Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/B8q1EJviPf5SbhrnHTxbheyoZ3s.roa
File: B8q1EJviPf5SbhrnHTxbheyoZ3s.roa (raw, json)
Hash identifier: Q8mKCXRIS+nFQQEmN+Vj/3q0NiHvXVRvgkvaF2a6pjA=
Subject key identifier: 07:CA:B5:10:9B:E2:3D:FE:52:6E:1A:E7:1D:3C:5B:85:EC:A8:67:7B
Certificate issuer: /CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Certificate serial: 01926B9E576A3AE8CA72684047856164CA91
Authority key identifier: 8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/B8q1EJviPf5SbhrnHTxbheyoZ3s.roa
Signing time: Tue 08 Oct 2024 10:13:12 +0000
ROA not before: Tue 08 Oct 2024 10:13:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48551
IP address blocks: 45.94.252.0/24 maxlen: 24
45.94.254.0/24 maxlen: 24
45.94.255.0/24 maxlen: 24
45.159.196.0/24 maxlen: 24
45.159.197.0/24 maxlen: 24
45.159.198.0/24 maxlen: 24
45.159.199.0/24 maxlen: 24
103.216.60.0/24 maxlen: 24
103.216.61.0/24 maxlen: 24
103.216.62.0/24 maxlen: 24
103.216.63.0/24 maxlen: 24
157.119.188.0/24 maxlen: 24
157.119.190.0/24 maxlen: 24
157.119.191.0/24 maxlen: 24
185.63.114.0/24 maxlen: 24
185.86.180.0/24 maxlen: 24
185.86.181.0/24 maxlen: 24
185.236.36.0/24 maxlen: 24
185.236.37.0/24 maxlen: 24
185.236.38.0/24 maxlen: 24
185.236.39.0/24 maxlen: 24
195.114.4.0/24 maxlen: 24
195.114.5.0/24 maxlen: 24
195.114.8.0/24 maxlen: 24
195.114.9.0/24 maxlen: 24
2a0d:9500::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 11 Oct 2024 16:08:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:9e:57:6a:3a:e8:ca:72:68:40:47:85:61:64:ca:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d
Validity
Not Before: Oct 8 10:13:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07cab5109be23dfe526e1ae71d3c5b85eca8677b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:84:54:ba:e6:f3:af:8a:14:8c:b0:6b:86:5f:
42:4e:8c:d4:ce:a2:e7:5b:9d:4a:e6:13:1d:13:1a:
56:bc:e0:2d:aa:89:e3:a3:a7:e7:a8:ff:2c:d6:e7:
49:b5:c5:4a:61:e8:32:5d:99:27:5b:ce:73:3f:2e:
8d:56:68:2b:a3:40:96:1f:a7:d8:d7:e6:b5:d9:fe:
18:21:c2:5d:8b:3e:eb:00:40:79:52:a0:3f:1b:bf:
fb:92:a5:59:b7:79:d1:4e:16:1a:86:31:61:bf:a7:
dc:bc:08:ed:f3:8f:4f:da:b5:49:6a:04:1a:fc:7e:
b5:35:63:fa:de:15:eb:b9:a9:76:60:ce:ce:37:d2:
c0:a1:16:7d:92:c5:1c:7b:c9:97:19:17:b6:2f:ec:
11:85:2e:bb:08:10:ec:5d:28:18:9a:38:3e:ad:1a:
c9:3d:a3:37:48:5f:5f:ba:b4:e8:cd:fa:8d:84:2c:
cc:c0:ce:5c:65:0d:8e:92:db:1a:92:56:5e:bc:fc:
67:82:e9:64:c6:16:be:c1:7c:cb:ef:d3:9b:64:d2:
3e:5c:cc:f6:94:a0:ef:25:bf:ce:1c:f2:23:52:cb:
8f:b4:9e:a5:ff:30:96:73:51:c9:f1:47:3c:1f:2c:
68:8b:bc:ac:e0:79:00:0a:49:ce:87:35:98:a2:35:
20:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CA:B5:10:9B:E2:3D:FE:52:6E:1A:E7:1D:3C:5B:85:EC:A8:67:7B
X509v3 Authority Key Identifier:
keyid:8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/B8q1EJviPf5SbhrnHTxbheyoZ3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.252.0/24
45.94.254.0/23
45.159.196.0/22
103.216.60.0/22
157.119.188.0/24
157.119.190.0/23
185.63.114.0/24
185.86.180.0/23
185.236.36.0/22
195.114.4.0/23
195.114.8.0/23
IPv6:
2a0d:9500::/29
Signature Algorithm: sha256WithRSAEncryption
74:66:7b:4c:8c:0e:aa:6e:5a:c0:8d:24:d8:f7:e7:6b:73:ec:
9d:ae:84:12:ac:e5:72:b8:fa:e8:60:7c:21:02:84:64:76:e9:
2e:ce:53:66:37:61:e9:63:39:ff:30:fd:f5:f1:1a:f4:dc:8e:
e7:10:67:fd:01:55:90:9e:05:cd:31:28:d1:a2:35:a1:ba:90:
ee:a0:56:28:17:c0:d6:bd:a4:3a:91:e4:c4:88:60:27:65:a8:
fa:2d:de:6e:80:dc:6c:55:bc:80:87:d5:34:4c:fd:0d:ae:0d:
b4:f6:07:aa:0f:cb:58:72:ae:b4:00:c0:c3:53:2c:78:3b:bd:
e1:47:43:fd:1e:c0:72:66:00:67:e0:00:34:7d:84:48:7e:35:
7f:13:34:40:80:a1:c2:75:3e:5b:7e:8d:5e:70:c1:af:9e:1c:
a4:8d:19:2a:3c:e7:69:29:43:04:06:f4:ff:c9:4c:22:b6:dc:
5f:d4:3b:9d:08:7d:fa:65:b3:58:b3:45:2a:37:2a:2f:cf:ba:
2a:2f:43:6f:9e:6c:b4:ec:d1:83:c9:32:e7:98:40:30:4e:b9:
ee:e0:ed:52:d8:d9:19:3b:1d:da:7a:10:2c:5d:c7:8d:73:91:
d2:3e:b2:af:a8:ad:c0:36:6d:9f:f5:6e:e1:40:38:24:91:b4:
49:39:f1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 20:00:59 2024 by rpki-client on console-ams.rpki-client.org