Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8B0LjO5_cXubxM9mob10_x8nIWo.roa
File: 8B0LjO5_cXubxM9mob10_x8nIWo.roa (raw, json)
Hash identifier: S0QLPGN2qCleGZt8DN03YAXoiOfiD/jxdMzxM/WcUNY=
Subject key identifier: F0:1D:0B:8C:EE:7F:71:7B:9B:C4:CF:66:A1:BD:74:FF:1F:27:21:6A
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018572D5CBDA17749D8B5C151876F1B7B800
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8B0LjO5_cXubxM9mob10_x8nIWo.roa
Signing time: Mon 02 Jan 2023 14:14:52 +0000
ROA not before: Mon 02 Jan 2023 14:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43624
IP address blocks: 217.145.227.0/24 maxlen: 24
45.66.208.0/24 maxlen: 24
185.61.217.0/24 maxlen: 24
185.61.219.0/24 maxlen: 24
185.61.218.0/24 maxlen: 24
147.78.183.0/24 maxlen: 24
147.78.180.0/24 maxlen: 24
147.78.182.0/24 maxlen: 24
147.78.181.0/24 maxlen: 24
185.61.221.0/24 maxlen: 24
185.61.223.0/24 maxlen: 24
185.61.222.0/24 maxlen: 24
217.145.226.0/24 maxlen: 24
217.145.224.0/24 maxlen: 24
194.104.11.0/24 maxlen: 24
185.68.185.0/24 maxlen: 24
45.132.184.0/24 maxlen: 24
5.181.170.0/24 maxlen: 24
213.108.2.0/24 maxlen: 24
45.148.124.0/24 maxlen: 24
45.138.100.0/24 maxlen: 24
77.220.194.0/24 maxlen: 24
77.220.193.0/24 maxlen: 24
185.88.100.0/24 maxlen: 24
45.10.166.0/24 maxlen: 24
93.177.118.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 20:13:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:cb:da:17:74:9d:8b:5c:15:18:76:f1:b7:b8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 14:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f01d0b8cee7f717b9bc4cf66a1bd74ff1f27216a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:44:50:52:f0:0a:cc:27:34:58:7b:ad:f4:
17:d6:2b:41:38:64:e1:2f:81:4a:a0:8e:90:7a:04:
a5:a7:55:9e:5e:c3:36:68:1b:6f:68:d6:ed:47:34:
a9:fb:8c:50:b1:19:60:61:4c:18:96:75:55:7e:e6:
a5:26:84:25:2c:7e:6f:05:95:e1:6d:52:e4:74:27:
f9:b6:24:7b:40:63:2b:2d:39:e2:ef:2d:96:43:95:
c6:9c:89:cc:2e:4c:ea:d8:d4:0c:16:7f:ac:ff:5d:
c1:10:f3:fb:50:44:b4:65:04:1c:38:ad:44:08:13:
d4:06:b4:fa:52:05:3e:21:5e:b5:45:8a:f9:c2:72:
b0:f1:9a:11:8b:49:1d:63:1c:27:a8:9d:64:9d:96:
26:d9:14:4a:cf:31:18:71:71:17:97:9a:52:09:57:
de:85:6c:c1:a8:c2:14:f7:d9:24:70:3b:b3:a1:15:
8c:a6:b2:a4:61:a3:3b:86:eb:9f:f2:85:a5:7e:5a:
ee:36:16:25:17:23:76:a5:83:0e:2c:1b:88:eb:8c:
a1:10:dc:83:e9:2d:72:f3:5d:ba:b8:04:9f:dd:81:
6c:ce:53:d3:0c:25:9c:cd:06:11:b9:70:2e:09:4d:
b7:7a:e1:82:4e:30:77:9c:fa:b1:aa:33:98:72:d6:
61:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1D:0B:8C:EE:7F:71:7B:9B:C4:CF:66:A1:BD:74:FF:1F:27:21:6A
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/8B0LjO5_cXubxM9mob10_x8nIWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.170.0/24
45.10.166.0/24
45.66.208.0/24
45.132.184.0/24
45.138.100.0/24
45.148.124.0/24
77.220.193.0-77.220.194.255
93.177.118.0/23
147.78.180.0/22
185.61.217.0-185.61.219.255
185.61.221.0-185.61.223.255
185.68.185.0/24
185.88.100.0/24
194.104.11.0/24
213.108.2.0/24
217.145.224.0/24
217.145.226.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:97:8f:f8:f5:a7:6a:6b:59:d8:7c:71:c4:23:32:8f:8e:41:
99:bd:1c:56:89:48:93:ac:15:1b:8f:00:56:3f:4f:8f:86:10:
b0:01:1f:20:d0:5b:ef:5c:2b:b6:de:98:15:fd:1d:a3:d1:da:
b9:1e:a7:5d:a4:25:e3:bb:08:02:2d:08:4e:62:c0:5f:a5:b8:
2e:f9:e7:c2:57:e2:e9:23:a8:d1:a1:b5:44:c5:42:a7:99:7f:
4b:47:1a:ac:28:ab:ca:56:8f:57:dd:26:58:5c:f9:87:0a:a9:
55:a8:11:1f:5b:de:56:96:77:e3:e3:33:67:f6:fa:31:2b:7a:
62:24:fd:36:0f:47:30:86:4a:e8:5e:e4:10:76:9b:b7:4d:41:
e9:49:de:b1:cc:5f:25:18:0f:ad:51:ce:51:ab:06:cc:2d:74:
79:de:1a:84:d3:af:85:54:d0:0f:30:44:a0:21:81:7c:e8:9c:
02:73:8e:23:19:03:f3:20:49:0b:b2:8b:20:e0:87:b5:fa:78:
01:65:9e:02:c8:12:6b:4f:86:ce:08:a1:09:6a:d5:83:d2:9a:
59:59:54:d1:f8:de:e6:b8:27:3d:db:07:41:9c:17:1e:e0:ba:
45:a7:8e:6a:90:c5:90:a2:af:94:49:f5:10:72:d7:1a:07:53:
29:d6:f0:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org