Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/LjHytfhPymf3J_E16xV7HDZuhSg.roa
File: LjHytfhPymf3J_E16xV7HDZuhSg.roa (raw, json)
Hash identifier: pjDy8BdY4/jaKx3c098OLWuOPHn/f0Eu6vpBdYMi74s=
Subject key identifier: 2E:31:F2:B5:F8:4F:CA:67:F7:27:F1:35:EB:15:7B:1C:36:6E:85:28
Certificate issuer: /CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Certificate serial: 018771DEA5A9213351B329DEAFE8DEF17BC8
Authority key identifier: 68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/LjHytfhPymf3J_E16xV7HDZuhSg.roa
Signing time: Tue 11 Apr 2023 19:50:29 +0000
ROA not before: Tue 11 Apr 2023 19:50:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51795
IP address blocks: 46.18.240.0/23 maxlen: 28
185.25.36.0/24 maxlen: 24
185.25.37.0/24 maxlen: 24
185.25.38.0/24 maxlen: 24
185.25.39.0/24 maxlen: 24
46.18.246.0/24 maxlen: 24
46.18.241.0/24 maxlen: 24
46.18.242.0/24 maxlen: 24
46.18.243.0/24 maxlen: 24
46.18.240.0/21 maxlen: 21
46.18.244.0/24 maxlen: 24
46.18.245.0/24 maxlen: 24
46.18.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:71:de:a5:a9:21:33:51:b3:29:de:af:e8:de:f1:7b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c6adf8eecabc1052e1f783d3bce4a1c5db5410
Validity
Not Before: Apr 11 19:50:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e31f2b5f84fca67f727f135eb157b1c366e8528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2f:77:de:3a:63:2a:f2:78:b4:e3:3e:ab:70:
01:83:8f:59:a1:a6:1b:69:f7:0c:a4:78:2a:9f:78:
2f:c9:6a:8b:6b:3d:ab:04:0b:05:c2:dc:0a:cf:49:
39:95:e2:5d:04:87:fb:49:1d:17:15:e7:15:48:0d:
30:0f:bd:eb:b0:4d:2c:e9:aa:75:8e:70:c6:ca:40:
12:bd:9a:ba:80:8d:f1:00:98:f2:42:2f:c0:82:18:
69:fd:08:26:2f:85:bb:9c:c9:fc:40:23:5e:b2:8a:
8a:f5:89:ad:75:d7:c5:be:cf:cc:47:55:1f:18:89:
cc:58:61:b6:dd:87:d1:07:56:29:23:79:cf:df:4b:
c2:5c:e0:8f:fc:3b:c6:43:d3:b7:d7:84:37:85:ed:
0c:03:7f:87:0d:63:cc:7a:95:88:c9:46:e3:85:33:
6a:aa:83:50:16:83:8b:84:fb:a1:c8:38:0d:06:62:
e2:3e:9c:88:83:81:04:1e:cb:08:6b:db:c5:1f:f6:
16:e7:b6:59:33:41:86:25:2d:4f:3f:1b:02:d0:b6:
c1:32:ad:8f:33:83:2f:18:1e:12:d0:0c:26:3f:7c:
c1:b9:0f:d9:c1:95:11:81:17:00:68:4b:13:92:82:
a4:af:a7:76:00:bd:9e:b9:69:bd:8a:86:b0:05:a4:
ea:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:31:F2:B5:F8:4F:CA:67:F7:27:F1:35:EB:15:7B:1C:36:6E:85:28
X509v3 Authority Key Identifier:
keyid:68:C6:AD:F8:EE:CA:BC:10:52:E1:F7:83:D3:BC:E4:A1:C5:DB:54:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMat-O7KvBBS4feD07zkocXbVBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/LjHytfhPymf3J_E16xV7HDZuhSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e5d869-30bc-4465-bd6f-4773b6669716/1/aMat-O7KvBBS4feD07zkocXbVBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.240.0/21
185.25.36.0/22
Signature Algorithm: sha256WithRSAEncryption
72:3b:2c:ae:b8:fe:47:c7:40:a6:aa:a4:57:4d:4b:ab:0d:12:
bb:7e:25:2c:23:3d:48:80:a2:45:2d:27:6f:88:31:11:01:85:
b9:34:2f:76:a6:40:69:65:f3:81:76:58:79:7e:d9:c1:15:a7:
ab:4f:88:f7:e6:fc:71:cf:9b:98:7c:f5:88:8f:58:4e:09:ac:
d0:c9:0b:23:8f:f0:2a:5a:d9:55:81:2e:3d:e0:28:df:96:a1:
f1:69:b8:8a:d2:7a:14:5d:73:d6:2e:9d:e8:c2:c6:dc:53:56:
04:b8:40:2c:87:8b:ee:50:d9:9c:b9:72:ae:15:b1:18:12:aa:
bc:2c:9a:0e:be:d1:26:5c:4f:d0:1c:ac:81:91:6c:2a:83:bd:
f8:50:99:fe:b7:80:51:d4:c5:6e:b8:8d:7f:ca:b8:2f:c3:6b:
11:db:38:22:62:16:80:17:5b:89:2a:5c:8e:22:f7:48:c9:63:
c4:ad:ca:31:39:96:e8:df:08:52:07:19:46:32:ab:93:f3:cf:
0a:d8:a0:1b:65:38:bd:c2:8a:1b:a8:1e:53:9e:59:5c:da:d4:
77:49:10:82:bf:25:3f:e8:17:f8:c4:1a:2a:5b:06:69:76:24:
9c:42:ca:81:09:a1:49:33:3d:9a:de:67:e6:a4:77:d5:18:ea:
43:44:0f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:43 2024 by rpki-client on console-ams.rpki-client.org