Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/mA93FBnCWwYFr5n_0JY7ii1PMfE.roa
File: mA93FBnCWwYFr5n_0JY7ii1PMfE.roa (raw, json)
Hash identifier: 57e2lvKgc5vFzixleT2Rj9LYGqFn71lUmdaZZSh2yMU=
Subject key identifier: 98:0F:77:14:19:C2:5B:06:05:AF:99:FF:D0:96:3B:8A:2D:4F:31:F1
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 01892771B461395C00ECDEF115EB3993BF70
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/mA93FBnCWwYFr5n_0JY7ii1PMfE.roa
Signing time: Wed 05 Jul 2023 19:05:10 +0000
ROA not before: Wed 05 Jul 2023 19:05:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1828
IP address blocks: 45.133.80.0/22 maxlen: 22
45.133.80.0/24 maxlen: 24
45.133.81.0/24 maxlen: 24
45.133.82.0/24 maxlen: 24
185.92.123.0/24 maxlen: 24
185.92.120.0/24 maxlen: 24
185.92.121.0/24 maxlen: 24
185.92.122.0/24 maxlen: 24
45.15.192.0/24 maxlen: 24
45.15.192.0/22 maxlen: 22
45.15.193.0/24 maxlen: 24
45.15.194.0/24 maxlen: 24
45.15.195.0/24 maxlen: 24
2a05:f240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:27:71:b4:61:39:5c:00:ec:de:f1:15:eb:39:93:bf:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jul 5 19:05:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=980f771419c25b0605af99ffd0963b8a2d4f31f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:cf:7d:1b:c6:f5:12:6a:3d:54:e7:20:27:
82:c4:f3:91:54:79:6b:38:0e:47:41:ec:d9:d5:42:
92:e4:91:71:57:da:1c:33:19:1a:eb:a5:4e:e6:c0:
67:ad:fa:cf:4f:0d:08:29:05:76:35:2f:f4:a6:11:
85:14:f8:33:81:35:b3:ef:34:d0:12:32:78:a9:f5:
a9:69:12:7b:ae:76:4c:c0:8a:6d:f8:a6:4a:8f:d7:
c9:0d:f3:d0:4d:f8:5a:ed:b9:0e:2f:16:8c:69:cc:
5e:be:47:b5:54:22:9a:2f:d2:36:62:ae:0f:81:43:
d1:3a:57:28:f6:97:dd:20:19:a0:d6:4e:16:13:2c:
6e:49:92:2d:32:d9:40:f8:ed:8c:a8:6d:e2:0a:9e:
9e:65:57:74:90:75:40:67:0b:9b:63:e1:c2:d9:74:
c3:4e:2e:8a:10:e4:96:60:b9:ec:1b:6a:af:a1:e5:
64:be:45:e2:88:c3:24:45:ae:99:b7:89:c1:96:28:
91:bc:87:64:bd:ac:e1:25:12:ed:81:1e:da:b8:9b:
84:89:46:d2:52:25:71:bf:23:6c:28:b1:8f:27:15:
b2:fb:94:6a:0b:45:04:43:d9:9d:b2:2d:0e:cb:86:
c0:44:d6:06:a7:7d:af:c1:a5:5b:f7:a2:c7:8d:74:
2e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:0F:77:14:19:C2:5B:06:05:AF:99:FF:D0:96:3B:8A:2D:4F:31:F1
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/mA93FBnCWwYFr5n_0JY7ii1PMfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.192.0/22
45.133.80.0/22
185.92.120.0/22
IPv6:
2a05:f240::/29
Signature Algorithm: sha256WithRSAEncryption
5c:11:ea:51:11:ac:32:fa:1c:e2:89:e4:50:c5:de:02:54:e6:
6f:5b:ff:71:be:0b:b0:d8:5b:6a:40:40:3d:89:33:30:75:78:
88:28:12:39:53:28:c5:27:0d:f6:64:26:a7:a8:f7:dd:d8:3a:
22:e6:35:e0:da:72:28:14:66:0a:71:97:1a:87:2b:3b:64:86:
4c:36:1a:a2:e8:f4:eb:65:23:d4:f7:d7:fd:04:ae:06:f1:48:
eb:e2:48:e9:bc:77:95:ca:22:64:23:23:4b:e5:ff:31:43:26:
06:87:90:ed:ac:9f:ef:fa:b3:0e:24:c3:bf:dd:69:a2:f9:ee:
62:20:4f:db:f5:b1:cd:56:d6:ad:78:e6:f1:29:d6:92:9d:00:
84:6d:d7:b6:52:b2:e7:58:4f:6b:ee:a8:32:ae:77:1e:82:be:
ba:d7:b4:33:85:ea:92:c5:ae:97:c0:d8:e7:e4:4b:f8:38:3b:
b0:6b:3f:d2:d3:18:77:4a:bf:46:17:ea:04:70:fb:e3:fe:62:
90:9f:90:b0:c1:b5:02:56:00:4b:5f:2b:20:95:f4:09:ff:37:
88:f3:e2:9c:0b:28:e0:4f:ac:43:51:1c:27:83:5a:16:d9:79:
d4:88:1c:e3:76:92:f4:0e:fc:4d:b1:6b:b4:c2:b1:70:db:3e:
ac:58:75:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:02 2024 by rpki-client on console-ams.rpki-client.org