Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YD07C9OAYJknifQMK0NbsYgx6KI.roa
File: YD07C9OAYJknifQMK0NbsYgx6KI.roa (raw, json)
Hash identifier: Qql3FZFJNGBRmFw76UiIzVE+Kux3Y61diDgXWBcxUUI=
Subject key identifier: 60:3D:3B:0B:D3:80:60:99:27:89:F4:0C:2B:43:5B:B1:88:31:E8:A2
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0186550BF86DBE4E7617138FDBD3BF25FEB5
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YD07C9OAYJknifQMK0NbsYgx6KI.roa
Signing time: Wed 15 Feb 2023 12:28:13 +0000
ROA not before: Wed 15 Feb 2023 12:28:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
193.43.147.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
188.119.122.0/24 maxlen: 24
188.119.123.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.153.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.57.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.172.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 18:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:0b:f8:6d:be:4e:76:17:13:8f:db:d3:bf:25:fe:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Feb 15 12:28:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=603d3b0bd38060992789f40c2b435bb18831e8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a0:9a:4e:10:17:3b:13:b4:8b:4f:64:34:15:
0d:ec:ea:3a:56:d8:a2:84:69:9d:ed:ee:8f:cc:ea:
79:12:d8:aa:c9:62:17:80:a3:5f:9d:97:92:4e:52:
bf:26:f2:d0:3f:d3:da:3e:9f:51:e2:f6:52:48:4a:
6b:a7:66:b8:f3:fd:78:b9:48:74:c5:45:31:82:12:
58:89:36:ec:c0:3e:3a:6b:d7:5d:7c:19:fe:e2:b1:
eb:5c:1b:7f:5e:13:45:19:91:c5:1f:d9:89:f9:39:
e3:de:d4:67:b4:33:04:fc:35:f4:4a:7a:ce:fa:a9:
f8:93:a2:8c:d6:d0:f3:a7:f3:2e:50:f5:2c:19:cd:
18:5f:31:4f:4d:f0:ea:95:18:1b:09:0a:d2:ce:d3:
09:d4:af:00:63:3f:1f:20:2d:58:6e:2e:5e:5a:08:
d1:ca:00:44:59:73:c3:36:96:df:2a:b0:39:c4:81:
c6:92:91:80:f0:56:f7:18:36:ac:80:44:3f:aa:23:
c0:16:ae:b5:53:f0:4d:d4:26:ba:84:e2:fa:cf:19:
b5:78:55:f4:56:02:b6:80:82:44:de:f0:bf:6b:9d:
1c:e0:72:24:70:38:4c:6d:80:20:02:76:3f:74:f5:
2e:62:e0:1b:6a:7f:89:e4:07:34:98:96:f8:8e:9b:
4f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:3D:3B:0B:D3:80:60:99:27:89:F4:0C:2B:43:5B:B1:88:31:E8:A2
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/YD07C9OAYJknifQMK0NbsYgx6KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.153.0-45.87.154.255
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
188.119.122.0/23
193.43.147.0/24
193.46.56.0/23
193.57.136.0-193.57.138.255
194.4.48.0/22
194.116.172.0/24
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
28:fc:6b:c2:02:0a:5e:8d:ae:b4:f6:a5:76:d1:b3:a0:03:60:
2a:77:14:76:45:17:8a:16:37:33:cb:11:34:c7:96:12:68:ae:
69:dd:f0:0b:96:89:5c:ee:4c:30:6f:0e:df:f1:b1:34:48:04:
c6:8d:93:b7:a7:07:da:b5:51:5b:ef:40:62:07:3b:35:00:e3:
91:bb:60:a3:3f:68:7c:ed:ef:99:93:69:d7:3f:70:63:ac:f8:
e3:4f:45:b8:0e:07:b4:ab:e1:3c:f2:5b:84:6e:fd:39:99:fa:
fd:28:2d:3f:29:bb:74:3c:65:54:f6:00:fb:f2:27:5f:d9:c8:
10:a5:a8:c3:e1:c6:b4:62:3e:30:ed:25:2f:7b:44:d2:7c:8e:
ed:a5:21:f9:1a:a8:a7:e3:be:04:60:a6:4b:97:66:97:3f:33:
f9:0f:39:65:58:2a:f4:aa:a9:bb:81:f5:85:68:4c:43:c6:82:
3d:c4:f8:e1:64:8c:99:1d:44:e3:31:fc:9f:61:67:6d:4f:05:
84:b3:d8:eb:3e:cd:87:93:74:8f:c5:8e:94:e0:66:51:ab:e8:
cc:26:d5:f4:91:cc:8e:66:04:83:2d:59:7b:bc:7a:9e:7a:04:
e7:3b:3b:61:ab:d3:05:98:aa:31:56:67:9a:ef:88:01:3d:5a:
da:94:15:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:18 2024 by rpki-client on console-ams.rpki-client.org