Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/sCa_am4myOWYSJ9w2z3BSYUZBdk.roa
File: sCa_am4myOWYSJ9w2z3BSYUZBdk.roa (raw, json)
Hash identifier: apTbuP2c7nwEQBVynRs9g6Lsn8E//kAv1646XJF2c4M=
Subject key identifier: B0:26:BF:6A:6E:26:C8:E5:98:48:9F:70:DB:3D:C1:49:85:19:05:D9
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0185C60BCAFE547C4B67BADCC0D4C0F7BDDB
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/sCa_am4myOWYSJ9w2z3BSYUZBdk.roa
Signing time: Wed 18 Jan 2023 18:02:19 +0000
ROA not before: Wed 18 Jan 2023 18:02:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.206.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.36.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.137.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 07:28:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c6:0b:ca:fe:54:7c:4b:67:ba:dc:c0:d4:c0:f7:bd:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 18 18:02:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b026bf6a6e26c8e598489f70db3dc149851905d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:33:4b:16:86:df:44:53:a7:c0:a7:8c:ad:54:
39:d1:d3:7b:a9:f1:35:62:cb:b1:5d:e2:0a:b6:94:
29:dc:ae:bf:71:78:e1:2a:1a:12:d4:19:24:7f:c2:
48:56:9d:e6:bb:b9:f5:64:8e:f9:83:68:23:a3:dc:
e8:78:cd:85:96:91:cf:23:c6:0a:49:1c:40:dd:e0:
8a:04:00:03:6a:79:cc:f0:1b:42:0a:07:97:f4:81:
88:34:98:96:72:7c:69:6f:91:3a:5f:bc:c2:1c:7b:
ed:c6:cd:83:18:01:0b:65:7d:1b:bd:ee:de:0b:44:
39:b7:f9:ec:a9:99:da:03:5f:72:d2:8f:39:a0:8b:
fd:3c:6c:60:52:b7:e0:0a:a3:5c:db:7b:dc:a0:eb:
2a:9e:fc:15:e9:3b:de:04:6e:51:26:f9:a5:2c:7c:
fb:d7:26:33:8c:ec:ca:cb:29:08:81:32:5e:57:65:
86:04:b3:56:d3:06:bb:98:3e:63:70:5d:14:1c:70:
eb:6e:46:22:11:60:57:f0:a0:62:a8:82:6b:1d:f7:
7b:75:e1:f3:6c:29:7e:1b:a2:68:f5:26:0e:0f:6e:
47:2f:9c:cd:86:18:12:ab:c5:fe:a1:22:20:63:59:
3b:d0:8c:58:c0:bb:f6:4d:f7:5b:cb:67:3a:f0:24:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:26:BF:6A:6E:26:C8:E5:98:48:9F:70:DB:3D:C1:49:85:19:05:D9
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/sCa_am4myOWYSJ9w2z3BSYUZBdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.154.0/24
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
193.46.56.0/24
193.57.136.0-193.57.138.255
194.4.48.0/22
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
31:85:ff:99:c1:e8:67:52:bf:83:e5:17:f0:eb:40:be:71:00:
59:ef:5c:9d:3d:db:44:06:a3:5c:e5:9e:2c:95:fb:f4:02:b1:
a3:4a:94:cd:30:84:fa:ce:ed:b7:8e:82:db:3f:0b:fd:7d:6b:
cc:3e:7c:a2:24:08:ef:a4:7b:4b:bc:d1:b6:84:22:3b:74:87:
5f:76:9f:45:31:56:51:d1:e4:01:8d:73:12:08:1b:8e:c4:04:
f3:25:0f:a9:3c:26:7a:c1:e0:56:7f:62:34:47:ec:d9:03:34:
67:8a:9c:49:d9:4d:59:b6:c1:d7:57:ab:7e:0f:d7:3f:cb:a4:
ff:bb:ee:19:97:6f:ff:a5:c0:9f:20:31:fa:fb:59:83:76:fb:
b8:fc:87:c5:87:cf:8f:17:29:55:c6:99:91:84:8f:fa:4c:02:
3f:3c:d5:8e:88:49:93:5f:36:ab:44:41:61:d3:99:49:f6:8e:
0b:6c:2e:54:0f:e7:3d:e7:c1:5f:20:b3:ee:ea:ba:61:0c:6d:
7f:d0:e8:a7:da:eb:c4:05:d8:b4:8b:9e:90:2b:a8:2f:50:47:
9f:29:e2:d4:d7:50:02:fd:71:19:ad:37:78:6c:e0:dd:4f:e8:
cf:eb:f8:71:d4:31:87:16:46:14:e4:68:fc:df:d3:cd:7e:17:
57:79:6d:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:24 2024 by rpki-client on console-fra.rpki-client.org