Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/i7djMDyNTZbr8wu5x6yNJeSAViI.roa
File: i7djMDyNTZbr8wu5x6yNJeSAViI.roa (raw, json)
Hash identifier: yTs7KAiK7I2d0tfrVV0u4pymu8QSP6W0+efFrtCyLHI=
Subject key identifier: 8B:B7:63:30:3C:8D:4D:96:EB:F3:0B:B9:C7:AC:8D:25:E4:80:56:22
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B090E74391F754C929AAEB792B9CCFEB3
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/i7djMDyNTZbr8wu5x6yNJeSAViI.roa
Signing time: Sat 07 Oct 2023 07:33:43 +0000
ROA not before: Sat 07 Oct 2023 07:33:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.250.25.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
185.221.24.0/24 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Oct 2023 11:10:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:0e:74:39:1f:75:4c:92:9a:ae:b7:92:b9:cc:fe:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 7 07:33:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bb763303c8d4d96ebf30bb9c7ac8d25e4805622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b9:61:9e:e6:cf:4e:8e:00:64:f1:51:61:d4:
3f:f5:90:84:e4:b1:ea:33:04:58:01:98:89:c0:61:
79:03:88:e1:8a:69:a9:7f:3b:64:ae:1d:1c:e9:10:
cd:8d:c5:2a:f6:93:4f:80:cb:0c:9f:08:fe:f3:cd:
dd:44:1d:3c:07:6a:7b:46:e5:04:9b:2c:34:8a:0c:
2d:3e:32:e9:24:59:28:28:6c:79:3a:d0:f7:50:27:
ab:21:26:27:63:8d:9b:4d:53:4d:1d:f6:c8:29:98:
50:0e:a8:61:22:2d:aa:94:6d:66:99:ea:0f:06:af:
0a:8f:4f:6f:18:be:d4:98:6f:95:83:f6:6f:f5:e2:
60:f3:df:f6:f5:5e:3d:4d:e7:9a:59:15:96:b6:50:
8f:5b:0c:25:fd:00:ef:83:d7:5e:de:0d:dd:a8:a1:
5d:9e:6e:27:79:11:de:8f:07:45:6e:94:2e:ce:3a:
1b:2b:22:a1:c7:34:e5:45:79:2b:81:67:6a:fa:7c:
70:b9:fa:e9:71:10:98:15:40:46:39:28:f9:a3:65:
45:73:32:f5:34:4f:0f:76:55:a3:44:e9:3b:ef:3b:
cc:2d:24:74:f6:cf:ca:61:b1:3d:94:ad:04:4f:8e:
f3:59:ce:8f:67:a1:02:e5:fa:2f:7e:91:64:04:04:
bc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:63:30:3C:8D:4D:96:EB:F3:0B:B9:C7:AC:8D:25:E4:80:56:22
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/i7djMDyNTZbr8wu5x6yNJeSAViI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.246.0/23
176.125.250.0/23
185.199.148.0/24
185.199.151.0/24
185.199.212.0/23
185.221.24.0/23
185.225.168.0/22
185.250.25.0-185.250.26.255
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:0e:8a:84:3c:9e:dc:ab:aa:b4:7c:54:dd:40:4e:2e:aa:e3:
b9:12:2b:d6:b5:18:3b:26:61:f8:85:ce:31:13:f0:f3:3d:21:
ca:63:ee:0a:be:9e:ae:5a:92:a5:6e:34:f7:35:42:84:92:88:
40:cd:ab:80:16:f0:92:cf:8c:a2:be:97:a6:e4:9a:fb:11:ed:
7c:1a:65:74:9e:e2:85:bd:f9:1b:e0:08:60:8e:4f:32:12:ce:
51:6e:1f:41:85:e5:bc:f6:fd:68:e8:15:9e:94:2e:64:6a:f8:
81:53:b2:3b:99:55:69:87:8c:ea:66:68:18:81:a6:3c:41:58:
fb:fc:20:fe:6d:31:d7:02:f3:b1:d6:5d:5f:d8:04:61:a6:28:
bd:50:d3:7d:4f:f5:66:d0:84:19:89:a0:25:14:49:fa:78:e6:
0b:bc:95:da:ed:0c:e3:f2:36:3f:82:1c:4c:45:3f:e5:33:f6:
6b:c7:6d:14:e0:08:74:8f:07:9b:99:0d:26:a1:9c:aa:9b:09:
49:39:1a:f3:f9:54:1f:f8:0a:28:e6:14:f9:0e:7f:f6:10:90:
45:73:de:60:d6:e6:2d:0d:09:36:cd:82:c7:c4:b1:7a:a7:b6:
a2:0b:9a:98:93:08:60:22:da:ee:1b:19:3b:16:c7:9e:3d:5c:
79:fa:37:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org