Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4-jE0HHpB1Ax6wCvCKzpZBs8Xzk.roa
File: 4-jE0HHpB1Ax6wCvCKzpZBs8Xzk.roa (raw, json)
Hash identifier: OZv5hG7bb+e+M2s3hcnfLFC6fZK88QSVjp0Y6zApB2Q=
Subject key identifier: E3:E8:C4:D0:71:E9:07:50:31:EB:00:AF:08:AC:E9:64:1B:3C:5F:39
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018F94B07A9558B239098FEF9F3E67C24612
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4-jE0HHpB1Ax6wCvCKzpZBs8Xzk.roa
Signing time: Mon 20 May 2024 06:29:04 +0000
ROA not before: Mon 20 May 2024 06:29:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14178
IP address blocks: 45.85.224.0/22 maxlen: 22
45.130.138.0/24 maxlen: 24
45.144.188.0/22 maxlen: 24
45.145.251.0/24 maxlen: 24
136.144.41.0/24 maxlen: 24
185.227.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 06:43:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:b0:7a:95:58:b2:39:09:8f:ef:9f:3e:67:c2:46:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 20 06:29:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3e8c4d071e9075031eb00af08ace9641b3c5f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e8:a6:f0:6c:63:80:2d:a0:00:5b:97:5b:91:
02:a4:54:f9:6a:d9:d3:08:15:ea:64:b9:d6:8e:9f:
ac:27:16:8f:7b:53:58:3a:01:79:d1:a6:fa:49:ef:
f1:ac:a6:3f:ea:44:bf:7b:9b:f0:f4:39:d4:9e:35:
8f:36:43:2d:fc:8c:c8:6f:23:60:bb:e4:0d:46:66:
8c:fd:c7:ef:06:39:95:78:ca:5b:49:ed:ce:d3:54:
ca:80:f9:0f:6e:94:ff:ae:00:97:dc:e2:3c:97:42:
b6:ad:86:63:6e:b5:ae:c4:6a:81:0f:e8:0b:25:36:
cf:7c:b9:74:d1:24:f1:86:a9:57:3a:aa:a9:9a:21:
22:6c:d6:be:b2:f4:45:bd:08:b2:06:db:c2:ed:b5:
09:82:85:e7:de:90:8a:34:30:67:51:32:08:8a:eb:
9b:3b:a5:22:d1:1e:f2:78:9f:15:a6:1a:00:95:05:
56:41:d9:37:b0:59:c7:0c:00:75:45:15:65:9f:7a:
ab:4f:3f:39:12:f4:9f:4e:aa:21:62:37:44:e7:2b:
04:91:2d:d5:aa:99:71:e0:d0:3a:e5:af:fa:e8:8f:
b3:d8:4d:0a:fd:d8:18:24:f6:56:fe:38:dd:3b:0f:
a3:b4:60:54:34:88:f5:64:4b:8a:0d:f9:e2:ab:12:
f4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E8:C4:D0:71:E9:07:50:31:EB:00:AF:08:AC:E9:64:1B:3C:5F:39
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4-jE0HHpB1Ax6wCvCKzpZBs8Xzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.224.0/22
45.130.138.0/24
45.144.188.0/22
45.145.251.0/24
136.144.41.0/24
185.227.35.0/24
Signature Algorithm: sha256WithRSAEncryption
47:9d:63:b7:ba:9d:6f:96:44:10:d8:90:e9:37:4a:b6:43:40:
b1:15:14:dc:1e:87:3a:6e:56:a4:41:29:8c:6f:4a:2b:a7:7e:
e8:8c:31:4c:77:07:69:59:52:be:54:45:4d:89:cc:af:48:37:
bf:0f:10:ce:f0:0e:51:6a:54:6a:83:87:52:40:47:1e:40:f6:
2e:f0:a9:8d:44:38:1a:e7:1c:01:95:ff:7f:a3:44:d9:2a:6f:
ee:f8:a9:de:a5:68:f5:e5:f0:21:1b:58:e8:e8:27:73:b0:0d:
c3:5a:8b:f4:88:e8:a2:62:0f:ed:57:18:58:c6:be:4c:27:34:
e3:ab:f8:58:50:6b:a0:30:b2:bf:bf:7c:70:64:f4:c4:fb:e7:
d3:a3:47:1c:04:8e:e5:21:c9:a4:78:eb:60:3e:a2:e1:93:22:
9c:bb:47:c9:84:90:40:1c:9a:a7:2d:d8:76:cf:86:c6:44:71:
02:bb:40:8f:e5:00:df:78:24:33:5a:8a:cb:d4:c5:70:94:b6:
94:85:3c:27:08:0f:46:3e:05:cf:f4:cd:18:2b:c0:b6:c4:ae:
82:06:42:2b:87:40:0a:55:d4:db:2d:7d:09:fb:b2:07:c2:ab:
af:7c:4c:0d:86:a8:78:0a:76:5d:b9:c7:ba:3b:f0:b2:3d:14:
a5:ef:40:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org