Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4nmsOoR7ijTFp2jobKumi7zm0V8.roa
File: 4nmsOoR7ijTFp2jobKumi7zm0V8.roa (raw, json)
Hash identifier: amiEP/mD9/b5S7aXOEJy5uYj5cVnXqnq/+chMFXbzTE=
Subject key identifier: E2:79:AC:3A:84:7B:8A:34:C5:A7:68:E8:6C:AB:A6:8B:BC:E6:D1:5F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018D2A8987600A88A425212AF5DA0A905461
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4nmsOoR7ijTFp2jobKumi7zm0V8.roa
Signing time: Sun 21 Jan 2024 05:41:12 +0000
ROA not before: Sun 21 Jan 2024 05:41:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
185.238.188.0/22 maxlen: 24
2a06:de01:d0::/44 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Tue 30 Jan 2024 12:57:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:2a:89:87:60:0a:88:a4:25:21:2a:f5:da:0a:90:54:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 21 05:41:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e279ac3a847b8a34c5a768e86caba68bbce6d15f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ee:10:35:e8:a3:81:90:ff:3e:c8:30:c9:06:
8e:7e:80:29:4e:fc:97:2d:29:99:75:59:d2:d9:a3:
0d:6f:7a:50:8a:12:46:86:18:15:d1:5c:82:95:b8:
62:9b:7c:ff:d0:0f:66:cb:f7:60:b6:15:de:7d:4b:
3e:66:38:c9:f0:22:f7:3b:8a:b3:71:dc:2a:32:aa:
6d:77:7c:45:43:2c:6a:1f:4d:73:b6:9b:56:9a:f8:
ad:63:c6:d9:43:d5:80:fe:12:f6:41:b9:9f:7f:1a:
d5:47:c5:a3:a4:ac:51:d6:85:f4:f5:d7:77:f9:ce:
82:e7:fa:14:22:9b:52:2b:46:b9:ef:ca:5e:fc:0a:
37:e2:fe:64:41:00:c4:13:6f:da:1a:91:29:42:ac:
0b:2b:47:c4:0b:f9:4e:5d:ac:c8:4b:0d:8e:4b:15:
0f:03:bf:02:28:0e:20:a9:6d:37:f9:02:72:63:7d:
a4:12:04:4a:b2:eb:b9:70:9d:98:4d:a3:e5:40:76:
23:fc:72:8d:d0:a3:a8:f7:33:61:c7:21:45:3e:c3:
cd:45:c3:21:8a:d2:78:ef:df:d1:48:65:e3:73:bb:
16:96:f1:1b:eb:c9:ac:fc:a3:ac:50:7a:dd:80:eb:
ab:08:71:3b:22:f0:94:be:b3:db:34:00:e3:75:f8:
61:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:79:AC:3A:84:7B:8A:34:C5:A7:68:E8:6C:AB:A6:8B:BC:E6:D1:5F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4nmsOoR7ijTFp2jobKumi7zm0V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
IPv6:
2a06:de01:d0::/44
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
36:f1:93:6e:aa:23:c0:ca:dc:6b:d5:a7:24:79:36:b0:3d:14:
36:3d:d4:a2:45:84:20:62:15:c8:f5:ef:94:d9:ab:31:57:18:
1e:e8:78:94:cd:6e:c8:c5:c5:2f:4c:95:d8:c2:b5:cb:13:92:
ce:51:63:fe:00:d5:97:c6:e9:c3:2f:b8:2e:6a:7a:88:78:a3:
f4:a3:ec:e4:09:5d:ae:a6:b1:69:06:e3:d5:db:57:ad:5f:37:
dc:e7:91:40:26:1a:ac:09:0f:57:02:64:22:ee:ac:8f:72:a8:
99:49:c2:81:45:6c:35:5f:28:7e:58:c0:da:6b:84:e7:1f:2d:
57:00:ca:b7:ed:86:cd:42:5e:5f:c1:59:19:48:4b:6f:7b:d6:
d8:4e:83:75:a9:12:4c:64:1e:53:f7:a4:7e:7b:55:cc:57:a3:
45:3e:9b:eb:97:87:8a:35:e9:38:9f:36:ee:2f:de:3e:1b:65:
73:44:36:86:93:30:7b:f3:7a:c2:0c:d6:e6:c0:40:75:a1:9b:
d6:62:75:d9:96:c5:bc:ce:2c:df:b7:96:bc:f4:58:d4:68:0d:
9a:ae:6f:d4:62:90:2c:f8:e5:de:27:1c:41:4c:5e:eb:a6:29:
b3:39:2f:96:db:40:ca:d3:ea:d0:e0:b3:34:cd:fe:ed:a2:97:
dc:3c:ec:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 17:11:03 2024 by rpki-client on console-ams.rpki-client.org