Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Av-wMcjws-4sGZvd6k-ebEfbAmY.roa
File: Av-wMcjws-4sGZvd6k-ebEfbAmY.roa (raw, json)
Hash identifier: aTEE6mAwK7HrGcPaOj2SNcaTQ5i2M/Ns2yniblrtgoM=
Subject key identifier: 02:FF:B0:31:C8:F0:B3:EE:2C:19:9B:DD:EA:4F:9E:6C:47:DB:02:66
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018CC2DAC2AA5E574E04C803BB777B38662A
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Av-wMcjws-4sGZvd6k-ebEfbAmY.roa
Signing time: Mon 01 Jan 2024 02:29:25 +0000
ROA not before: Mon 01 Jan 2024 02:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48146
IP address blocks: 92.118.248.0/22 maxlen: 24
185.148.52.0/22 maxlen: 24
151.237.131.0/24 maxlen: 24
185.240.22.0/24 maxlen: 24
188.240.236.0/22 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
194.36.104.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
5.182.80.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
185.210.60.0/22 maxlen: 24
193.228.204.0/23 maxlen: 24
185.210.72.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 09:12:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c2:aa:5e:57:4e:04:c8:03:bb:77:7b:38:66:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 1 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02ffb031c8f0b3ee2c199bddea4f9e6c47db0266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6f:fe:c7:84:d8:0a:27:92:89:ac:bd:4d:84:
51:be:d2:3f:02:dd:79:cf:08:39:9f:28:cc:c3:c7:
f7:ca:06:e4:d7:d0:ec:f0:30:a9:45:e9:68:93:32:
ec:86:7f:64:c5:44:ca:4b:1b:4c:ee:9c:19:f4:09:
2a:43:dd:eb:d5:9b:70:52:f8:b8:e1:2e:f5:28:f6:
64:fa:32:39:42:ab:13:de:36:f3:96:9d:01:84:4d:
92:da:c6:2a:ac:c2:3f:0a:89:7a:84:89:a6:5b:1c:
7f:31:9f:67:1d:de:9c:40:4f:71:6e:2b:65:9c:d2:
27:c2:54:5f:be:21:59:24:cf:bd:29:4b:cb:c5:57:
dd:50:28:5b:82:d3:e0:dd:78:6d:8c:8b:75:8f:e6:
ab:77:c5:a9:8e:c0:c6:f6:36:ef:0e:2f:21:7c:74:
2a:b2:fa:4a:3c:ef:53:d2:68:b2:1a:9f:84:d3:55:
1f:7a:2f:94:9d:8f:c6:39:0e:d3:c1:c6:92:8d:c2:
b2:0f:e2:43:01:48:e1:1f:35:d8:6e:fd:07:13:1d:
2b:92:f1:a5:47:b6:bc:ef:61:e4:15:d2:a3:e5:c3:
f0:67:5e:39:be:6f:66:b0:f8:d5:5c:55:cd:10:ea:
b8:65:e6:81:74:99:8e:9f:12:4e:7b:6c:81:22:6d:
bf:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FF:B0:31:C8:F0:B3:EE:2C:19:9B:DD:EA:4F:9E:6C:47:DB:02:66
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/Av-wMcjws-4sGZvd6k-ebEfbAmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.147.204.0/22
81.22.232.0/22
92.118.248.0/22
151.237.59.0/24
151.237.131.0/24
185.148.52.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.22.0/23
185.255.72.0/22
188.240.236.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
93:2b:d0:4c:77:f4:37:5a:ec:47:02:e2:c0:45:fb:35:7b:50:
5d:cb:66:6a:5b:1e:a0:0b:08:15:51:49:a7:da:ff:57:ae:5b:
d8:01:83:6c:dc:83:bd:ab:93:dd:04:91:bb:bd:14:7a:5e:8a:
f1:97:a0:bb:06:34:65:72:54:66:27:29:37:7e:d2:13:58:8b:
de:b5:ee:57:3e:0d:1f:6b:1e:51:12:2f:0d:fe:06:7a:f1:4d:
85:dc:33:44:23:e8:5e:0b:79:6b:f0:2b:b7:c9:66:22:c6:ba:
c0:2c:82:46:74:92:40:c4:3f:55:41:2e:0d:65:a5:8a:1c:82:
c7:ea:04:95:da:81:5b:25:be:79:75:da:d1:09:b5:58:41:f2:
43:12:b1:bd:b6:99:47:a5:9e:f4:73:8d:71:26:21:3c:e3:a3:
ea:c3:23:86:3a:56:bd:b8:80:ae:a7:80:5c:8c:8d:d8:28:18:
ab:09:ed:4e:85:fa:68:0f:3a:09:b9:78:0e:25:53:c2:45:e3:
fa:73:4b:13:9c:19:0e:f7:91:89:40:a3:51:9c:8d:08:39:0e:
a0:e0:04:df:46:97:4b:38:72:88:3c:4c:05:2f:c2:b7:f7:a2:
62:a0:59:55:73:5f:eb:2c:46:6d:06:bd:ec:e0:91:95:f6:76:
fc:de:89:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org