Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/RqdYVxHURtafKHRq57CkPy60A1o.roa
File: RqdYVxHURtafKHRq57CkPy60A1o.roa (raw, json)
Hash identifier: 2Th41rEPeFYYCoKiFXGSHIEES8M/JQ7ErRGw1FVKsgQ=
Subject key identifier: 46:A7:58:57:11:D4:46:D6:9F:28:74:6A:E7:B0:A4:3F:2E:B4:03:5A
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 0189833BE2339D8646A211C630EDBBD54CAA
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/RqdYVxHURtafKHRq57CkPy60A1o.roa
Signing time: Sun 23 Jul 2023 14:51:27 +0000
ROA not before: Sun 23 Jul 2023 14:51:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 194.113.238.0/24 maxlen: 24
194.113.239.0/24 maxlen: 24
185.221.196.0/23 maxlen: 24
185.238.88.0/22 maxlen: 24
45.80.228.0/22 maxlen: 24
185.246.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:83:3b:e2:33:9d:86:46:a2:11:c6:30:ed:bb:d5:4c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jul 23 14:51:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46a7585711d446d69f28746ae7b0a43f2eb4035a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e8:09:f6:75:02:92:56:ce:47:ff:4f:83:a4:
6d:0d:cb:50:38:48:d5:7c:c9:8a:07:0a:6b:4e:0f:
46:55:50:58:02:be:f7:13:ac:87:9c:7b:0d:6a:0f:
e3:3c:54:2b:b2:f4:05:56:68:1e:2f:d8:85:fb:31:
32:1b:89:d9:24:a9:e6:0d:86:aa:3c:49:25:69:59:
d7:ef:38:5a:c0:b9:df:af:91:f0:78:32:c8:45:38:
91:6c:87:9d:5f:b6:0a:dc:03:11:e4:8b:f1:d3:15:
20:1e:dc:21:76:fb:eb:77:ef:c6:41:1e:be:67:c6:
73:cf:47:97:3f:a1:2f:96:e0:0a:e3:77:ef:47:d8:
15:fa:42:5e:53:e6:f1:f5:3f:07:90:08:d7:d3:2f:
3e:fa:0b:42:c4:cd:31:12:f3:54:3a:a2:c8:35:96:
fa:c3:f4:d1:47:07:0d:0f:c0:7b:84:61:28:2a:44:
81:c3:6c:6b:64:e9:55:89:0e:3b:96:51:55:69:1e:
3f:6f:86:b2:6e:56:f1:06:3e:33:38:dd:56:6b:25:
7f:e5:c0:fb:51:ee:59:2d:72:43:33:2f:9b:d9:64:
3d:48:76:89:b4:b0:41:b9:ab:f4:1c:e5:bc:1a:e2:
71:d9:3f:92:b9:09:f8:79:f7:39:ae:76:69:2b:29:
cb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A7:58:57:11:D4:46:D6:9F:28:74:6A:E7:B0:A4:3F:2E:B4:03:5A
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/RqdYVxHURtafKHRq57CkPy60A1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.228.0/22
185.221.196.0/23
185.238.88.0/22
185.246.216.0/24
194.113.238.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:c8:b4:62:71:00:6f:bf:db:e5:d5:e9:2a:0f:f9:86:09:71:
ba:88:53:7e:09:01:35:51:e2:2d:09:87:d4:04:0b:15:b2:6d:
de:b8:01:d4:04:37:2c:2c:73:55:04:28:25:ea:7b:29:df:08:
39:c2:29:10:c4:09:dc:9a:c9:db:6a:88:19:a1:71:fc:00:7b:
01:4e:ff:20:a1:60:0c:78:aa:20:20:17:58:5e:6b:cf:35:00:
45:88:37:21:78:04:ad:72:79:e4:19:18:b9:d4:db:bf:b5:91:
61:ef:33:a4:83:67:b7:f1:c3:6d:6c:37:e9:35:77:ce:a5:02:
27:88:ae:ff:4b:77:69:34:63:b7:a6:ef:12:e0:b6:f3:a4:7b:
c8:c2:90:38:69:89:df:83:9e:10:a6:e5:8e:88:15:cb:1e:12:
95:66:18:44:eb:03:fe:bd:c1:12:0d:dd:33:3f:f3:7e:55:f5:
cb:22:ae:5c:0b:69:09:0b:58:bd:60:3e:66:a5:46:69:9c:34:
7a:8d:12:0b:be:2f:8f:11:49:b0:3f:76:cf:ed:10:87:c9:5f:
b5:0f:fe:51:b4:dd:62:dd:c3:1c:64:ad:39:b2:f5:d9:dc:81:
a0:cc:d2:bf:b3:68:aa:dc:1a:8d:7e:e9:41:b9:a5:78:c7:c5:
d9:54:bf:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:45 2024 by rpki-client on console-fra.rpki-client.org