Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ibrar6FPd2odEXL0D3-yFtXHUc.roa
File: 3Ibrar6FPd2odEXL0D3-yFtXHUc.roa (raw, json)
Hash identifier: enYgQKhK/Kk47r0AlKWLgLqsD/vqFIGuXSStXmSZYGA=
Subject key identifier: DC:86:EB:6A:BE:85:3D:DD:A8:74:45:CB:D0:3D:FE:C8:5B:57:1D:47
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018B4C8DB2061B97B87A5E8431CCA9796005
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ibrar6FPd2odEXL0D3-yFtXHUc.roa
Signing time: Fri 20 Oct 2023 10:07:16 +0000
ROA not before: Fri 20 Oct 2023 10:07:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48146
IP address blocks: 92.118.248.0/22 maxlen: 24
185.240.22.0/24 maxlen: 24
185.240.20.0/23 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
194.36.104.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
185.210.60.0/22 maxlen: 24
151.237.58.0/24 maxlen: 24
193.228.204.0/23 maxlen: 24
185.210.72.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
185.148.52.0/22 maxlen: 24
151.237.131.0/24 maxlen: 24
188.240.236.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
5.182.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 13:12:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:8d:b2:06:1b:97:b8:7a:5e:84:31:cc:a9:79:60:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Oct 20 10:07:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc86eb6abe853ddda87445cbd03dfec85b571d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:68:58:44:d9:65:03:3f:bd:89:d9:c1:d3:26:
79:2c:c1:cd:ce:c3:12:df:f9:72:89:3d:2c:ec:f9:
cf:c7:15:ea:88:6c:95:f3:25:9d:c6:0b:bf:f6:ff:
d9:8b:92:e3:79:ec:b1:57:62:79:b5:ae:cd:0c:60:
99:0e:ac:90:9a:22:c4:a9:f5:2d:99:9f:bb:5c:33:
75:c8:ee:cd:e1:fd:0b:a8:ac:22:d9:9f:b2:b8:a0:
26:d4:62:f2:fb:47:fd:62:2b:b5:da:f2:ee:07:c9:
6c:63:e6:0a:d2:85:0b:c7:aa:c3:1d:d6:ad:e8:b3:
46:1a:c0:0c:a6:6c:b4:fb:48:82:e9:09:40:f0:a0:
1a:b7:ae:da:72:52:e8:6c:79:da:79:fe:f9:85:b2:
dc:cf:09:de:23:d5:26:51:32:3f:b8:3a:b4:3d:d6:
ad:49:73:65:2f:cc:27:cf:aa:b3:4d:28:a7:59:3f:
b4:6e:33:07:5c:4d:1b:15:29:28:28:66:85:1b:12:
71:cf:4f:12:4a:c6:7f:80:84:90:c3:25:9e:ef:f9:
2b:5e:ce:78:f4:b5:f2:37:0f:84:ea:e6:b1:d5:b3:
80:59:70:a8:d6:e4:7d:9c:42:f7:3d:58:19:91:65:
a0:20:c3:d8:95:71:0e:82:e8:d5:cc:96:02:5f:f5:
2d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:86:EB:6A:BE:85:3D:DD:A8:74:45:CB:D0:3D:FE:C8:5B:57:1D:47
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/3Ibrar6FPd2odEXL0D3-yFtXHUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.147.204.0/22
81.22.232.0/22
92.118.248.0/22
151.237.58.0/23
151.237.131.0/24
185.148.52.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.20.0/22
185.255.72.0/22
188.240.236.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:69:eb:d4:bb:16:21:60:27:1b:d3:d2:7a:79:08:aa:d1:00:
a6:a9:d8:9f:07:90:6d:6d:55:f4:1a:98:69:12:0a:c0:98:03:
28:a6:e2:fd:5d:bc:5a:75:fc:0f:66:ee:fb:f6:60:89:c9:28:
9a:ff:3e:f5:45:55:af:da:d9:04:c7:68:6b:9b:79:05:a0:fc:
20:ed:3e:fc:dc:62:1d:df:23:a4:18:25:7c:82:27:b1:f0:d8:
20:4b:88:51:b2:d9:c8:6f:ae:fc:03:28:56:9c:e8:23:13:8c:
8a:da:7a:c6:54:f0:97:16:dd:78:98:16:c5:c9:a9:49:8c:2b:
00:17:c0:29:79:7b:5e:29:29:08:4a:e4:24:d3:70:14:3f:07:
3c:4d:9c:4f:0e:03:74:3f:d7:e4:60:4c:22:4e:2d:96:ed:57:
e9:00:2d:91:c1:bf:71:76:47:57:1d:18:4e:e2:5b:c7:e3:c4:
ab:22:ce:fe:3c:cd:b9:0d:82:97:d7:3a:41:b3:54:53:f5:8d:
c8:f0:bd:e2:db:2f:54:e9:29:0b:f8:81:5f:87:0d:22:ed:e1:
19:f2:db:d4:ba:25:ce:86:38:ca:6a:b5:e3:89:21:6b:f3:53:
23:85:85:2d:6d:2c:75:7c:17:27:c7:13:07:41:2b:39:21:39:
8a:18:cb:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org