Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RLABDf6qFfwfUVAVZ-BRlaQkTNk.roa
File: RLABDf6qFfwfUVAVZ-BRlaQkTNk.roa (raw, json)
Hash identifier: CKfoFB98bi6F/JILjgGupziM1EM1aTEnG/E1zXCdZFk=
Subject key identifier: 44:B0:01:0D:FE:AA:15:FC:1F:51:50:15:67:E0:51:95:A4:24:4C:D9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FA1406750615AD58D0429DFDBD3417A54
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RLABDf6qFfwfUVAVZ-BRlaQkTNk.roa
Signing time: Wed 22 May 2024 17:01:43 +0000
ROA not before: Wed 22 May 2024 17:01:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
185.238.188.0/22 maxlen: 24
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c1:8a2f::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc3:ccce::/47 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Thu 23 May 2024 04:17:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:40:67:50:61:5a:d5:8d:04:29:df:db:d3:41:7a:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 22 17:01:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44b0010dfeaa15fc1f51501567e05195a4244cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d5:ca:a9:2e:98:c1:9b:03:e9:6f:67:a5:f0:
41:21:be:a9:26:7c:de:b5:a8:fe:4e:7f:68:d8:5a:
14:27:fa:a5:90:f0:02:76:e8:7c:a4:48:8d:b4:4d:
1e:cd:1a:57:f1:8c:d3:26:ce:d0:a2:a9:25:e1:3c:
b3:4c:92:fb:be:c4:e6:22:b9:83:6c:75:e7:23:55:
f0:10:a3:56:7d:06:98:d2:74:e9:df:e6:dc:7f:ba:
8b:e9:20:21:18:f3:ad:1a:08:e1:41:b1:05:fe:01:
d8:0c:99:98:15:8b:4b:23:07:a4:a4:f2:9a:eb:a8:
11:ea:84:ab:dc:6d:1a:a4:0b:4f:09:d8:ba:46:be:
94:8a:3d:2b:ee:a0:8d:00:4c:b9:b0:33:0d:a8:2c:
5d:07:30:1a:06:c2:9d:5f:d1:6d:f7:10:85:58:54:
0e:88:6a:25:f3:13:75:04:54:23:57:a5:c9:79:e3:
02:0b:1d:a7:70:25:d5:fb:b3:5e:2a:50:15:85:a7:
e3:e9:98:00:16:f8:29:df:90:a5:3b:a3:8d:92:06:
07:db:b7:ba:f2:19:be:c0:eb:b3:df:9a:c6:a6:28:
c1:a4:78:9b:f5:b8:b6:f1:b8:bd:f4:c0:65:f7:a2:
af:05:91:eb:d7:fc:b6:4c:3f:a3:e2:18:e8:f7:96:
d7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B0:01:0D:FE:AA:15:FC:1F:51:50:15:67:E0:51:95:A4:24:4C:D9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/RLABDf6qFfwfUVAVZ-BRlaQkTNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c1:8a2f::/48
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc3:ccce::/47
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
8c:f9:fc:c4:ff:e8:2f:26:ff:e6:88:be:15:0d:d9:b6:d7:f6:
4e:17:5b:2e:11:95:0d:94:f9:84:3d:e3:81:cd:9c:b8:f9:b2:
6f:c6:3c:8d:36:a3:6d:22:d5:86:90:0b:ea:fd:e0:72:f1:76:
c3:37:52:2e:2c:c1:48:aa:96:f4:24:4c:6f:bb:c2:53:2f:da:
02:fa:43:b3:e0:41:e5:3b:5e:9f:2a:71:84:35:04:1a:10:d7:
77:9b:07:e5:d8:f6:51:b9:c5:d2:ab:f3:80:26:09:32:a7:c8:
48:ba:2e:f3:c0:9d:42:b5:12:4c:92:d5:4a:25:81:70:1e:39:
44:f3:fc:fa:08:b1:f3:55:ef:23:d8:af:7a:e6:28:b2:ee:c1:
be:e0:7a:67:fc:59:82:bb:58:bd:c5:d7:72:dd:04:19:64:75:
e1:ad:fc:8f:8b:79:27:1c:80:06:cc:5c:4d:13:82:fc:d0:8b:
17:26:2c:74:44:7e:06:8e:11:5a:a8:13:6c:e2:2e:2b:e8:d5:
de:32:45:81:b8:6a:ae:df:26:7e:f0:6d:56:d2:95:43:b5:e4:
3b:38:4e:d9:ef:a8:6c:c0:e2:55:2a:ad:a7:c3:a6:43:46:f7:
28:40:29:67:e6:22:37:a4:d2:0f:2e:34:e9:6b:d9:48:08:ac:
35:67:ba:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:02 2024 by rpki-client on console-ams.rpki-client.org