Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/30Wl9nJsCDhGa3hsJZ3-dXWovas.roa
File: 30Wl9nJsCDhGa3hsJZ3-dXWovas.roa (raw, json)
Hash identifier: GSIsKYm6v/vrwPlMQvDDtqVtZISLTZlHkfshNnea570=
Subject key identifier: DF:45:A5:F6:72:6C:08:38:46:6B:78:6C:25:9D:FE:75:75:A8:BD:AB
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 01856E268ECC821915E16744609B422B2CDB
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/30Wl9nJsCDhGa3hsJZ3-dXWovas.roa
Signing time: Sun 01 Jan 2023 16:24:58 +0000
ROA not before: Sun 01 Jan 2023 16:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212091
IP address blocks: 185.230.103.0/24 maxlen: 24
45.130.46.0/24 maxlen: 24
45.130.47.0/24 maxlen: 24
2a10:b583::/32 maxlen: 32
2a10:b581::/32 maxlen: 32
2a10:b582::/32 maxlen: 32
2a10:b580::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 05 Jan 2023 20:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:8e:cc:82:19:15:e1:67:44:60:9b:42:2b:2c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Jan 1 16:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df45a5f6726c0838466b786c259dfe7575a8bdab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:6e:0f:77:6d:42:05:02:7d:28:97:1a:55:
47:14:9b:34:d3:19:f4:7a:ee:f1:f2:df:27:74:5e:
6e:b0:e9:af:32:95:7a:78:4b:57:8c:83:5f:03:d4:
9a:c4:4c:25:3a:73:a1:0a:d4:f9:8a:9b:1b:ad:be:
3f:b3:ff:37:ff:5b:23:fb:5f:25:69:9f:57:c5:72:
e0:54:d6:ea:f9:0d:3f:2e:ca:e3:f4:29:52:3b:d0:
ef:3e:3f:15:9f:36:32:a1:ff:6a:0c:eb:4e:c7:48:
8f:31:8b:9e:63:4e:f1:11:4e:d5:22:09:36:14:c3:
5e:ff:07:8b:21:0c:c0:83:6f:a1:88:84:f9:3e:d3:
fd:6f:a8:d4:88:07:bc:b2:25:cb:dd:e2:0b:40:8d:
96:8d:9c:af:6b:82:9b:dd:35:39:0e:23:16:b5:4d:
ac:2d:a8:d3:e6:79:fb:a1:c5:a1:d7:35:c9:0a:b4:
98:1b:03:13:3d:0f:d9:0b:ab:36:41:87:bc:ac:52:
23:bc:fc:51:12:74:b8:0d:03:b0:7f:3a:91:34:c3:
a4:49:7b:00:e6:35:61:fd:d1:b3:e9:84:5b:02:a1:
d1:14:5c:5c:e8:f1:97:fd:d1:d6:0e:0b:d9:20:37:
de:d5:a6:5c:ea:71:f6:c6:0c:35:06:28:21:bc:2e:
c7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:45:A5:F6:72:6C:08:38:46:6B:78:6C:25:9D:FE:75:75:A8:BD:AB
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/30Wl9nJsCDhGa3hsJZ3-dXWovas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.46.0/23
185.230.103.0/24
IPv6:
2a10:b580::/30
Signature Algorithm: sha256WithRSAEncryption
96:27:57:21:53:08:2c:be:56:49:fb:e2:e0:c6:05:12:dc:66:
a0:e8:15:1e:e4:30:6e:1f:50:06:67:89:08:66:68:56:70:03:
14:e1:be:7b:4e:1f:85:a0:95:bd:e9:81:0c:e3:2b:ef:97:cc:
d4:3b:6a:cc:e9:95:2a:ad:c1:08:bb:83:4a:51:06:55:c5:20:
17:6d:fd:32:5e:32:26:fc:71:c6:08:a3:f0:0b:ff:63:a3:47:
dd:d0:ff:56:6e:28:49:d4:05:58:5e:bd:84:30:15:bd:82:ec:
c9:1e:6b:cc:7b:0d:31:c3:a3:2f:4d:c0:d5:12:ef:5c:a3:ab:
de:b1:d4:a6:e4:1a:38:59:21:b2:69:44:aa:e3:45:4f:db:e1:
d7:29:4f:17:79:41:c5:15:57:fb:60:0d:c9:bc:f2:fd:65:c7:
e0:a0:36:74:59:05:32:30:c3:3b:c5:b8:d3:9c:d9:d7:91:60:
80:40:e4:5e:0d:37:06:99:9f:29:6e:7b:62:09:52:ca:e5:ca:
87:76:e5:ca:05:fc:94:59:dd:9d:d2:39:b3:da:a6:34:9b:c0:
61:52:6c:e9:3c:61:c9:78:65:66:29:4e:ce:99:47:83:e9:dc:
2a:0c:93:19:0f:f7:f8:b2:49:ff:01:a2:b6:cd:54:54:13:08:
ec:ed:ad:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org