cc:a0:26:2f:ef:77:c8:
f6:31:e2:28:23:46:26:9e:7d:91:9a:d1:9e:b8:87:
44:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4A:FD:94:EE:F6:2E:8B:34:B3:F6:B4:24:C6:C2:5C:F1:1F:34:12
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/UUr9lO72Los0s_a0JMbCXPEfNBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
185.199.151.0/24
185.199.213.0/24
185.250.26.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:c1:f4:63:e9:99:d1:82:f0:5b:b6:f3:e9:9a:91:5b:b5:d2:
8e:e9:f0:49:19:f8:ad:16:0a:aa:09:0e:81:0e:85:97:62:91:
b1:95:05:fb:15:92:5d:fd:c7:4d:fa:2d:8e:2d:83:e3:83:34:
7c:eb:2e:42:81:71:9f:d4:aa:d6:97:14:48:75:5c:ce:4e:89:
53:23:e8:b0:ea:4c:fa:4d:89:47:42:a7:01:96:07:bb:85:88:
03:bf:f2:a9:ce:40:fb:c9:0a:ab:37:af:08:54:ad:c5:a2:83:
65:35:88:4b:03:01:58:11:c4:f7:c4:3f:1c:71:72:92:60:23:
c0:aa:db:5b:fe:eb:7d:bb:3e:67:f8:58:51:cd:5b:f3:31:81:
5d:99:0f:51:a8:c7:1a:c0:f1:91:8f:fe:c1:f4:d3:cd:f3:48:
1f:20:64:6e:26:25:45:68:7d:60:bb:72:61:d5:d7:51:6f:bd:
70:71:6b:bc:4d:68:89:99:9d:41:c5:bd:06:b4:0f:47:5e:cc:
fd:ef:9c:2c:7d:d6:15:98:15:f2:cb:34:1f:9c:72:c6:7c:18:
5d:f5:4b:ab:f8:41:09:23:7f:37:45:dc:97:a2:8a:47:5d:22:
a4:73:23:05:90:91:5b:bf:be:f4:74:96:0c:59:85:fb:86:ec:
dc:02:17:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org