Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/iRwrGsR-ftQTs5CUUR_OEDsIR60.roa
File: iRwrGsR-ftQTs5CUUR_OEDsIR60.roa (raw, json)
Hash identifier: xCpCKt9KjjCg+WfjK8R8/dcv6p1IPDKMOMXYfllo8kU=
Subject key identifier: 89:1C:2B:1A:C4:7E:7E:D4:13:B3:90:94:51:1F:CE:10:3B:08:47:AD
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B6318C3452DD9CC6189968D1060B1C2A2
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/iRwrGsR-ftQTs5CUUR_OEDsIR60.roa
Signing time: Tue 24 Oct 2023 19:10:49 +0000
ROA not before: Tue 24 Oct 2023 19:10:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/23 maxlen: 24
45.157.211.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.250.25.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/23 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/23 maxlen: 24
185.225.169.0/24 maxlen: 24
185.250.24.0/24 maxlen: 24
79.98.245.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
185.221.24.0/23 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 17:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:63:18:c3:45:2d:d9:cc:61:89:96:8d:10:60:b1:c2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 24 19:10:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=891c2b1ac47e7ed413b39094511fce103b0847ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:51:c2:f0:0e:8b:91:5f:e2:e2:b1:ac:c3:94:
44:8c:73:57:8b:36:70:e1:41:84:af:9e:56:36:51:
5f:b6:07:6e:7b:a7:72:50:c7:47:03:1c:95:61:b8:
8a:cd:8a:12:a1:35:91:98:6d:c6:1e:e1:0b:5d:ac:
62:0b:fd:73:95:fd:06:0a:1f:0a:b3:45:2f:a7:76:
67:1c:71:92:40:8f:8e:6b:28:15:8b:63:37:f7:35:
78:a7:5c:10:3c:16:dd:84:cb:12:d4:df:05:e7:c9:
b4:ff:79:7e:61:cf:d8:a9:7e:c9:2f:6e:1a:e8:78:
f0:a5:9b:af:78:fd:93:4a:47:c5:d7:e2:cc:6d:74:
a8:3d:fe:51:73:54:d0:17:20:d8:48:01:19:b7:95:
66:24:27:a0:16:e3:a2:f4:c8:53:10:eb:d8:9d:1d:
48:63:b8:48:83:9d:1d:04:c5:b8:ea:30:43:6b:73:
9d:42:dc:45:ea:55:d2:16:02:51:28:11:6e:5d:3f:
fd:87:35:a0:c6:60:97:73:86:07:e7:04:cb:d9:49:
83:9a:b6:db:56:e4:61:12:c8:a7:3a:fe:52:57:f6:
b8:8a:6c:f9:dc:63:3a:4b:5b:4d:7e:ac:a2:5c:6e:
aa:ab:14:e1:2b:1a:c9:15:72:34:e8:f5:7a:8b:1b:
be:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:1C:2B:1A:C4:7E:7E:D4:13:B3:90:94:51:1F:CE:10:3B:08:47:AD
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/iRwrGsR-ftQTs5CUUR_OEDsIR60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.245.0-79.98.247.255
176.125.250.0/23
185.199.151.0/24
185.199.212.0/23
185.221.24.0/23
185.225.168.0/22
185.226.181.0/24
185.250.24.0-185.250.26.255
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
31:7b:09:7b:3e:23:a2:ae:32:d2:82:27:26:e5:ed:2e:55:47:
31:37:7d:3b:ae:f5:c9:7e:27:88:12:98:77:b0:cc:68:bf:9b:
9f:21:bb:1c:c6:1d:89:99:36:3e:1e:01:0b:2f:de:b7:a7:61:
49:a4:af:37:8b:81:7e:37:c4:8b:f5:0d:18:f4:0a:68:0f:e9:
2b:70:a3:a8:09:44:04:05:b7:4c:c1:dc:90:81:b3:d3:0a:7e:
26:e5:ac:90:a6:39:39:77:41:ae:a9:d9:4c:b4:db:a6:3d:d8:
28:c7:16:23:cd:ed:a9:1e:4b:5a:a8:2d:4e:99:4f:10:ec:5c:
cc:bd:be:68:4f:e3:30:25:35:24:ac:85:d6:53:ff:b4:f5:bf:
4b:eb:c9:62:80:9c:cf:e3:8e:17:03:73:fb:d4:8e:03:5a:2a:
1b:79:1f:f7:b9:a9:1d:0c:e4:a3:29:7b:4f:97:42:bd:6e:6f:
97:d9:35:e0:f6:4a:6e:0f:07:96:50:36:0d:df:08:43:ae:53:
e4:27:46:f3:0a:d7:b4:4e:7c:4e:fd:cb:28:a1:ea:de:c0:5c:
23:36:f2:b0:81:73:6c:92:db:5e:15:7d:6a:c0:e8:1d:b8:e6:
b3:55:3b:54:8f:28:55:ca:67:f5:2a:c2:b3:45:8d:08:96:eb:
ac:5f:fa:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org