Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/mlJhsyNiIJIApiPS606zzA1E2Ck.roa
File: mlJhsyNiIJIApiPS606zzA1E2Ck.roa (raw, json)
Hash identifier: +K7wbNG7GtyFvwFmfkmNytYwoecn0sw59QEzwh/rgSM=
Subject key identifier: 9A:52:61:B3:23:62:20:92:00:A6:23:D2:EB:4E:B3:CC:0D:44:D8:29
Certificate issuer: /CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Certificate serial: 018C3F989AFDF2ED6BC5A736E84C02F2BE6F
Authority key identifier: 5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/mlJhsyNiIJIApiPS606zzA1E2Ck.roa
Signing time: Wed 06 Dec 2023 14:46:54 +0000
ROA not before: Wed 06 Dec 2023 14:46:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51984
IP address blocks: 185.182.152.0/24 maxlen: 24
185.182.155.0/24 maxlen: 24
185.182.154.0/24 maxlen: 24
185.182.153.0/24 maxlen: 24
46.253.43.0/24 maxlen: 24
46.253.42.0/24 maxlen: 24
46.253.41.0/24 maxlen: 24
46.253.40.0/24 maxlen: 24
46.253.44.0/24 maxlen: 24
46.253.47.0/24 maxlen: 24
46.253.46.0/24 maxlen: 24
46.253.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:98:9a:fd:f2:ed:6b:c5:a7:36:e8:4c:02:f2:be:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5baa35401e5297b3b527e84f93ea8aa110d97b95
Validity
Not Before: Dec 6 14:46:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a5261b32362209200a623d2eb4eb3cc0d44d829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:90:50:80:42:9a:6d:54:d6:7e:8e:8a:fa:12:
51:e8:75:51:ad:e1:d5:54:1c:70:20:36:83:39:4e:
d4:5d:83:75:61:b3:31:0d:d0:97:98:00:24:77:d4:
c5:bd:8e:9f:10:73:f2:1c:bc:c6:08:ba:dc:88:9e:
2d:aa:4c:9d:9c:45:48:dd:2b:1a:c0:52:d5:f6:c7:
ba:0b:01:61:a7:d4:fe:e4:79:af:0f:c4:4b:d7:dc:
f0:88:22:10:16:4a:83:d0:17:d9:aa:2c:e8:33:67:
fc:8b:fc:44:37:d1:5a:67:ee:1c:69:4e:97:2e:1c:
0f:bd:7b:e0:68:66:d9:fd:43:65:26:2e:f6:21:04:
ed:00:58:73:4b:07:a1:f9:c6:6a:cf:6c:5c:5d:93:
ae:63:15:2d:1b:d1:65:b7:c4:63:a3:24:ce:65:54:
38:15:eb:1e:0b:8a:40:45:5d:bc:35:ff:ee:e3:48:
3e:a3:ab:41:45:d2:20:56:d8:8e:4b:87:67:72:8f:
12:2a:77:f2:b2:87:d6:da:68:7a:3e:e1:78:0b:98:
a8:4d:d7:95:5c:11:d8:26:55:83:9f:73:42:2f:bf:
05:b0:02:b5:e8:c9:17:bf:cd:8f:5b:ea:22:41:62:
2a:11:c0:a3:8c:62:03:90:ce:19:35:ed:bb:00:da:
b3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:52:61:B3:23:62:20:92:00:A6:23:D2:EB:4E:B3:CC:0D:44:D8:29
X509v3 Authority Key Identifier:
keyid:5B:AA:35:40:1E:52:97:B3:B5:27:E8:4F:93:EA:8A:A1:10:D9:7B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/mlJhsyNiIJIApiPS606zzA1E2Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/a1dcfb-8010-414e-9e3a-44001700b8ca/1/W6o1QB5Sl7O1J-hPk-qKoRDZe5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.40.0/21
185.182.152.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:fe:3c:36:a1:84:d5:ac:49:16:c4:d8:a1:68:89:08:94:dc:
fe:59:68:12:a1:1a:ca:49:b0:2f:c4:4e:07:63:71:1d:13:75:
e3:21:8a:a2:d6:ac:41:f0:5a:bc:18:67:77:84:0f:56:b3:f3:
66:87:56:7e:80:9c:f9:c8:51:71:62:98:0a:d3:b4:e9:b6:bd:
4e:66:43:a1:70:f4:d9:61:02:9e:af:21:6f:4d:f5:11:c2:18:
be:21:3b:0b:f3:e5:82:91:9c:a9:d0:1a:94:5f:06:6f:a9:32:
ec:e8:7f:7a:3c:ec:8e:38:a7:cb:f2:7f:19:d2:f8:2b:02:d8:
bd:5e:3c:6f:66:64:1e:7f:f7:5f:d6:92:da:f4:ff:25:b3:bd:
8b:8b:0e:0e:f0:34:40:4d:28:c6:58:b4:50:a9:ba:04:a7:81:
56:34:9a:dd:17:22:4c:ad:b4:ee:4f:48:64:5b:77:3b:f3:98:
c8:9b:44:19:4e:86:35:93:82:d9:8d:a2:ef:dd:78:55:c0:9f:
54:6d:7b:fe:eb:cf:b9:88:37:9a:07:97:69:98:6d:a1:24:b0:
74:3a:6d:d1:2b:2a:d9:74:61:f6:37:65:27:fd:20:91:92:b6:
e8:ed:47:ab:ea:83:a4:a2:f9:11:ea:6c:c3:39:87:e7:12:85:
02:7e:f1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:28 2024 by rpki-client on console-ams.rpki-client.org