Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/BrjICrhSkEocVxcbbG91-infvtY.roa
File: BrjICrhSkEocVxcbbG91-infvtY.roa (raw, json)
Hash identifier: Z9pKQ7NaUVuu1sp55aD4F85NU7W0NXQRosA/1Zc+aKk=
Subject key identifier: 06:B8:C8:0A:B8:52:90:4A:1C:57:17:1B:6C:6F:75:FA:29:DF:BE:D6
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189D489F3D84E9093D02AFD6B5ECB980E45
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/BrjICrhSkEocVxcbbG91-infvtY.roa
Signing time: Tue 08 Aug 2023 09:45:57 +0000
ROA not before: Tue 08 Aug 2023 09:45:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a0f:cc87::/36 maxlen: 36
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a11:af01::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a11:e82::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a09:4e01:9000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 08 Aug 2023 12:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:89:f3:d8:4e:90:93:d0:2a:fd:6b:5e:cb:98:0e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Aug 8 09:45:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06b8c80ab852904a1c57171b6c6f75fa29dfbed6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:30:ad:86:0d:d6:2f:a9:9b:d5:cf:d3:bc:25:
44:45:2f:37:64:9b:f6:4b:05:2b:49:b6:e4:d7:d9:
81:09:7b:37:57:af:78:6f:7e:b6:b5:5c:ee:1e:30:
66:5c:82:28:cd:24:63:82:cb:81:4b:3e:53:96:6c:
ae:68:48:a0:d5:c1:4c:68:d4:14:50:07:8c:13:24:
9d:6f:14:48:ae:bc:7f:6b:8f:fe:e6:f6:d6:72:42:
35:a7:c5:42:23:3f:98:e6:52:98:c8:c4:09:94:b3:
a9:61:54:f9:79:ff:c9:60:e5:2e:a5:e2:5f:0c:a5:
95:ae:ec:79:3a:a8:9c:da:12:e6:99:c3:d6:9f:cb:
19:9f:b7:11:0c:6d:e4:e6:93:3c:9a:4f:cb:07:9b:
e0:5d:a0:02:44:59:63:e5:67:e9:02:79:0d:a4:14:
90:ad:e2:b5:03:17:12:9b:62:2b:20:82:03:b2:94:
89:68:d5:1d:c2:b1:c2:e8:ce:da:a7:d6:3a:e7:2d:
f7:f9:b3:34:77:0f:8a:ef:05:b5:e1:02:c4:cc:f3:
2e:ed:85:f8:3c:b7:b0:c7:7f:9e:74:05:47:3a:df:
86:8a:d2:e8:64:19:4f:d8:15:95:24:8d:22:7a:c6:
64:88:18:5b:cc:6b:a4:82:cb:da:7e:d9:bb:de:8b:
d6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B8:C8:0A:B8:52:90:4A:1C:57:17:1B:6C:6F:75:FA:29:DF:BE:D6
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/BrjICrhSkEocVxcbbG91-infvtY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a09:4e01:9000::/36
2a0c:e8c0::/29
2a0d:5ec5::/32
2a0f:cc87::/36
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
2a11:e82::/32
2a11:af01::/32
Signature Algorithm: sha256WithRSAEncryption
07:66:c2:12:54:24:86:28:f1:0a:3a:f6:d1:25:27:63:72:1e:
81:34:f6:e1:58:02:1e:f1:b6:35:c3:97:fc:f8:85:c4:7d:8f:
44:84:e3:2c:ac:4f:cd:9b:4b:2f:54:38:13:9a:d5:1d:c0:5e:
30:8b:72:78:5d:74:e4:ae:2d:64:17:b3:15:99:fc:8d:c0:50:
38:a2:7c:a4:6a:63:1e:a7:0b:b0:97:64:15:82:07:f9:b4:ff:
fe:a0:f9:5b:15:2c:9d:2b:16:a1:0c:a7:f3:2f:86:72:9e:06:
c1:ec:3a:c2:61:ac:50:3e:c0:de:7b:d2:c9:77:f7:86:38:9f:
8e:99:8a:ce:96:7d:35:a9:11:a1:a1:9a:69:31:7a:da:59:1f:
81:c9:86:33:04:17:ae:36:2a:a0:c4:4e:47:f1:fe:7d:d6:98:
79:86:d9:9f:7a:02:39:a3:8b:d6:11:01:d2:56:61:00:19:a4:
36:14:c8:cc:85:69:be:d9:af:ed:b3:b8:1e:61:99:98:9d:14:
fd:68:a4:d4:3c:68:8e:7f:b9:f4:ff:f4:ab:ca:7c:c6:c5:f7:
90:cd:b5:b8:45:1e:86:60:50:09:79:7c:e1:3c:26:be:42:51:
c2:0f:81:01:ee:0b:77:2e:de:e2:ef:6e:52:66:7e:3c:40:35:
7a:52:f4:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org