Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cUHowOfCf5NublwSPToDfTPiOyI.roa
File: cUHowOfCf5NublwSPToDfTPiOyI.roa (raw, json)
Hash identifier: 4daJFWNMA0BNgU7mh3WNs1BayM6fc6ql3THj4oOEctk=
Subject key identifier: 71:41:E8:C0:E7:C2:7F:93:6E:6E:5C:12:3D:3A:03:7D:33:E2:3B:22
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F799694BD93BEBFCDE9D3DDB54E807B
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cUHowOfCf5NublwSPToDfTPiOyI.roa
Signing time: Sun 01 Jan 2023 22:35:17 +0000
ROA not before: Sun 01 Jan 2023 22:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210636
IP address blocks: 45.139.254.0/23 maxlen: 24
45.94.30.0/24 maxlen: 24
45.94.28.0/23 maxlen: 23
45.148.26.0/24 maxlen: 24
45.88.246.0/24 maxlen: 24
45.132.192.0/24 maxlen: 24
45.88.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 14:09:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:96:94:bd:93:be:bf:cd:e9:d3:dd:b5:4e:80:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7141e8c0e7c27f936e6e5c123d3a037d33e23b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f4:71:c5:d1:f9:9b:b1:27:3f:11:fa:84:64:
14:d7:1b:69:0d:ba:76:80:29:30:ee:53:ec:26:e9:
d2:2c:2d:db:31:46:77:59:e6:e2:48:4a:25:80:ec:
93:30:5c:c1:dc:71:d9:f8:4c:da:0f:6e:e6:fd:7b:
03:32:c9:3e:07:c9:a3:e6:bc:b4:3e:56:b1:22:9a:
2d:9c:4f:45:eb:30:29:ab:ab:95:d9:e1:fb:54:96:
34:de:81:c7:d0:07:e0:ed:26:85:5b:e4:f9:23:5b:
0c:65:8d:6e:3e:8b:c4:bd:ce:9b:82:b4:0b:be:2d:
a9:3c:c8:49:c8:a3:85:40:26:4f:19:11:8e:c6:93:
2e:1f:0e:2f:16:d2:2c:23:ff:19:6d:73:76:d2:28:
2d:31:c2:3e:78:8b:7c:f2:f1:2c:59:e5:84:48:72:
44:12:81:27:8d:1c:36:c0:22:a1:7a:41:9f:be:74:
02:ce:4c:ac:9e:63:f1:2d:d5:2f:d7:9b:c8:78:56:
91:7b:47:85:c7:b7:fa:07:e1:d9:1d:a1:63:ca:d6:
38:4c:21:c4:f1:75:c0:dd:df:2f:c4:b2:10:57:91:
e0:d5:14:9d:c0:e9:81:b5:8d:1b:ee:31:36:9d:49:
7d:36:70:0d:43:26:0e:97:c0:8f:fa:74:22:38:d8:
7e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:41:E8:C0:E7:C2:7F:93:6E:6E:5C:12:3D:3A:03:7D:33:E2:3B:22
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cUHowOfCf5NublwSPToDfTPiOyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.246.0/23
45.94.28.0-45.94.30.255
45.132.192.0/24
45.139.254.0/23
45.148.26.0/24
Signature Algorithm: sha256WithRSAEncryption
81:67:6d:a1:d1:03:1e:d3:7d:0c:0f:cf:06:aa:2d:a9:6d:63:
61:e5:35:7e:91:62:c6:e1:84:58:8e:02:2f:e7:29:33:4e:6d:
1d:3f:67:37:bd:09:2b:98:de:fd:de:d6:a3:41:34:78:5a:6d:
0f:b1:c4:ac:d3:11:bb:57:23:55:02:6b:5f:e9:7c:96:ad:3d:
41:fc:82:17:88:74:09:b1:66:67:36:49:11:9d:69:2e:82:45:
df:15:aa:53:19:ea:d6:a1:74:64:8c:eb:36:82:7b:2a:32:88:
01:09:fa:b9:68:00:f8:60:b1:dd:40:a8:2e:ef:81:36:a4:7b:
de:51:0e:42:65:00:b1:f3:a3:08:94:c9:bf:1d:20:ce:9f:02:
bd:2b:ff:c8:95:70:5a:46:1a:ff:68:af:4b:52:fb:d0:df:e0:
ec:b3:4b:5f:d8:92:ef:b5:41:37:55:78:50:69:94:48:51:61:
81:6e:97:49:da:bc:eb:42:0b:0c:17:fa:a4:04:61:ca:aa:92:
55:b3:17:de:27:d1:4a:b3:3c:ed:96:6f:40:cf:7a:9c:c1:05:
d5:01:b1:e0:14:ec:18:8a:95:94:18:e7:4b:5b:ca:0b:02:e3:
91:13:2f:75:ee:c2:ea:4d:2a:86:27:b0:c9:94:3a:4a:30:16:
cb:4b:e9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org