Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uUW7DUijSw3GO9K-st9z29DPL3Q.roa
File: uUW7DUijSw3GO9K-st9z29DPL3Q.roa (raw, json)
Hash identifier: zIlsG/aUBSImKcTC0+oAneLTg1/Vv0LMNwW1SE4jFzc=
Subject key identifier: B9:45:BB:0D:48:A3:4B:0D:C6:3B:D2:BE:B2:DF:73:DB:D0:CF:2F:74
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018AD031770D5450E3F63137FF51289FF0A4
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uUW7DUijSw3GO9K-st9z29DPL3Q.roa
Signing time: Tue 26 Sep 2023 06:33:37 +0000
ROA not before: Tue 26 Sep 2023 06:33:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/24 maxlen: 24
185.199.213.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
185.199.148.0/24 maxlen: 24
185.250.25.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
185.225.170.0/24 maxlen: 24
185.225.171.0/24 maxlen: 24
185.225.168.0/24 maxlen: 24
185.225.169.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
79.98.244.0/23 maxlen: 24
185.221.24.0/24 maxlen: 24
185.221.25.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
176.125.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 11:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d0:31:77:0d:54:50:e3:f6:31:37:ff:51:28:9f:f0:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Sep 26 06:33:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b945bb0d48a34b0dc63bd2beb2df73dbd0cf2f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:c2:41:4c:07:8e:46:30:65:63:a9:4f:ca:
27:38:42:9c:0b:e1:5a:10:a8:7f:04:45:2a:a2:f2:
e0:c9:cb:52:8b:7b:fa:28:81:f2:e1:97:65:00:21:
13:71:c3:5e:bd:4a:85:fa:5a:80:5b:a7:d3:9f:6e:
03:df:d1:c4:dd:12:31:73:70:84:3c:22:1d:2f:15:
b8:91:69:9c:26:8f:b0:ad:25:9a:6a:f6:7b:af:a8:
46:73:b8:56:89:f5:75:b6:e5:7e:04:f5:90:5e:5e:
75:2e:fd:c5:9c:e8:e9:fb:10:fe:35:b3:d8:06:db:
c9:0f:89:c2:bc:9e:93:5a:16:e0:e5:d6:dc:76:31:
b5:fa:e5:1d:b4:5b:52:47:44:24:db:32:5a:6d:31:
9f:98:6b:8b:25:7e:b8:f5:c0:4b:8f:c6:5a:e7:f0:
c3:a5:67:bf:94:ae:48:9b:59:8b:77:4f:cf:ab:c1:
0b:20:87:a9:0b:c8:77:fa:d7:92:9d:18:0d:90:bf:
fc:b0:76:87:f9:26:7e:f7:81:55:cc:05:af:02:7e:
9c:cf:24:c8:e0:78:93:f2:09:e1:38:33:89:17:7b:
bd:69:4b:4a:d1:21:1d:f1:0c:e5:0f:08:56:26:7a:
50:62:a7:ba:7c:72:1f:97:b5:17:b4:30:be:ff:8e:
29:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:45:BB:0D:48:A3:4B:0D:C6:3B:D2:BE:B2:DF:73:DB:D0:CF:2F:74
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/uUW7DUijSw3GO9K-st9z29DPL3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.211.0/24
79.98.244.0/22
176.125.250.0/23
185.199.148.0/24
185.199.151.0/24
185.199.212.0/23
185.221.24.0/23
185.225.168.0/22
185.250.25.0-185.250.26.255
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
55:0e:10:20:b4:1d:46:3f:c1:3d:3b:95:46:fe:20:46:2a:e6:
af:2d:cd:c8:22:55:16:0e:c7:7e:67:41:71:f0:77:96:a8:76:
61:0e:d8:a2:c8:e4:41:59:b0:de:1b:86:42:ed:26:bb:ab:dc:
9f:46:b4:f1:2b:5b:10:f8:2c:08:02:74:45:54:64:e7:51:06:
8a:0b:77:57:a7:8b:fe:3d:06:ea:5d:47:be:dd:76:95:f6:50:
cc:56:04:72:b0:8c:6d:9b:25:5b:40:f1:8a:cc:cb:8c:42:35:
1d:c6:4b:f4:10:df:c7:39:64:1c:6d:ac:0e:34:57:4d:b0:c3:
33:3c:1b:8a:41:47:a8:14:43:fe:e2:c0:ca:99:3c:77:ee:8f:
23:e4:7f:15:2f:fb:d9:3c:d5:65:fd:79:c3:4d:35:fa:a6:95:
4f:c4:e7:7b:3f:99:75:6c:e3:92:8b:8d:61:b4:0b:3a:ed:bc:
d8:33:c6:6a:14:73:1a:f4:8d:bf:1a:aa:a5:37:9e:fb:6f:59:
0c:a5:4d:b3:41:83:df:57:9a:82:ee:5f:39:be:52:6c:58:19:
22:f4:63:b1:a3:6b:dc:f9:9b:6c:ab:52:58:da:66:fa:3b:1f:
a6:6b:37:67:a7:a6:ff:99:3e:9f:b2:1b:1f:ce:7d:18:79:ef:
35:90:46:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org