Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/1-9zyFv8qasxRvWOi3iN_xdOc1-E.roa
File: 1-9zyFv8qasxRvWOi3iN_xdOc1-E.roa (raw, json)
Hash identifier: AoE2UPfKSwf8hVVVUsjHTHvbw+E6lpqFMDlBrnOgxbM=
Subject key identifier: FB:DC:F2:16:FF:2A:6A:CC:51:BD:63:A2:DE:23:7F:C5:D3:9C:D7:E1
Certificate issuer: /CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Certificate serial: 018D545874E2BF83EE680842D38D1FF375A0
Authority key identifier: DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/1-9zyFv8qasxRvWOi3iN_xdOc1-E.roa
Signing time: Mon 29 Jan 2024 08:31:39 +0000
ROA not before: Mon 29 Jan 2024 08:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206805
IP address blocks: 45.84.152.0/23 maxlen: 23
45.84.154.0/24 maxlen: 24
45.84.155.0/24 maxlen: 24
45.145.188.0/23 maxlen: 23
45.145.190.0/23 maxlen: 23
45.145.190.0/24 maxlen: 24
45.145.191.0/24 maxlen: 24
80.85.248.0/23 maxlen: 23
80.85.250.0/23 maxlen: 23
80.85.252.0/24 maxlen: 24
80.85.253.0/24 maxlen: 24
80.85.254.0/23 maxlen: 24
178.159.32.0/23 maxlen: 24
185.159.111.0/24 maxlen: 24
185.228.48.0/22 maxlen: 24
185.247.192.0/22 maxlen: 24
188.64.149.0/24 maxlen: 24
188.64.150.0/23 maxlen: 24
193.19.100.0/23 maxlen: 24
2a0c:ee00::/40 maxlen: 40
2a0c:ee00:100::/40 maxlen: 40
2a0c:ee00:200::/40 maxlen: 40
2a0c:ee00:20c::/48 maxlen: 48
2a0c:ee00:300::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 11 Jul 2024 14:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:54:58:74:e2:bf:83:ee:68:08:42:d3:8d:1f:f3:75:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd3d4011175e5df7a3f57d38e78150a2c05fdd1d
Validity
Not Before: Jan 29 08:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbdcf216ff2a6acc51bd63a2de237fc5d39cd7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:67:ad:ac:66:7f:59:3a:f6:af:07:8a:f6:fd:
d6:87:3e:34:d2:9a:de:c6:1f:6a:d5:19:03:02:af:
c7:fe:c5:81:69:6e:2e:14:62:d9:98:a4:92:6e:e4:
ce:8a:a2:73:ab:fb:50:77:41:8c:2a:7f:aa:94:f7:
6d:51:ea:03:59:fb:ca:59:58:36:44:55:0a:fe:aa:
c5:a9:97:5d:c8:95:4c:92:34:cf:4b:99:89:bd:91:
58:8e:07:bd:4a:9e:60:19:0c:d9:f7:63:d7:44:c7:
e9:52:5e:ef:c1:83:c3:a9:2e:ec:8e:fe:53:fa:6c:
87:d6:72:1e:60:c9:9e:36:db:a7:94:5f:e5:a8:0d:
d2:90:b3:27:8b:e2:1b:9d:58:42:f8:30:ee:43:4e:
a7:0e:2d:62:08:10:eb:69:0a:7c:d3:08:fc:cb:91:
f3:e4:66:eb:b3:9a:19:c3:ec:ae:a5:b2:bb:c9:b1:
f2:1b:6f:76:f8:6c:99:48:42:43:10:3e:21:3c:5a:
3a:0b:27:c0:65:73:d8:16:fc:88:59:62:c9:76:eb:
46:01:63:59:2b:55:02:87:6e:d2:f7:de:2f:97:c3:
90:33:1c:be:9e:96:56:1a:f4:c8:54:46:7d:a0:f3:
d1:af:51:bd:ff:5e:90:c3:80:41:84:c1:3e:ca:46:
bf:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DC:F2:16:FF:2A:6A:CC:51:BD:63:A2:DE:23:7F:C5:D3:9C:D7:E1
X509v3 Authority Key Identifier:
keyid:DD:3D:40:11:17:5E:5D:F7:A3:F5:7D:38:E7:81:50:A2:C0:5F:DD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3T1AERdeXfej9X0454FQosBf3R0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/1-9zyFv8qasxRvWOi3iN_xdOc1-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/308589-92fe-4593-93e4-2d0a78be892d/1/3T1AERdeXfej9X0454FQosBf3R0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.152.0/22
45.145.188.0/22
80.85.248.0/21
178.159.32.0/23
185.159.111.0/24
185.228.48.0/22
185.247.192.0/22
188.64.149.0-188.64.151.255
193.19.100.0/23
IPv6:
2a0c:ee00::/38
Signature Algorithm: sha256WithRSAEncryption
b2:ab:9b:eb:60:8d:3f:21:40:fe:8c:23:e6:48:c7:bf:18:ae:
39:95:9d:fc:ef:cb:7e:3e:87:22:3c:36:68:41:a2:99:96:97:
f0:52:95:52:b9:25:6c:6c:bb:d3:5c:47:d9:75:9a:af:b4:e3:
a0:cf:b0:de:08:b3:d9:97:6b:48:e2:d5:6e:28:fc:a7:bf:61:
d0:0a:3f:95:1c:ca:d8:08:d1:9b:f3:a0:fe:c2:24:04:f4:75:
70:0e:01:05:aa:ce:24:26:f8:89:d2:3e:51:75:01:81:cb:7d:
6d:d7:72:0a:de:3f:a5:40:81:61:35:90:d8:c3:83:9b:50:c2:
ba:01:7f:2e:04:d2:ec:23:2e:c7:ef:da:68:d3:70:71:52:53:
2d:10:5e:df:de:f4:b1:60:f8:fb:fe:2c:e5:7c:e3:90:6d:9d:
64:08:25:ac:ea:ef:74:55:01:87:4b:08:64:89:13:af:7d:8c:
82:b9:6d:b3:5d:f3:fd:0e:24:66:c2:47:ce:c1:91:e3:e5:de:
56:77:c6:0f:70:35:b4:0e:ec:a4:1c:17:90:62:0a:e4:f7:a2:
5c:c8:3c:80:61:2c:3e:d0:e0:45:8d:ce:29:50:8d:31:01:da:
4e:0a:9f:fd:08:3f:4c:ee:df:cd:90:0e:9e:47:0b:56:f4:99:
42:4e:42:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:39 2025 by rpki-client