Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/SsAcD5DADVOmwaafILpf7rQmp5A.roa
File: SsAcD5DADVOmwaafILpf7rQmp5A.roa (raw, json)
Hash identifier: 0xB+qHW4NI9B0fsNHjpRqaeY5UORkrYfpRCciFyRM7g=
Subject key identifier: 4A:C0:1C:0F:90:C0:0D:53:A6:C1:A6:9F:20:BA:5F:EE:B4:26:A7:90
Certificate issuer: /CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Certificate serial: 01869CA427CCFA0072D3536858C364E8DA61
Authority key identifier: 43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/SsAcD5DADVOmwaafILpf7rQmp5A.roa
Signing time: Wed 01 Mar 2023 10:07:29 +0000
ROA not before: Wed 01 Mar 2023 10:07:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48359
IP address blocks: 185.221.192.0/24 maxlen: 24
185.221.192.0/22 maxlen: 22
185.221.194.0/24 maxlen: 24
185.221.193.0/24 maxlen: 24
185.221.195.0/24 maxlen: 24
195.191.44.0/24 maxlen: 24
195.191.45.0/24 maxlen: 24
185.121.58.0/24 maxlen: 24
185.121.57.0/24 maxlen: 24
185.121.56.0/22 maxlen: 22
185.121.56.0/24 maxlen: 24
185.121.59.0/24 maxlen: 24
195.8.112.0/24 maxlen: 24
195.8.110.0/24 maxlen: 24
195.8.114.0/24 maxlen: 24
185.238.44.0/24 maxlen: 24
185.238.47.0/24 maxlen: 24
185.238.46.0/24 maxlen: 24
185.238.45.0/24 maxlen: 24
195.191.23.0/24 maxlen: 24
195.191.22.0/24 maxlen: 24
185.137.60.0/22 maxlen: 24
185.142.95.0/24 maxlen: 24
185.142.92.0/22 maxlen: 22
185.142.92.0/24 maxlen: 24
193.246.200.0/24 maxlen: 24
185.142.94.0/24 maxlen: 24
185.142.93.0/24 maxlen: 24
193.246.201.0/24 maxlen: 24
185.142.124.0/24 maxlen: 24
185.142.124.0/22 maxlen: 22
185.142.125.0/24 maxlen: 24
185.142.127.0/24 maxlen: 24
185.142.126.0/24 maxlen: 24
195.8.102.0/24 maxlen: 24
195.230.97.0/24 maxlen: 24
195.230.105.0/24 maxlen: 24
91.213.151.0/24 maxlen: 24
195.230.107.0/24 maxlen: 24
91.213.157.0/24 maxlen: 24
185.82.64.0/24 maxlen: 24
185.82.64.0/22 maxlen: 22
195.230.124.0/24 maxlen: 24
185.82.66.0/24 maxlen: 24
185.82.67.0/24 maxlen: 24
185.82.65.0/24 maxlen: 24
91.213.172.0/24 maxlen: 24
91.213.167.0/24 maxlen: 24
185.47.48.0/23 maxlen: 23
185.47.50.0/23 maxlen: 23
45.155.192.0/24 maxlen: 24
193.246.175.0/24 maxlen: 24
193.246.174.0/24 maxlen: 24
45.155.195.0/24 maxlen: 24
45.155.193.0/24 maxlen: 24
45.155.194.0/24 maxlen: 24
185.125.22.0/24 maxlen: 24
185.125.21.0/24 maxlen: 24
185.125.23.0/24 maxlen: 24
185.212.192.0/24 maxlen: 24
185.212.193.0/24 maxlen: 24
185.212.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 09:44:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:a4:27:cc:fa:00:72:d3:53:68:58:c3:64:e8:da:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43965dd1f6f24a46d7cc4bccfecd4151c6dd1bfb
Validity
