Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s4RbFl9Ajs20FZBTeCc1wvvAmww.roa
File: s4RbFl9Ajs20FZBTeCc1wvvAmww.roa (raw, json)
Hash identifier: uPnOuqSAhsfJ5amZRuH56eqcAwGxp+IhqqO0iBDUj+c=
Subject key identifier: B3:84:5B:16:5F:40:8E:CD:B4:15:90:53:78:27:35:C2:FB:C0:9B:0C
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018572D5CB75AC4AE45555B9F23043F47970
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s4RbFl9Ajs20FZBTeCc1wvvAmww.roa
Signing time: Mon 02 Jan 2023 14:14:51 +0000
ROA not before: Mon 02 Jan 2023 14:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35830
IP address blocks: 45.66.211.0/24 maxlen: 24
45.66.210.0/24 maxlen: 24
185.61.216.0/24 maxlen: 24
185.61.220.0/24 maxlen: 24
45.132.186.0/24 maxlen: 24
185.102.112.0/24 maxlen: 24
45.132.187.0/24 maxlen: 24
185.102.113.0/24 maxlen: 24
5.181.171.0/24 maxlen: 24
45.148.125.0/24 maxlen: 24
45.148.126.0/24 maxlen: 24
45.148.127.0/24 maxlen: 24
45.138.103.0/24 maxlen: 24
45.138.102.0/24 maxlen: 24
5.183.253.0/24 maxlen: 24
213.232.121.0/24 maxlen: 24
213.232.123.0/24 maxlen: 24
185.96.37.0/24 maxlen: 24
141.98.85.0/24 maxlen: 24
141.98.86.0/24 maxlen: 24
185.81.145.0/24 maxlen: 24
185.81.144.0/24 maxlen: 24
185.88.102.0/24 maxlen: 24
185.88.101.0/24 maxlen: 24
185.88.103.0/24 maxlen: 24
5.183.254.0/24 maxlen: 24
185.88.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:cb:75:ac:4a:e4:55:55:b9:f2:30:43:f4:79:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 14:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3845b165f408ecdb4159053782735c2fbc09b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a4:78:02:77:5c:78:a3:41:a5:b0:0d:fd:9c:
33:74:32:6f:16:6a:88:14:30:4f:b5:d6:a5:3a:62:
ea:fb:8e:11:de:d1:a5:53:1c:d5:d1:a8:03:e0:23:
51:c1:c1:30:ff:ac:4c:c1:ec:36:11:55:4d:63:5c:
01:31:87:ad:b6:62:dc:d5:84:c9:4c:c2:74:4b:22:
bc:25:17:eb:90:b0:44:65:23:bd:57:0b:aa:2e:e6:
a0:da:b1:3d:ae:1e:7d:d8:3e:de:f8:be:57:09:c0:
24:18:bc:41:76:85:ae:3e:ae:c6:4f:ca:5f:7a:86:
dc:1d:af:c4:69:dc:41:23:0b:f8:74:5e:0b:31:91:
2c:7e:1d:5c:0d:42:cb:6d:17:77:7e:01:96:35:00:
c8:77:f4:95:60:7b:4f:55:b6:35:30:15:04:9b:dc:
a0:f1:ae:66:ed:e8:0b:b2:d4:10:eb:ba:09:45:ae:
7a:35:55:98:30:e5:fc:01:2f:00:d0:41:0a:7e:64:
f5:7b:f5:d4:05:c0:c2:83:13:88:c2:e0:d2:67:2e:
85:b7:fa:c5:5d:f2:48:56:82:fb:ca:24:3d:86:6b:
4a:cb:2e:e7:b0:73:e4:cc:65:41:98:37:ce:3e:80:
2b:4b:7c:65:b3:74:2a:fe:24:83:e1:91:30:10:b9:
94:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:84:5B:16:5F:40:8E:CD:B4:15:90:53:78:27:35:C2:FB:C0:9B:0C
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/s4RbFl9Ajs20FZBTeCc1wvvAmww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.171.0/24
5.183.253.0-5.183.254.255
45.66.210.0/23
45.132.186.0/23
45.138.102.0/23
45.148.125.0-45.148.127.255
141.98.85.0-141.98.86.255
185.61.216.0/24
185.61.220.0/24
185.81.144.0/23
185.88.37.0/24
185.88.101.0-185.88.103.255
185.96.37.0/24
185.102.112.0/23
213.232.121.0/24
213.232.123.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:88:b6:23:58:c8:2a:76:ae:aa:50:59:79:75:a5:af:b7:75:
18:31:b6:06:ad:70:27:d9:f8:05:37:de:e9:26:1f:06:fa:bb:
5d:84:c0:1b:ba:3f:ea:dc:16:dc:5e:44:5e:70:cc:b4:c3:34:
4a:59:4d:c1:3c:72:90:28:34:30:b4:82:61:55:93:18:99:d4:
73:68:ae:a1:f1:78:c4:d8:aa:b6:16:8a:2a:4e:10:da:62:47:
11:ea:13:0c:37:1e:32:ef:d8:c4:04:33:16:16:3a:a8:8b:18:
c5:1b:5b:05:a6:3a:f2:96:75:be:64:ba:83:60:4a:74:db:ff:
b7:a3:55:a1:66:78:1c:53:21:58:08:b7:54:62:aa:14:8b:20:
f2:56:be:94:d1:c0:c2:72:66:4c:d3:85:b7:17:8f:6e:c1:46:
e0:48:76:f7:ca:cf:35:0a:56:ec:f7:4d:72:a8:35:d6:a3:2f:
3f:0b:e2:5c:a9:3d:aa:80:61:bf:f0:68:46:d0:62:aa:2f:5a:
38:6a:06:f6:ee:19:e8:ba:04:3c:57:db:90:5b:02:3d:6a:f7:
d9:c6:d9:07:b2:d8:68:ef:64:29:1c:9e:97:49:91:fc:cd:40:
41:ea:d3:5a:39:67:c8:bf:46:d0:03:74:7d:85:df:f7:da:d3:
84:4b:66:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org