Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CM-EIN08Yx_Rk59Usj1h8PL0EbI.roa
File: CM-EIN08Yx_Rk59Usj1h8PL0EbI.roa (raw, json)
Hash identifier: oStQTbJEWWRU0Iy4F+zmsb/vfYJTGHG/d8H11MgG0Vk=
Subject key identifier: 08:CF:84:20:DD:3C:63:1F:D1:93:9F:54:B2:3D:61:F0:F2:F4:11:B2
Certificate issuer: /CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Certificate serial: 01882352CFA8A37500B08292B627D6324C32
Authority key identifier: 0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CM-EIN08Yx_Rk59Usj1h8PL0EbI.roa
Signing time: Tue 16 May 2023 06:50:09 +0000
ROA not before: Tue 16 May 2023 06:50:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199967
IP address blocks: 45.66.133.0/24 maxlen: 24
185.159.70.0/24 maxlen: 24
185.159.69.0/24 maxlen: 24
185.159.68.0/24 maxlen: 24
45.12.205.0/24 maxlen: 24
45.12.204.0/24 maxlen: 24
45.134.19.0/24 maxlen: 24
81.90.191.0/24 maxlen: 24
188.119.101.0/24 maxlen: 24
188.119.100.0/24 maxlen: 24
185.168.23.0/24 maxlen: 24
185.168.22.0/24 maxlen: 24
185.168.21.0/24 maxlen: 24
185.171.121.0/24 maxlen: 24
91.217.121.0/24 maxlen: 24
91.217.120.0/24 maxlen: 24
194.156.228.0/24 maxlen: 24
45.144.241.0/24 maxlen: 24
45.82.166.0/24 maxlen: 24
5.183.178.0/24 maxlen: 24
185.160.25.0/24 maxlen: 24
5.181.6.0/24 maxlen: 24
5.181.7.0/24 maxlen: 24
152.89.209.0/24 maxlen: 24
217.197.163.0/24 maxlen: 24
147.78.15.0/24 maxlen: 24
45.128.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 07:05:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:52:cf:a8:a3:75:00:b0:82:92:b6:27:d6:32:4c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b247e73391ec9d6a2a46f2cb0b02fc994288f13
Validity
Not Before: May 16 06:50:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08cf8420dd3c631fd1939f54b23d61f0f2f411b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ce:cf:de:34:88:f6:18:e4:bc:2e:6b:77:00:
9e:46:85:95:75:a2:19:c2:ec:6c:6a:bf:1b:4d:11:
a0:6b:d6:e7:a6:23:c3:14:6e:c8:91:a8:1d:c4:7a:
d0:23:19:73:71:52:d4:6e:de:f2:7f:04:5a:fb:84:
49:1f:bd:fe:48:3e:9d:b6:d4:0f:4b:9b:54:07:29:
84:e4:16:05:3d:90:6a:2a:0d:7d:03:e6:56:31:7a:
41:db:83:d9:28:29:87:e0:b6:05:a3:27:10:48:a6:
fd:a8:57:76:57:07:fe:30:38:7c:4e:62:45:f5:27:
ad:85:64:38:aa:d7:d2:2d:79:a9:3e:99:d0:96:5d:
b0:11:de:94:6c:99:32:84:78:2f:da:c4:ec:0d:53:
b5:41:74:79:d5:54:1e:67:37:16:bb:73:ef:34:04:
f1:5c:1d:c4:db:f1:2f:a8:bb:7a:55:19:40:15:58:
53:5b:ec:fd:3c:d5:a5:2a:ad:24:78:73:1b:a3:20:
37:fd:61:21:f7:8d:02:64:64:fd:95:f8:c7:b3:f3:
d0:88:33:4a:48:43:27:df:ad:cd:bc:9c:56:3b:dd:
93:eb:dc:0b:9f:0d:4f:9b:e5:19:f1:a6:ce:48:bd:
bb:18:54:03:ae:20:66:10:9c:08:c4:9b:e9:c2:8f:
0d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CF:84:20:DD:3C:63:1F:D1:93:9F:54:B2:3D:61:F0:F2:F4:11:B2
X509v3 Authority Key Identifier:
keyid:0B:24:7E:73:39:1E:C9:D6:A2:A4:6F:2C:B0:B0:2F:C9:94:28:8F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CyR-czkeydaipG8ssLAvyZQojxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CM-EIN08Yx_Rk59Usj1h8PL0EbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b3fd40-b125-4282-b883-736789ee6fd0/1/CyR-czkeydaipG8ssLAvyZQojxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.6.0/23
5.183.178.0/24
45.12.204.0/23
45.66.133.0/24
45.82.166.0/24
45.128.154.0/24
45.134.19.0/24
45.144.241.0/24
81.90.191.0/24
91.217.120.0/23
147.78.15.0/24
152.89.209.0/24
185.159.68.0-185.159.70.255
185.160.25.0/24
185.168.21.0-185.168.23.255
185.171.121.0/24
188.119.100.0/23
194.156.228.0/24
217.197.163.0/24
Signature Algorithm: sha256WithRSAEncryption
be:04:46:64:33:95:9c:03:b2:e9:a3:bd:0b:6a:03:50:bd:f8:
20:39:e0:2b:2c:1f:37:b8:01:98:b9:14:c7:9b:3a:83:ad:6a:
a7:86:ff:10:06:7f:be:50:e1:1d:6b:15:ac:3e:f4:9a:f3:98:
ad:0e:04:87:d7:cd:bc:d7:a3:e5:2a:51:87:9e:97:56:37:41:
90:fb:47:f5:1a:d7:05:f2:1f:9c:80:e1:a2:70:58:5c:7c:1c:
cd:57:96:4a:75:f2:50:65:df:5c:00:6b:5a:df:fb:2d:68:26:
39:e2:0c:c2:08:30:bf:41:f3:19:1c:0d:5c:b8:21:b9:d2:ed:
7b:61:94:f7:47:2f:e3:ea:c4:9f:99:a1:ab:43:47:0f:9a:29:
02:7e:0b:ae:26:a9:bf:67:93:5b:df:b6:b1:bf:fd:f9:76:55:
d7:9f:4c:4c:04:58:31:d3:dd:c0:39:53:a0:20:04:82:3f:1f:
66:51:be:55:6c:1b:4d:46:b9:88:cd:41:8e:f4:93:c7:fe:1d:
34:08:8c:e4:c3:63:cb:9b:5d:fe:74:1e:a5:d7:f9:17:53:c6:
30:86:48:0e:8f:46:87:06:f3:74:09:a0:1c:ff:21:9b:6a:00:
7e:67:27:34:a3:11:73:ea:c9:b0:eb:18:cc:02:c1:23:e7:81:
ff:de:24:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org