Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A1lkikk6uQQGgjdf2OzgV7_K5Hk.roa
File: A1lkikk6uQQGgjdf2OzgV7_K5Hk.roa (raw, json)
Hash identifier: S7Yf/1rGlpzB8CKEBm4iD0NwGbRe1hf/cuFdQQ3aFC8=
Subject key identifier: 03:59:64:8A:49:3A:B9:04:06:82:37:5F:D8:EC:E0:57:BF:CA:E4:79
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FB7BD0BAD06B77448884281420B49
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A1lkikk6uQQGgjdf2OzgV7_K5Hk.roa
Signing time: Tue 02 Jan 2024 04:30:13 +0000
ROA not before: Tue 02 Jan 2024 04:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212477
IP address blocks: 45.139.50.0/23 maxlen: 24
193.37.248.0/24 maxlen: 24
45.140.188.0/22 maxlen: 24
193.176.244.0/23 maxlen: 24
45.140.213.0/24 maxlen: 24
45.140.212.0/24 maxlen: 24
45.140.212.0/23 maxlen: 23
45.140.140.0/22 maxlen: 24
45.130.119.0/24 maxlen: 24
45.138.19.0/24 maxlen: 24
45.137.198.0/23 maxlen: 24
45.137.206.0/24 maxlen: 24
45.137.204.0/23 maxlen: 24
45.137.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Apr 2024 13:14:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:b7:bd:0b:ad:06:b7:74:48:88:42:81:42:0b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0359648a493ab9040682375fd8ece057bfcae479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:3b:f5:aa:0b:8f:ad:b4:2c:82:b2:8f:17:
d3:50:13:a3:ba:2f:c9:9c:23:4f:3b:42:7d:d8:34:
9c:d4:91:7c:7c:c3:f0:b5:a1:83:fd:e8:55:75:7d:
f1:16:3e:8c:bd:e6:78:9b:05:b2:7f:98:d4:21:b9:
52:57:d3:7e:46:e1:b3:2f:ae:91:1b:7c:a3:27:83:
60:64:39:2f:1f:5f:44:95:c3:4f:b2:7a:fc:22:da:
a3:b7:b5:f8:71:8f:f2:85:a0:0b:96:d2:da:e5:af:
0a:64:8a:18:98:99:f0:da:ee:d8:6e:e8:df:60:37:
2d:7d:e8:39:36:73:f3:b9:df:04:50:61:63:42:29:
88:a3:9a:50:5a:d7:b7:7f:92:80:2b:dc:bc:d0:10:
35:4b:98:59:bd:4f:cf:94:58:d2:16:e8:99:9c:72:
eb:46:f5:1b:7d:be:0d:88:08:aa:f1:4b:8b:30:44:
85:74:fb:30:92:13:55:3a:7f:88:41:20:46:08:f4:
38:26:bc:b2:f3:9c:aa:fe:f4:7d:6d:0c:b9:bb:26:
02:e7:91:a9:c4:01:82:bd:e6:a9:38:84:99:ce:7e:
f7:90:7a:b6:b5:3f:b1:93:03:18:2b:e0:e2:8b:1e:
a0:68:ce:7e:b6:46:c9:f0:e6:42:01:05:5c:40:0a:
de:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:59:64:8A:49:3A:B9:04:06:82:37:5F:D8:EC:E0:57:BF:CA:E4:79
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/A1lkikk6uQQGgjdf2OzgV7_K5Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.119.0/24
45.137.198.0/23
45.137.204.0/22
45.138.19.0/24
45.139.50.0/23
45.140.140.0/22
45.140.188.0/22
45.140.212.0/23
193.37.248.0/24
193.176.244.0/23
Signature Algorithm: sha256WithRSAEncryption
68:1d:49:7b:fa:6f:ec:64:a4:8b:46:d7:f3:7c:a6:79:bb:5e:
12:1b:b5:c7:c5:5f:b6:8e:e6:29:f2:76:2c:52:2e:84:88:c2:
11:61:e6:fc:8a:99:bc:c5:ac:60:24:cd:85:60:13:6d:8f:6b:
e8:16:a6:f4:ee:f1:15:46:f0:d9:ee:99:30:d6:da:fc:73:1c:
63:35:49:49:2f:39:5b:45:42:d6:10:b2:56:36:fb:3d:c7:ce:
db:4f:54:bc:53:1f:78:7f:8f:48:1f:90:be:b8:87:e0:73:02:
f4:6f:a0:d5:15:39:03:b5:2a:a5:c7:cc:0d:4e:df:de:0b:64:
96:f3:47:8e:cf:0e:91:a1:af:8b:d6:c9:4c:d3:2b:93:62:43:
a5:cd:2c:ac:c4:50:7d:8e:32:21:84:51:f4:a4:a6:f6:73:c2:
05:7e:67:91:80:16:2a:5d:c4:51:35:9f:2d:75:95:0d:46:9c:
c0:3e:32:84:f5:7d:51:71:d1:61:1f:e3:58:a0:04:12:69:c3:
ab:55:ef:d2:28:a8:18:ef:9f:e0:c1:56:15:80:3d:4e:21:f2:
15:be:05:7b:92:eb:92:b9:40:80:b3:2d:9d:70:7a:0d:7b:af:
a5:7f:4a:60:e6:63:29:33:d3:3d:f4:81:7e:28:6e:d5:13:6e:
84:24:41:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org