Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/8zeKwDPMltLuIYN7HPU-PFLOb6w.roa
File: 8zeKwDPMltLuIYN7HPU-PFLOb6w.roa (raw, json)
Hash identifier: G2uM9FG7g9HBNJVlhrq11vRvwv2DaQlOrXpZs/yvCpE=
Subject key identifier: F3:37:8A:C0:33:CC:96:D2:EE:21:83:7B:1C:F5:3E:3C:52:CE:6F:AC
Certificate issuer: /CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Certificate serial: 018CC500079326890C5DBB3A852C485337BC
Authority key identifier: 4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/8zeKwDPMltLuIYN7HPU-PFLOb6w.roa
Signing time: Mon 01 Jan 2024 12:29:22 +0000
ROA not before: Mon 01 Jan 2024 12:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57752
IP address blocks: 185.54.36.0/22 maxlen: 22
185.167.220.0/22 maxlen: 22
45.89.152.0/22 maxlen: 22
185.17.56.0/24 maxlen: 24
185.17.56.0/22 maxlen: 22
185.17.57.0/24 maxlen: 24
45.130.236.0/22 maxlen: 22
45.130.236.0/24 maxlen: 24
45.130.238.0/24 maxlen: 24
45.130.237.0/24 maxlen: 24
45.130.239.0/24 maxlen: 24
45.10.45.0/24 maxlen: 24
45.10.46.0/23 maxlen: 23
185.234.48.0/22 maxlen: 22
83.136.148.0/23 maxlen: 23
83.136.150.0/23 maxlen: 23
176.118.172.0/22 maxlen: 22
45.91.144.0/22 maxlen: 22
109.205.64.0/21 maxlen: 21
2a03:dc00::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 May 2024 08:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:07:93:26:89:0c:5d:bb:3a:85:2c:48:53:37:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f99e4eae48a01c781faad11f6d81a91ea33bdff
Validity
Not Before: Jan 1 12:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3378ac033cc96d2ee21837b1cf53e3c52ce6fac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:44:30:af:72:e3:c6:1a:13:79:06:c1:2c:2b:
5f:37:a2:5b:4c:36:ff:05:7f:34:61:9a:b1:0e:00:
19:74:39:67:82:e3:a3:82:68:72:24:b3:d4:25:e5:
27:b4:a6:10:ed:9c:37:e6:a3:76:6f:16:ae:ce:4e:
bf:06:ec:f0:4a:ce:f4:0c:a0:67:ba:6b:88:0a:75:
42:7f:ef:bf:51:56:55:d8:9c:d1:b9:11:4b:db:1d:
c2:64:ee:1b:9b:a5:63:09:75:1f:3b:4c:9c:39:5b:
f6:62:b5:60:5e:2f:e7:44:35:1b:ce:ea:42:53:86:
12:0e:3f:31:c3:91:75:71:e3:ef:ac:a1:37:53:5c:
f3:46:9b:ad:18:74:1c:45:b7:0c:db:d8:4d:a6:e0:
32:d6:25:6f:7a:c1:35:96:38:ff:f9:b0:65:3a:9a:
af:ec:7a:da:89:d6:59:4d:60:ef:4c:2b:e1:e5:e5:
59:52:8e:68:c2:70:ad:6b:4f:7f:f0:b9:58:80:98:
d0:d3:c5:99:50:c5:c8:85:07:63:d0:2d:5f:fd:dd:
68:5c:99:9f:a0:09:7f:d4:5d:2b:ec:61:8b:75:57:
cb:db:31:e0:83:b5:81:c9:c3:ea:0a:78:88:ee:32:
e1:35:04:e0:ee:bc:2c:14:b4:cb:71:16:e5:65:c8:
32:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:37:8A:C0:33:CC:96:D2:EE:21:83:7B:1C:F5:3E:3C:52:CE:6F:AC
X509v3 Authority Key Identifier:
keyid:4F:99:E4:EA:E4:8A:01:C7:81:FA:AD:11:F6:D8:1A:91:EA:33:BD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5nk6uSKAceB-q0R9tgakeozvf8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/8zeKwDPMltLuIYN7HPU-PFLOb6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/19d313-777b-4044-a238-8b8f3f8d7303/1/T5nk6uSKAceB-q0R9tgakeozvf8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.45.0-45.10.47.255
45.89.152.0/22
45.91.144.0/22
45.130.236.0/22
83.136.148.0/22
109.205.64.0/21
176.118.172.0/22
185.17.56.0/22
185.54.36.0/22
185.167.220.0/22
185.234.48.0/22
IPv6:
2a03:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
c3:80:3c:85:1f:5e:d2:76:37:ed:2a:88:60:3c:67:57:6b:6c:
5d:d8:85:84:39:95:20:ee:08:ed:fc:54:9e:0f:33:10:c2:02:
06:99:10:c3:55:86:86:70:cf:15:db:8b:9a:8b:e3:b1:eb:95:
73:a0:27:23:5e:6b:4a:11:51:4e:f9:36:2c:13:83:be:b3:4f:
c6:ce:92:cb:1f:0a:5d:3d:54:2d:fd:8a:fb:ba:81:1f:8f:18:
b1:13:2a:fc:a3:71:bc:b7:67:ee:19:93:a9:07:3c:b4:ae:e1:
46:6a:b9:55:23:75:81:ad:d7:f6:b4:52:9e:35:13:04:01:3b:
c1:5f:ec:3e:59:f6:31:92:99:79:79:b3:22:56:26:35:1e:b2:
37:ca:be:9b:01:38:ea:99:2e:61:66:df:53:01:ad:6f:ca:da:
8c:38:34:ba:d8:a4:13:3c:63:9f:8d:7d:99:51:c4:7d:96:86:
fa:94:9a:99:79:00:a4:45:17:1f:7e:79:73:59:86:1c:f8:fd:
60:bb:ea:8b:ce:81:fb:0a:12:d3:06:7b:cb:5c:f6:ea:20:5c:
24:17:8d:0b:b8:4c:47:02:cc:fb:01:02:36:cf:fe:2b:89:9a:
6c:84:0c:d1:2d:89:0f:cc:d0:f8:2a:d4:d8:c9:c4:9d:89:27:
6f:67:ac:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 22 12:04:24 2024 by rpki-client on console-fra.rpki-client.org