Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Iv8YIZXwJCONA-LaFw643_5X1Ng.roa
File: Iv8YIZXwJCONA-LaFw643_5X1Ng.roa (raw, json)
Hash identifier: 0qg0QIBH/gvqhQI34MLqfqYUTGqj0FV/0g2C6VZznGc=
Subject key identifier: 22:FF:18:21:95:F0:24:23:8D:03:E2:DA:17:0E:B8:DF:FE:57:D4:D8
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 018EF8BAA83D1132DEE04BBF421CB9F076FF
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Iv8YIZXwJCONA-LaFw643_5X1Ng.roa
Signing time: Fri 19 Apr 2024 23:39:26 +0000
ROA not before: Fri 19 Apr 2024 23:39:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55933
IP address blocks: 45.82.76.0/24 maxlen: 24
45.89.232.0/23 maxlen: 24
45.94.43.0/24 maxlen: 24
185.207.152.0/22 maxlen: 22
185.207.152.0/24 maxlen: 24
185.207.154.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 06:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f8:ba:a8:3d:11:32:de:e0:4b:bf:42:1c:b9:f0:76:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Apr 19 23:39:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22ff182195f024238d03e2da170eb8dffe57d4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:13:12:ec:b9:c9:61:e8:b2:58:c1:9f:c4:ce:
23:36:10:de:59:fc:e0:ef:12:08:01:9f:17:2d:f6:
c2:28:16:40:5c:0a:cc:bc:72:33:ce:e6:32:2a:53:
91:b2:fb:5a:f7:97:92:2b:71:12:45:b9:56:88:85:
ee:d8:d3:87:4e:80:eb:5f:8a:5d:dd:cb:ed:13:d1:
a8:6f:27:25:89:e5:58:4c:25:68:1e:ef:48:74:d6:
fa:ba:d8:c2:56:4b:d8:74:4c:dd:2c:e1:cb:f8:73:
fa:13:80:e2:f1:52:ce:95:62:27:5d:29:99:ef:61:
27:d8:0e:6b:f4:c6:d9:26:f1:c1:d0:24:f5:20:e6:
12:9e:3d:c5:c7:12:05:5f:76:1e:01:a4:a1:4b:f5:
a0:be:c9:50:71:05:ab:be:7f:5e:c3:a4:35:23:87:
3f:31:30:98:89:a7:5e:62:76:00:3a:7e:75:08:6c:
5b:cb:f1:d7:d1:dc:ba:31:d5:a6:e0:27:e5:00:95:
a2:7c:89:84:20:77:78:9f:82:5e:39:69:85:dd:f3:
b3:39:bf:a5:90:e1:2d:bc:7f:e4:21:e3:af:f2:f2:
e5:5d:20:d6:42:b0:c6:f7:58:3f:9b:80:53:7b:c7:
97:09:51:b0:c4:17:4b:e9:41:d1:6e:49:9d:bb:b6:
ed:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:18:21:95:F0:24:23:8D:03:E2:DA:17:0E:B8:DF:FE:57:D4:D8
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Iv8YIZXwJCONA-LaFw643_5X1Ng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.76.0/24
45.89.232.0/23
45.94.43.0/24
185.207.152.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:6d:02:e2:7f:09:10:d0:26:35:39:30:59:7e:b9:57:87:ca:
97:ce:1a:14:ae:a3:5d:5a:a8:c3:f5:04:d0:d5:d1:f9:19:54:
2e:94:83:7b:54:2d:03:be:1e:ba:71:fd:f0:78:d9:58:99:8a:
28:32:e6:e6:c0:1c:9a:92:e2:15:ee:89:07:a8:55:1c:8a:ae:
e5:42:97:a3:ae:95:1c:4d:be:8b:0c:59:0d:17:a8:3e:08:84:
58:a7:22:95:3b:38:68:17:fd:20:96:07:12:a3:67:a0:51:36:
71:f6:c9:d4:4a:88:bc:ab:66:65:1e:25:f2:2a:7c:a3:16:da:
00:fa:ef:9a:ef:4e:39:c9:39:30:7a:ec:3f:ca:0f:ff:67:f6:
35:70:d6:8f:62:a1:60:52:fb:d6:19:f6:8b:4f:84:30:4d:b4:
72:88:6a:ee:f8:95:93:7f:95:19:b2:49:79:1f:d6:a7:7d:fb:
12:f2:61:9a:c2:3c:8e:2d:aa:ba:bf:20:32:3d:84:e2:a5:44:
7f:77:fa:98:ed:ce:43:bf:49:3b:ab:89:02:b7:3c:48:c4:0e:
c0:8d:10:de:4b:48:6f:4c:fa:c8:2d:d4:b4:4c:4d:db:cc:18:
e3:84:3b:87:ec:3a:f3:97:4a:e9:31:92:35:65:09:a9:34:af:
42:94:1b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 10:02:34 2024 by rpki-client on console-ams.rpki-client.org