Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/jie_09QGpmkE_K2r1M7zot7LyWg.roa
File: jie_09QGpmkE_K2r1M7zot7LyWg.roa (raw, json)
Hash identifier: doVnSSTEz1A/5l/d7KrDuKEDeWPpS9OOnueWne5RPNk=
Subject key identifier: 8E:27:BF:D3:D4:06:A6:69:04:FC:AD:AB:D4:CE:F3:A2:DE:CB:C9:68
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018BAF1085556EE8582E8AF94E882AC5E872
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/jie_09QGpmkE_K2r1M7zot7LyWg.roa
Signing time: Wed 08 Nov 2023 13:12:57 +0000
ROA not before: Wed 08 Nov 2023 13:12:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48146
IP address blocks: 92.118.248.0/22 maxlen: 24
185.148.52.0/22 maxlen: 24
151.237.131.0/24 maxlen: 24
185.240.22.0/24 maxlen: 24
188.240.236.0/22 maxlen: 24
185.240.20.0/23 maxlen: 24
185.240.23.0/24 maxlen: 24
185.255.72.0/22 maxlen: 24
45.86.224.0/22 maxlen: 24
81.22.232.0/22 maxlen: 24
194.36.104.0/22 maxlen: 24
185.209.8.0/22 maxlen: 24
194.147.144.0/22 maxlen: 24
45.89.40.0/22 maxlen: 24
5.182.80.0/22 maxlen: 24
45.147.204.0/22 maxlen: 24
45.14.208.0/22 maxlen: 24
185.198.108.0/22 maxlen: 24
45.136.32.0/22 maxlen: 24
193.228.194.0/23 maxlen: 24
185.210.60.0/22 maxlen: 24
193.228.204.0/23 maxlen: 24
185.210.72.0/22 maxlen: 24
151.237.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 15:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:10:85:55:6e:e8:58:2e:8a:f9:4e:88:2a:c5:e8:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Nov 8 13:12:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e27bfd3d406a66904fcadabd4cef3a2decbc968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:34:d9:77:10:3f:db:7a:56:cc:bf:ce:67:a6:
5a:03:2a:5e:a4:0e:66:24:37:dd:bd:1c:74:66:03:
26:4b:00:e8:1b:c5:54:8e:1b:20:c7:c6:34:71:8e:
69:14:b1:73:db:a2:d9:54:45:73:71:17:eb:e4:25:
2c:3d:21:54:72:58:9a:8f:90:c1:bd:b7:a3:c9:2d:
af:84:71:13:a5:e0:4d:7d:cc:a2:d3:08:cc:71:3b:
f1:1a:e8:32:f8:b2:be:d9:06:69:bf:ba:e7:e1:0e:
43:c5:93:16:cf:22:32:8a:a8:b0:37:f6:96:05:2c:
1e:c5:ee:b6:a1:86:4f:26:00:aa:b9:47:d7:e2:20:
0b:4f:ac:37:c1:82:12:93:41:ae:b3:e7:b9:45:ca:
55:92:0c:b9:69:79:bf:48:72:45:e7:71:a3:c8:ae:
59:f4:5b:73:1a:eb:af:56:b4:2f:0d:b2:ab:8b:4a:
cc:44:a6:5f:cd:31:3c:18:65:fe:25:db:59:b0:21:
c0:9f:2f:56:99:92:df:45:3d:0a:85:aa:3b:b5:8d:
d9:6b:b9:1f:48:bf:9f:96:75:58:1d:90:0d:6d:98:
56:74:20:68:eb:c1:8a:86:2f:a7:5f:60:04:50:22:
b0:ce:56:9a:ea:12:81:e3:a7:f2:52:94:57:5a:5e:
89:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:27:BF:D3:D4:06:A6:69:04:FC:AD:AB:D4:CE:F3:A2:DE:CB:C9:68
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/jie_09QGpmkE_K2r1M7zot7LyWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.80.0/22
45.14.208.0/22
45.86.224.0/22
45.89.40.0/22
45.136.32.0/22
45.147.204.0/22
81.22.232.0/22
92.118.248.0/22
151.237.59.0/24
151.237.131.0/24
185.148.52.0/22
185.198.108.0/22
185.209.8.0/22
185.210.60.0/22
185.210.72.0/22
185.240.20.0/22
185.255.72.0/22
188.240.236.0/22
193.228.194.0/23
193.228.204.0/23
194.36.104.0/22
194.147.144.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:58:10:00:27:82:31:ec:27:60:c2:9f:d3:31:67:53:2f:fe:
98:29:1a:d3:f4:75:66:d4:12:94:22:56:1c:16:d4:29:68:73:
16:23:7a:93:9a:7e:6b:38:a8:7e:2b:3c:ee:9c:c9:68:16:f8:
0d:44:47:04:ed:8f:62:3e:2d:53:04:dd:37:d5:bc:1a:1a:d2:
59:15:f6:92:2a:5c:6a:3d:2a:bf:67:ca:60:d8:1a:79:b2:73:
24:9c:b7:27:fd:5e:d9:01:44:d7:ce:92:d8:f2:34:62:12:82:
a7:93:c9:7c:d7:b1:e4:f1:3c:c9:c4:90:f2:12:20:c0:13:21:
61:fc:1c:62:06:43:5f:96:29:cc:09:4d:7b:05:cc:59:83:4d:
5f:53:a1:d6:ad:3d:88:b8:7e:d7:b8:cb:99:7d:6c:35:a2:19:
c6:97:f1:d9:6d:7f:34:e9:65:ac:0a:f9:c5:29:29:8c:66:d4:
71:c6:a7:99:31:85:13:66:4b:b1:5b:10:33:e7:4d:2a:87:84:
f6:a3:5d:e4:db:d8:42:52:86:5c:54:ca:b7:68:97:44:73:67:
6d:17:24:13:b7:1d:43:fa:9b:49:b6:9e:4a:7e:f8:86:fa:b1:
aa:72:47:af:ee:69:01:0e:35:0c:ef:ac:95:28:ab:09:cf:26:
e5:5b:0e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:37 2024 by rpki-client on console-fra.rpki-client.org