Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Cq6y5sFTn9hgzq-wQzJPBYxrhgM.roa
File: Cq6y5sFTn9hgzq-wQzJPBYxrhgM.roa (raw, json)
Hash identifier: 0eQVEvdCEI3G2aK6WeyGYRufTNR8WTuu4ddL92p1ays=
Subject key identifier: 0A:AE:B2:E6:C1:53:9F:D8:60:CE:AF:B0:43:32:4F:05:8C:6B:86:03
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018EB475AB6E3102EFE8AEA213526B13AB09
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Cq6y5sFTn9hgzq-wQzJPBYxrhgM.roa
Signing time: Sat 06 Apr 2024 17:29:54 +0000
ROA not before: Sat 06 Apr 2024 17:29:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.180.0/24 maxlen: 24
45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
185.198.234.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 06:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:b4:75:ab:6e:31:02:ef:e8:ae:a2:13:52:6b:13:ab:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Apr 6 17:29:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0aaeb2e6c1539fd860ceafb043324f058c6b8603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:91:fc:6b:4f:30:67:90:60:e3:a4:9f:56:fb:
63:2d:6d:42:74:e6:64:c5:f4:fa:89:57:b5:67:99:
0f:9b:60:2a:a5:2a:1d:44:c5:90:89:c2:57:33:d7:
51:53:a0:84:a5:66:19:3e:3f:b9:2e:f4:6f:af:72:
88:5e:10:65:13:72:15:9b:a8:c3:7f:96:6c:44:fe:
3e:07:02:96:f2:b6:3c:86:3c:76:08:46:1d:5e:cf:
1a:ea:2c:5c:50:1f:11:05:b3:45:03:12:f2:b0:6d:
79:18:96:2d:fd:fc:f9:ad:66:5a:e5:3d:58:3b:fe:
33:65:d5:89:0e:13:1b:88:2e:a6:e5:f2:9c:7d:1c:
d4:e2:8f:12:6d:81:94:95:d4:db:2e:89:d9:cb:a3:
21:6a:0a:d5:ad:1e:bf:98:45:81:5e:67:5a:c3:00:
29:e5:a2:ea:64:63:cc:4a:58:09:29:8c:05:a6:c3:
b0:3f:dc:91:d8:b0:ab:e5:9a:ce:d3:cc:db:4b:5f:
9d:b2:ba:ab:95:0a:24:d2:6f:e6:29:a2:5b:76:3b:
b3:d1:fb:2a:11:9f:df:68:97:e7:2b:79:87:40:62:
d7:c1:d1:1e:4e:cd:ad:65:2b:8f:00:ea:cc:e6:36:
56:bf:9f:c4:0b:1f:8e:82:b5:51:0b:a1:19:81:5d:
35:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AE:B2:E6:C1:53:9F:D8:60:CE:AF:B0:43:32:4F:05:8C:6B:86:03
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/Cq6y5sFTn9hgzq-wQzJPBYxrhgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.180.0/24
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
185.198.234.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
05:0f:74:76:0a:b0:0a:41:d4:f3:ed:fb:6d:0a:ff:82:0e:b2:
03:c6:37:11:02:0c:86:54:6b:c6:e2:c7:64:0f:5e:30:09:9d:
9c:a2:bf:da:ce:df:13:f6:a3:65:fb:32:1d:79:cb:6f:11:d3:
06:dd:0e:14:fe:bc:d3:99:15:c6:84:9c:7e:d2:d2:a8:08:67:
98:02:d8:fe:45:4a:1f:9f:51:b7:40:59:98:5f:29:36:a9:29:
9e:b0:56:1f:81:9f:81:17:6b:13:6a:9d:31:b6:e2:14:ff:85:
32:2d:51:69:3e:84:bb:4c:a9:a1:50:04:50:d3:19:f5:04:7f:
2a:28:2a:48:c3:37:ec:ea:6e:d0:c9:ce:77:15:85:7f:4b:1c:
ef:16:4e:16:07:a5:18:27:f0:4c:a0:75:b8:8d:d5:3b:38:da:
c1:ff:2b:c7:24:bf:9a:5a:27:6d:c6:2c:08:ea:c2:07:0d:c5:
0d:9e:e2:fe:c9:4d:2f:3d:97:06:c3:b9:d8:66:0c:df:4a:94:
83:80:5e:82:cb:32:21:89:9d:41:f7:8e:8f:86:cc:dc:e6:55:
35:d4:c3:e1:16:0c:bd:43:27:8c:4d:5d:de:33:25:51:aa:be:
cd:d8:86:f2:72:12:81:26:ed:ee:24:13:46:c1:fe:de:33:08:
da:fc:dd:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org