Not Before: Mar 1 10:07:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ac01c0f90c00d53a6c1a69f20ba5feeb426a790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:53:48:f0:ee:77:a8:5c:36:95:4d:a4:ef:59:
49:66:50:0d:e5:e5:04:cd:cd:1a:39:d2:18:06:ab:
6c:88:c3:f5:17:61:a1:a6:0f:97:9c:44:93:40:80:
17:d3:ca:40:92:88:24:8f:48:47:66:27:f5:66:37:
ac:9b:bd:4a:05:1e:41:c9:79:53:a2:2e:0a:4f:7d:
53:26:56:55:13:f6:ab:d4:dd:0b:8b:65:b9:0f:93:
a2:e9:0c:d6:df:95:a0:24:e3:1f:c0:61:c3:86:95:
e0:04:f1:61:52:53:40:d4:d3:16:85:e3:d1:86:bf:
45:2a:d6:a0:35:c1:3a:28:7e:3e:09:d8:aa:0d:3a:
2f:43:97:7d:42:2a:98:f5:64:72:4b:9a:44:4a:2d:
f8:25:3c:f3:57:a7:ab:a8:d8:45:56:90:66:f7:e1:
ef:e7:e5:cd:cb:22:e9:bf:61:12:04:0c:a1:ef:89:
76:09:61:d0:9e:da:fb:97:9c:40:c3:98:eb:8f:35:
32:c9:79:ed:78:39:9f:58:0b:bf:62:b7:0f:bc:c7:
82:66:39:ff:62:ae:d9:a9:dd:f1:30:6c:4a:73:7a:
5a:1c:a9:0d:df:9a:eb:9b:e9:e7:70:29:23:5f:58:
89:6c:09:1b:2d:93:d5:f0:ad:93:60:b2:fc:98:0c:
ae:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C0:1C:0F:90:C0:0D:53:A6:C1:A6:9F:20:BA:5F:EE:B4:26:A7:90
X509v3 Authority Key Identifier:
keyid:43:96:5D:D1:F6:F2:4A:46:D7:CC:4B:CC:FE:CD:41:51:C6:DD:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/SsAcD5DADVOmwaafILpf7rQmp5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c731c4-9183-4db3-b70a-33980c03f08e/1/Q5Zd0fbySkbXzEvM_s1BUcbdG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.192.0/22
91.213.151.0/24
91.213.157.0/24
91.213.167.0/24
91.213.172.0/24
185.47.48.0/22
185.82.64.0/22
185.121.56.0/22
185.125.21.0-185.125.23.255
185.137.60.0/22
185.142.92.0/22
185.142.124.0/22
185.212.192.0/23
185.212.195.0/24
185.221.192.0/22
185.238.44.0/22
193.246.174.0/23
193.246.200.0/23
195.8.102.0/24
195.8.110.0/24
195.8.112.0/24
195.8.114.0/24
195.191.22.0/23
195.191.44.0/23
195.230.97.0/24
195.230.105.0/24
195.230.107.0/24
195.230.124.0/24
Signature Algorithm: sha256WithRSAEncryption
85:83:7a:7b:8d:08:8c:65:06:2b:fa:f1:61:3a:a9:08:72:8d:
4b:45:91:6b:f9:dc:46:5a:b4:ef:28:4e:dd:b4:0e:a6:1f:ee:
e5:3a:97:ff:da:3e:ca:59:2c:c6:de:d6:68:42:80:64:07:65:
53:45:74:2d:01:aa:df:ac:e7:6b:98:df:7c:12:55:56:31:0c:
a3:42:b8:e4:5c:bf:6f:c6:7a:df:ec:e6:7c:ec:b5:28:20:fe:
a2:b5:c8:9c:55:3a:5a:9e:ad:35:95:7c:77:75:dc:80:4e:60:
13:2c:a9:9c:3e:b0:b2:b4:37:c9:ca:b9:46:21:ac:1e:22:06:
ca:3c:9b:e9:4d:61:22:7b:e2:29:6c:81:f8:fe:45:89:2a:0d:
65:7a:a1:3f:e3:d1:e1:47:87:c3:b0:0b:db:14:70:49:83:55:
15:40:be:ee:ce:6a:ad:26:51:cf:89:6a:de:7d:bb:2c:de:ee:
9a:fe:cc:9c:6d:d0:44:84:c0:dc:a3:e2:23:f1:0c:e2:a3:df:
05:fe:fc:ca:43:01:69:85:59:52:cb:8f:23:6c:e6:83:8f:ab:
cf:d3:b9:ba:80:5d:fc:0a:cc:a6:fd:cb:22:2d:48:ab:5e:60:
f4:d8:7b:93:81:2d:94:61:af:db:9b:de:44:48:d8:2c:a0:24:
08:30:87:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:50 2024 by rpki-client on console-ams.rpki-client.org