Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/O0LYpQ2IgovWWEM9SjASaxojDLw.roa
File: O0LYpQ2IgovWWEM9SjASaxojDLw.roa (raw, json)
Hash identifier: oLrfIDjZbaaNVBTo10VcLtY6H88W84O48+1OHQIRjgM=
Subject key identifier: 3B:42:D8:A5:0D:88:82:8B:D6:58:43:3D:4A:30:12:6B:1A:23:0C:BC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01916A51F9DB89B19548B3AF0FECA39D4AEE
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/O0LYpQ2IgovWWEM9SjASaxojDLw.roa
Signing time: Mon 19 Aug 2024 11:07:22 +0000
ROA not before: Mon 19 Aug 2024 11:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
89.40.70.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Aug 2024 11:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:51:f9:db:89:b1:95:48:b3:af:0f:ec:a3:9d:4a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 19 11:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b42d8a50d88828bd658433d4a30126b1a230cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:ee:5b:e7:e8:b7:d8:dd:dd:85:15:4b:63:
5b:03:5d:09:7b:bc:f6:97:35:12:02:91:a5:d4:01:
2e:68:98:9f:55:2e:b3:78:ad:51:a4:7f:ad:bc:c9:
bf:4c:e1:26:bb:33:a3:fe:68:39:f0:d0:10:ce:72:
4e:8e:66:db:a9:a5:ff:72:3c:4c:45:77:7e:39:e5:
88:80:2a:93:e1:6c:60:28:3c:d4:8c:9f:b5:c2:f4:
dc:11:a7:ce:1e:2c:78:c1:87:df:97:6e:89:8b:d2:
0a:e9:e5:05:9b:98:3e:7a:a5:26:3c:96:ed:8b:b6:
ea:39:bb:e7:3a:a0:00:32:b8:71:cd:b8:a9:af:99:
af:57:3e:56:8e:df:19:8e:43:78:d3:1b:a8:14:ec:
f1:e6:07:0e:e9:36:a2:b6:a8:00:17:53:ea:12:f7:
2e:d6:96:b0:7a:11:5c:e4:c4:3b:43:ab:a6:16:94:
ce:d6:80:04:3f:ff:d9:41:67:14:f6:79:d6:64:5a:
51:38:18:38:79:b8:2d:22:9a:74:7b:b0:88:28:ad:
60:af:e0:00:b1:ae:10:c5:94:bc:50:34:38:70:e1:
16:97:22:a1:a0:f3:6a:73:b6:de:b9:c2:b9:30:77:
d8:09:ea:8a:e2:86:c8:15:fa:9c:5f:3f:47:fa:3e:
20:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:42:D8:A5:0D:88:82:8B:D6:58:43:3D:4A:30:12:6B:1A:23:0C:BC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/O0LYpQ2IgovWWEM9SjASaxojDLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
89.40.70.0/24
93.114.183.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
25:77:8f:95:c0:4e:9a:60:97:d6:c0:bf:6e:22:6b:5c:b7:1c:
4d:f9:19:4f:bc:cb:34:fc:fa:fe:d5:c3:06:35:34:87:28:49:
a8:0d:a7:3f:fd:66:ec:5d:e8:62:05:91:be:d2:04:d7:9f:80:
ed:1f:ea:3c:72:4b:24:cf:0b:79:c0:33:d8:0e:0b:78:14:4a:
6a:3f:c6:64:03:d8:80:3c:a7:e6:c2:9c:60:de:12:16:63:35:
a9:c7:1b:37:22:4e:cf:df:76:83:83:3d:d6:23:b0:a9:c3:c2:
dd:85:4d:62:b1:b6:b4:e3:0e:73:0c:e7:f8:45:78:77:e2:40:
d6:4f:87:2e:d2:5f:9b:95:f9:87:25:83:93:32:03:14:db:46:
dc:4d:5b:aa:af:29:4a:5f:9c:75:db:4a:0d:fd:14:10:79:4c:
9b:18:56:ef:3e:f9:96:3b:18:36:2d:01:0f:ef:06:1d:49:4d:
1a:71:20:00:98:8f:94:b4:d6:ac:20:b0:cb:79:5f:14:39:01:
86:c2:7c:6a:f8:14:17:1c:0c:e8:be:0f:3b:b8:f1:9a:d3:d9:
ed:7b:73:66:31:27:79:8f:1b:6f:68:7f:e9:a4:35:12:df:82:
6c:7b:c0:90:89:cd:fd:eb:0e:58:7a:8f:c9:80:a8:56:f7:04:
f4:b9:7c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 23 14:18:50 2024 by rpki-client on console-fra.rpki-client.org