Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/WiYy60oT8wRHuke10xaWUy3QET0.roa
File: WiYy60oT8wRHuke10xaWUy3QET0.roa (raw, json)
Hash identifier: qJJLMnqaXHsapRkLZK323J/p+yOI0Pf01lwCF9WPAJQ=
Subject key identifier: 5A:26:32:EB:4A:13:F3:04:47:BA:47:B5:D3:16:96:53:2D:D0:11:3D
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018BA62AFAE138365C5FD22F247EB320F585
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/WiYy60oT8wRHuke10xaWUy3QET0.roa
Signing time: Mon 06 Nov 2023 19:45:16 +0000
ROA not before: Mon 06 Nov 2023 19:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/23 maxlen: 24
45.157.211.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/23 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/23 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.245.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
79.98.244.0/24 maxlen: 24
185.221.24.0/23 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a6:2a:fa:e1:38:36:5c:5f:d2:2f:24:7e:b3:20:f5:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Nov 6 19:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a2632eb4a13f30447ba47b5d31696532dd0113d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:3f:ed:91:0c:14:a2:89:2c:d5:4d:23:8c:74:
7b:e2:92:e2:f8:5e:b3:47:37:8b:86:32:ec:1e:2a:
3c:3f:e1:30:96:e2:f8:26:34:de:95:d8:19:85:9a:
35:35:46:2e:8c:f1:53:a7:5c:7e:bb:2a:eb:6c:7d:
dd:3b:b3:f8:1b:ea:f5:06:e6:60:c1:65:5f:d7:a1:
c5:3b:b5:12:2c:34:7e:ae:27:e4:f5:b5:f0:72:e9:
0d:08:89:38:72:88:a7:7c:82:76:44:ba:92:4a:16:
8a:eb:f7:2d:50:f0:9d:a9:8c:db:a5:5f:a3:f9:56:
2b:76:02:97:41:98:93:ee:a1:1e:bb:ed:ef:7f:8b:
26:6d:c3:c6:6f:31:ef:d2:72:ea:3c:c8:58:33:08:
3b:03:27:2c:df:5a:c9:0a:ae:c0:8b:f7:ab:1f:99:
05:12:7b:cc:d9:e0:1c:d5:65:f3:4d:58:19:94:5d:
87:a3:3d:d0:af:ae:f7:72:24:99:5b:c5:6f:0a:18:
23:a7:03:c0:68:cf:bf:14:5e:1a:ba:85:a7:7f:27:
58:5c:e6:5f:cb:72:c8:12:85:ef:5f:d7:ed:d0:f9:
06:b6:b9:ca:8b:8a:3b:28:c9:46:7c:84:ed:3b:ab:
84:09:90:51:60:d2:61:e8:78:b4:0c:d0:36:14:49:
9b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:26:32:EB:4A:13:F3:04:47:BA:47:B5:D3:16:96:53:2D:D0:11:3D
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/WiYy60oT8wRHuke10xaWUy3QET0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.244.0/22
176.125.250.0/23
185.199.151.0/24
185.199.212.0/23
185.221.24.0/23
185.225.168.0/22
185.226.181.0/24
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
71:14:ba:5c:e0:13:55:f1:b9:c1:ab:82:f2:b9:7e:b5:e0:61:
f6:5c:ff:d8:16:91:21:b3:a1:9e:4c:1f:f2:3c:b5:a5:6c:10:
b1:26:07:8e:ab:7f:fe:7f:9f:66:65:8d:67:12:87:02:95:79:
dd:a1:8a:1e:20:91:16:5d:c2:e3:d9:1a:89:14:7c:d7:3f:64:
b5:9e:a0:de:fa:d2:fb:e3:f4:b7:4d:26:d6:7a:f0:71:1d:3e:
94:19:d5:90:32:bb:4c:d2:2a:ba:0b:a1:33:f9:22:cc:2c:9e:
be:17:5e:a3:3d:cd:b5:d5:90:bf:a5:16:6f:c3:0e:52:15:05:
44:0e:9c:af:80:9e:62:68:ae:a5:18:9b:00:57:86:65:ed:b3:
1c:6d:63:cd:56:de:63:32:45:9f:9c:0c:dd:f2:4c:8c:b8:7f:
b3:76:33:c1:5a:d2:89:0a:34:86:b0:8f:e6:b9:40:61:8f:f4:
42:8b:4b:8a:fe:aa:80:df:92:a6:a0:cc:e4:50:be:9b:c4:e4:
be:37:78:de:ee:98:a0:07:04:b1:20:c0:e7:7f:d6:cf:df:8a:
78:9d:1f:d3:5a:06:87:7d:20:74:15:d1:9b:de:7a:85:38:c7:
a1:b0:5c:5b:b9:8a:b1:1f:08:21:6d:4a:07:7f:1b:fa:1a:d6:
02:dd:af:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 9 21:52:55 2023 by rpki-client on console-fra.rpki-client.org