Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HSiaxXVXwWysUYFpyvsWBCaw0Ig.roa
File: HSiaxXVXwWysUYFpyvsWBCaw0Ig.roa (raw, json)
Hash identifier: w/Gec9okyw/b+Dn4PNdv0ZS7rGuPMSGYumSYUVjB/W4=
Subject key identifier: 1D:28:9A:C5:75:57:C1:6C:AC:51:81:69:CA:FB:16:04:26:B0:D0:88
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018CC9BC6B1702DA5016FF1A9ED258A775CD
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HSiaxXVXwWysUYFpyvsWBCaw0Ig.roa
Signing time: Tue 02 Jan 2024 10:33:37 +0000
ROA not before: Tue 02 Jan 2024 10:33:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35277
IP address blocks: 5.181.202.0/23 maxlen: 24
185.36.142.0/23 maxlen: 24
185.36.141.0/24 maxlen: 24
45.85.117.0/24 maxlen: 24
185.225.205.0/24 maxlen: 24
45.155.120.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 08:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:6b:17:02:da:50:16:ff:1a:9e:d2:58:a7:75:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:33:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d289ac57557c16cac518169cafb160426b0d088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b4:27:72:dd:24:b8:cd:d1:e8:29:41:a3:d1:
b2:90:f4:51:eb:aa:25:7d:51:d4:5a:91:c5:54:0f:
ee:1d:6c:a6:89:93:e8:07:a4:6c:dd:61:da:97:c3:
1a:7e:bd:c6:21:ad:12:96:4f:77:dd:6b:3e:ff:9e:
26:7c:59:95:05:4f:00:50:d6:ea:cb:cf:12:73:1a:
a5:d0:ed:71:c5:b7:08:1c:0f:2e:73:46:9d:7f:37:
db:dc:9c:0b:7b:40:38:26:83:bc:20:7b:bf:d3:13:
c1:68:6c:43:64:cb:31:f8:87:25:30:26:e4:41:af:
e1:34:43:87:c4:27:28:86:1a:ed:37:8d:d3:16:fc:
bd:9b:96:c3:b1:0b:4c:66:b0:4a:01:c6:ac:0d:7e:
75:60:40:61:08:13:e5:90:2b:ca:a7:3a:62:c6:77:
9d:d6:a5:c1:76:6e:ee:84:4e:3e:75:39:d0:d1:c7:
b3:81:88:08:e9:57:13:77:14:6f:16:67:31:2c:f2:
d3:52:c1:05:b4:c3:88:14:6d:0f:1d:af:cc:ef:b0:
96:fc:38:bb:38:e1:4e:1b:88:73:a3:30:b9:44:1d:
15:8e:3e:3c:57:6b:57:31:d9:4b:44:70:5b:d4:fc:
64:78:03:de:e1:1a:b2:8d:4c:75:b5:9b:a9:61:99:
72:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:28:9A:C5:75:57:C1:6C:AC:51:81:69:CA:FB:16:04:26:B0:D0:88
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HSiaxXVXwWysUYFpyvsWBCaw0Ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.202.0/23
45.85.117.0/24
45.155.120.0/23
185.36.141.0-185.36.143.255
185.225.205.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ea:fa:cb:63:30:6d:b4:ea:92:d9:b6:ef:ac:45:24:20:37:
1a:ed:5f:ac:61:cd:2b:05:81:72:88:ce:0e:34:23:cb:0e:04:
40:a6:e2:d4:17:9a:7d:eb:80:5c:b3:02:1a:96:27:1e:40:31:
e4:8b:21:29:1a:b4:42:91:1a:d3:5e:d8:fd:31:41:26:0d:95:
1b:70:3b:cf:e3:ac:b3:bf:73:70:3f:29:81:93:f1:25:56:81:
51:79:83:e9:91:13:c6:e7:f6:05:1d:ff:7c:8f:62:e3:cb:25:
14:b9:86:02:18:77:55:50:82:de:a3:49:c1:91:d9:dc:02:d5:
4d:bf:5d:17:1b:ac:1b:17:e2:ff:7f:e3:62:e8:a5:fe:a0:57:
a0:72:2f:8c:1c:b2:25:b4:3b:92:49:94:97:b0:43:3c:21:61:
2a:2a:1a:27:79:40:2b:fb:79:2b:52:8b:8e:7f:3c:36:ca:7f:
af:42:7b:92:0e:fc:72:47:23:e2:d6:b4:c0:88:87:2f:d5:86:
d2:4a:24:21:46:ee:87:93:33:83:e1:c2:80:57:ef:da:ad:6a:
1c:e6:ae:34:69:d5:33:ee:8c:1b:c2:b8:59:43:fd:1a:1b:fe:
7f:49:0e:de:dd:aa:64:dc:ee:5e:bd:09:14:8d:0e:22:e7:35:
71:87:34:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 13:49:50 2024 by rpki-client on console-ams.rpki-client.org