Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XbzigF1aPgf7wvr4w7ICdbDZ3WA.roa
File: XbzigF1aPgf7wvr4w7ICdbDZ3WA.roa (raw, json)
Hash identifier: lDDXpqjDekGFcVrz27T5P6loEW53AEN5dobVU7zzvkE=
Subject key identifier: 5D:BC:E2:80:5D:5A:3E:07:FB:C2:FA:F8:C3:B2:02:75:B0:D9:DD:60
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018D1BECAB8955F8C21F5A63AEC584E0F315
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XbzigF1aPgf7wvr4w7ICdbDZ3WA.roa
Signing time: Thu 18 Jan 2024 09:35:11 +0000
ROA not before: Thu 18 Jan 2024 09:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215938
IP address blocks: 45.134.144.0/24 maxlen: 24
103.211.100.0/24 maxlen: 24
185.245.1.0/24 maxlen: 24
185.245.2.0/24 maxlen: 24
194.145.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 10:40:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1b:ec:ab:89:55:f8:c2:1f:5a:63:ae:c5:84:e0:f3:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 18 09:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dbce2805d5a3e07fbc2faf8c3b20275b0d9dd60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:ab:bc:8d:cd:fc:3d:b1:6d:ed:71:8d:ff:
2e:c1:78:c2:b0:bc:f1:59:d8:2f:e2:10:82:52:cf:
68:19:43:50:98:7a:35:cc:cf:f6:0f:ec:2d:bc:f4:
8f:6b:0f:74:63:c5:c8:2d:0c:5f:28:e5:24:a7:d9:
2b:86:51:03:39:74:bb:7a:2c:9c:4d:86:a5:41:ce:
2f:12:e2:b3:ca:1d:d7:af:5e:17:27:fd:bc:5d:07:
84:88:15:0a:c5:36:21:18:f4:2a:d4:b2:c8:3f:f9:
1f:f4:8b:07:ca:a4:8e:66:ef:1a:43:ee:a2:ad:06:
01:45:d0:4b:bd:96:1a:fa:81:d8:a3:51:cf:09:94:
62:e2:d6:b2:51:1a:5a:8a:b3:fa:83:6d:5e:87:f3:
96:2e:23:6b:b3:12:5d:af:2d:cf:ae:05:a6:82:c7:
f6:e1:16:59:22:8b:81:cf:a1:b5:50:55:bc:2e:5d:
ad:d6:7f:7d:92:59:8b:66:94:25:04:62:50:66:0c:
b5:e6:c2:a7:4b:67:8e:ef:f9:40:ba:cd:00:9d:ae:
56:5d:e0:a3:ac:b3:3a:1c:13:b3:e4:5f:27:59:80:
da:8b:f4:f6:f1:f6:12:86:73:82:19:b2:73:77:79:
18:e7:59:44:4f:8b:95:58:32:0e:e5:b0:c7:cc:1c:
7e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BC:E2:80:5D:5A:3E:07:FB:C2:FA:F8:C3:B2:02:75:B0:D9:DD:60
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/XbzigF1aPgf7wvr4w7ICdbDZ3WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.144.0/24
103.211.100.0/24
185.245.1.0-185.245.2.255
194.145.237.0/24
Signature Algorithm: sha256WithRSAEncryption
13:86:eb:40:5b:6e:5d:a0:66:9f:e2:86:b3:a8:38:29:0e:28:
13:50:1a:dd:72:53:f4:fd:cf:81:4d:0c:4f:9d:b4:89:39:12:
e1:41:50:48:f5:09:77:6b:c2:4a:63:81:f6:a4:35:05:4a:af:
40:5a:60:ae:2d:a2:d7:d8:a9:08:92:da:1a:cb:6a:0d:d8:57:
29:e1:32:9b:81:93:f9:72:7a:6a:9a:52:83:fc:73:12:d2:73:
b6:dc:6d:47:f8:10:08:33:68:55:18:e1:45:8e:74:f4:a1:ed:
d2:12:6e:45:7b:09:29:63:27:cc:fb:62:1d:42:b4:40:99:f4:
4b:93:6c:fe:cc:24:df:2b:ea:44:2d:d9:d0:ec:21:fb:22:d8:
f7:14:2f:dc:59:93:e1:91:39:ad:cb:ad:3d:21:db:ab:dc:29:
a2:0f:e5:7f:f7:fb:b0:e4:c6:51:2c:fd:ce:87:d1:72:99:12:
74:27:88:c7:87:06:06:b1:48:5a:49:1c:59:c1:1b:1a:f6:12:
59:a8:73:8b:97:a3:eb:b8:cd:36:cd:ff:16:a4:ad:bd:15:7b:
fd:b8:02:51:41:77:92:53:44:45:d9:bc:04:20:fd:d4:84:c4:
99:02:d8:86:71:20:63:4a:91:a1:0e:1e:ae:17:ee:05:fa:23:
b8:6b:a7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org