Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/i5sl0EewmFbRvzV9rrs_BGmHVGs.roa
File: i5sl0EewmFbRvzV9rrs_BGmHVGs.roa (raw, json)
Hash identifier: f9rR6WSiBbnGMctPQJkMXT/Z9EhbhLLzTY04STlUvBM=
Subject key identifier: 8B:9B:25:D0:47:B0:98:56:D1:BF:35:7D:AE:BB:3F:04:69:87:54:6B
Certificate issuer: /CN=435416b2282b4533c3509c18e957ce0c836bc837
Certificate serial: 018B043D3CA571F40C89136D25F02C735E25
Authority key identifier: 43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/i5sl0EewmFbRvzV9rrs_BGmHVGs.roa
Signing time: Fri 06 Oct 2023 09:06:43 +0000
ROA not before: Fri 06 Oct 2023 09:06:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 185.23.200.0/23 maxlen: 32
185.251.44.0/23 maxlen: 32
185.251.46.0/23 maxlen: 32
185.247.230.0/23 maxlen: 32
185.247.229.0/24 maxlen: 32
185.247.228.0/24 maxlen: 32
195.66.220.0/22 maxlen: 32
95.175.80.0/20 maxlen: 32
185.251.248.0/23 maxlen: 32
185.251.250.0/23 maxlen: 32
194.156.112.0/22 maxlen: 32
193.8.80.0/22 maxlen: 32
178.239.22.0/23 maxlen: 32
95.214.84.0/22 maxlen: 32
88.218.144.0/22 maxlen: 32
45.133.136.0/24 maxlen: 32
195.158.208.0/22 maxlen: 32
91.193.100.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:3d:3c:a5:71:f4:0c:89:13:6d:25:f0:2c:73:5e:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=435416b2282b4533c3509c18e957ce0c836bc837
Validity
Not Before: Oct 6 09:06:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b9b25d047b09856d1bf357daebb3f046987546b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:99:41:d9:3b:56:fc:b2:b4:c9:7e:d3:7c:3b:
ca:ef:eb:55:32:f9:85:a0:0d:38:15:f2:ee:24:07:
b8:e1:2d:c6:e2:34:70:07:ce:c6:f7:96:ae:19:67:
ef:ed:94:55:84:71:4f:93:46:d8:49:78:40:53:4a:
15:49:00:b5:1e:98:06:67:66:89:77:ed:e1:a7:bf:
e3:ef:e6:8e:60:f0:00:b0:a2:47:64:12:de:ce:64:
80:32:7c:a2:01:82:fd:ef:28:14:e8:57:71:42:ea:
52:8d:97:2b:ac:f3:58:41:9d:1f:a2:64:a1:61:21:
c9:3c:ab:c3:a6:d3:7a:76:60:8e:06:97:ca:f0:73:
cc:7a:18:e2:92:0d:94:86:ed:bd:54:b9:4f:45:2f:
c4:e6:d0:8c:cd:48:b5:b5:91:f5:60:29:26:31:19:
bd:f4:04:d9:a3:41:be:7f:f9:32:26:63:79:e3:74:
44:ca:6c:9c:36:25:4d:91:1e:83:26:c6:83:11:d4:
ab:f2:45:b9:e6:e9:b3:a5:21:8c:09:3a:fc:46:99:
30:8e:63:e2:cb:c6:3d:28:9f:eb:e9:42:ec:be:8c:
5d:75:df:98:0a:8d:10:15:67:62:81:12:84:5e:53:
ca:bf:27:12:c6:36:bc:10:eb:c5:11:c5:55:e3:86:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:9B:25:D0:47:B0:98:56:D1:BF:35:7D:AE:BB:3F:04:69:87:54:6B
X509v3 Authority Key Identifier:
keyid:43:54:16:B2:28:2B:45:33:C3:50:9C:18:E9:57:CE:0C:83:6B:C8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1QWsigrRTPDUJwY6VfODINryDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/i5sl0EewmFbRvzV9rrs_BGmHVGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/63ff81-6460-4c05-852d-262eb39bbe76/1/Q1QWsigrRTPDUJwY6VfODINryDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.136.0/24
88.218.144.0/22
91.193.100.0/22
95.175.80.0/20
95.214.84.0/22
178.239.22.0/23
185.23.200.0/23
185.247.228.0/22
185.251.44.0/22
185.251.248.0/22
193.8.80.0/22
194.156.112.0/22
195.66.220.0/22
195.158.208.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:87:ba:7b:fd:8b:4e:8d:89:41:e5:14:4c:31:7b:06:5c:61:
70:99:e1:59:57:07:92:6b:2c:dd:49:8b:02:2c:e5:f2:3f:71:
fc:06:6a:16:eb:3f:35:d4:4a:df:4d:83:30:37:0a:6b:7b:d6:
44:45:46:b7:99:d7:01:49:1c:3a:f0:66:85:de:82:5a:7a:86:
96:2f:88:29:1e:44:5d:38:f2:15:d4:ef:fd:95:1b:e3:d0:65:
af:c8:28:65:46:3a:22:ea:b3:63:3a:3e:d1:e0:76:62:0f:1f:
96:cc:d2:c4:a8:3e:f5:b2:cf:ad:e7:95:a3:77:f2:04:70:81:
8a:20:ab:40:3b:f3:4c:2b:f7:f4:9f:d2:87:f6:df:e5:84:20:
c6:01:3c:81:ce:8a:0c:d4:6e:5f:43:0c:50:7b:7b:1f:b9:ca:
c9:7e:b0:13:b0:be:87:cc:05:57:2e:26:fc:d6:cb:27:7b:ba:
56:56:48:29:01:08:da:a8:b4:52:d7:c2:3f:d0:2d:cd:40:05:
af:94:10:5f:82:bb:17:01:ae:eb:09:a2:57:89:1e:da:16:a3:
ed:90:f1:f1:d2:4f:68:e1:07:cb:ce:20:d3:ed:22:82:4a:90:
5f:e3:b2:6a:b3:b7:ab:6a:8d:d8:e0:c3:17:e2:cf:8d:73:cb:
11:2c:6a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:32 2024 by rpki-client on console-fra.rpki-client.org