Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ooaj_Quj5Vq1mN9DP9o13-nqdRA.roa
File: ooaj_Quj5Vq1mN9DP9o13-nqdRA.roa (raw, json)
Hash identifier: LsRfAGH+ZxAYhMjxfYrU6TMWHCjz675Cn4qB4ZAhHKs=
Subject key identifier: A2:86:A3:FD:0B:A3:E5:5A:B5:98:DF:43:3F:DA:35:DF:E9:EA:75:10
Certificate issuer: /CN=e8bd0d9aa8c743cda182f00668583a46e600c32d
Certificate serial: 0187DB6B6BFEBFFF535D3FAAD93C63D442F7
Authority key identifier: E8:BD:0D:9A:A8:C7:43:CD:A1:82:F0:06:68:58:3A:46:E6:00:C3:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6L0NmqjHQ82hgvAGaFg6RuYAwy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ooaj_Quj5Vq1mN9DP9o13-nqdRA.roa
Signing time: Tue 02 May 2023 07:44:22 +0000
ROA not before: Tue 02 May 2023 07:44:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208770
IP address blocks: 45.151.24.0/22 maxlen: 22
45.151.24.0/24 maxlen: 24
45.151.24.0/23 maxlen: 23
45.151.27.0/24 maxlen: 24
45.151.25.0/24 maxlen: 24
45.151.26.0/23 maxlen: 23
45.151.26.0/24 maxlen: 24
195.80.32.0/22 maxlen: 24
45.145.76.0/23 maxlen: 23
45.145.76.0/24 maxlen: 24
45.145.77.0/24 maxlen: 24
45.145.78.0/24 maxlen: 24
45.145.78.0/23 maxlen: 23
45.145.76.0/22 maxlen: 22
45.145.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:6b:6b:fe:bf:ff:53:5d:3f:aa:d9:3c:63:d4:42:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8bd0d9aa8c743cda182f00668583a46e600c32d
Validity
Not Before: May 2 07:44:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a286a3fd0ba3e55ab598df433fda35dfe9ea7510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:b5:6c:43:db:b4:9a:48:1f:17:b7:f9:d2:
71:08:c3:f7:a3:17:7a:17:b8:a9:0d:d6:71:e8:ee:
ad:05:14:4a:4d:25:c3:14:05:d5:86:c4:c5:9f:a7:
61:4b:06:38:9a:b1:b7:b0:5f:01:15:18:da:b1:b9:
e4:8b:75:ad:45:71:e8:df:eb:e1:ab:b5:57:dd:d2:
f1:8a:ce:12:26:30:6f:85:56:9e:3a:09:ef:77:61:
bb:98:4d:58:b7:6f:74:b6:16:f3:10:8e:e4:61:6e:
99:55:c3:65:01:03:45:2b:c1:81:91:40:72:43:a0:
c5:b1:75:e9:ae:87:e4:b0:2b:63:21:d5:d0:c4:3e:
fb:a2:a1:a8:78:4d:47:53:53:a6:bd:45:7e:ea:9a:
72:b9:19:41:3b:4c:dd:c6:ec:98:61:38:f6:cc:2c:
00:20:ae:a8:18:e7:c8:54:fe:28:25:f4:35:8d:85:
19:1e:fd:f5:90:0b:6a:8a:e0:87:73:f7:2c:de:14:
be:e2:3c:74:8b:cd:20:e8:91:9a:d2:9d:9a:0f:3e:
b8:6a:99:18:92:8e:4b:04:6e:c1:bb:83:c7:a2:e4:
d8:dc:2f:7f:59:a4:e3:33:23:bf:b2:98:ed:74:16:
0d:3b:d5:46:db:14:a9:a1:fa:9d:aa:29:24:d7:92:
4d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:86:A3:FD:0B:A3:E5:5A:B5:98:DF:43:3F:DA:35:DF:E9:EA:75:10
X509v3 Authority Key Identifier:
keyid:E8:BD:0D:9A:A8:C7:43:CD:A1:82:F0:06:68:58:3A:46:E6:00:C3:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6L0NmqjHQ82hgvAGaFg6RuYAwy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/ooaj_Quj5Vq1mN9DP9o13-nqdRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c824d1-8cfe-440e-9b5c-889243869679/1/6L0NmqjHQ82hgvAGaFg6RuYAwy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.76.0/22
45.151.24.0/22
195.80.32.0/22
Signature Algorithm: sha256WithRSAEncryption
86:7e:16:e6:c7:eb:7e:65:7f:25:af:fd:da:99:63:bd:10:4f:
60:70:33:4e:47:38:03:dc:19:01:8d:b3:e0:e3:8f:86:41:7b:
d1:db:34:07:60:c1:b0:9b:d7:5c:70:86:95:82:ee:71:32:93:
0a:c2:d6:ce:28:31:6f:5a:a6:29:a6:fe:11:13:c5:7c:eb:a1:
3a:65:2d:f8:51:5f:c5:16:1d:79:e0:13:79:d7:0e:60:d0:ea:
a9:c4:4d:e9:29:10:62:06:2e:d4:16:c1:14:c2:7b:1b:ef:41:
07:0d:32:94:6f:5f:34:51:e1:09:d1:a7:88:6b:6d:59:a4:a8:
55:87:c0:b0:86:90:2f:11:ee:70:0f:bc:24:be:5e:b5:a8:79:
8d:6c:1a:23:40:1d:7e:e9:45:da:f0:78:21:9f:92:2c:14:71:
04:82:11:91:80:11:3d:c8:34:be:5e:fc:86:4c:18:89:5c:bb:
10:59:de:7e:0a:5e:1f:a8:14:24:37:54:fb:23:a2:86:77:82:
0e:6c:66:6d:2f:1d:a6:68:fe:3b:fa:d8:5f:80:63:cc:2b:2c:
ed:67:68:65:96:75:43:6b:19:b6:72:f6:e2:3d:23:6e:41:16:
82:98:e1:e4:e5:a9:83:3b:71:7e:fa:1c:cf:cf:bb:24:dd:bb:
64:ac:21:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:07 2024 by rpki-client on console-fra.rpki-client.org