Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0Wp_LCEONzdtQ9b4gIhp9jAWo5c.roa
File: 0Wp_LCEONzdtQ9b4gIhp9jAWo5c.roa (raw, json)
Hash identifier: 0WBya9+Y9U5HRHS+Oe9MrYp16fUQENeIDZk3jw81oCI=
Subject key identifier: D1:6A:7F:2C:21:0E:37:37:6D:43:D6:F8:80:88:69:F6:30:16:A3:97
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189D477A636B0947DE667EA9E80C1467583
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0Wp_LCEONzdtQ9b4gIhp9jAWo5c.roa
Signing time: Tue 08 Aug 2023 09:25:58 +0000
ROA not before: Tue 08 Aug 2023 09:25:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.5.65.0/24 maxlen: 24
185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.81.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.21.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 11:15:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:77:a6:36:b0:94:7d:e6:67:ea:9e:80:c1:46:75:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 8 09:25:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d16a7f2c210e37376d43d6f8808869f63016a397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6b:e7:64:b0:ff:1c:75:7c:b7:8a:89:c8:8e:
08:2b:7f:a1:12:e9:aa:7b:40:d3:b4:e5:1a:15:85:
30:ec:86:5f:cd:ab:4d:9b:37:37:ea:b8:8a:32:c4:
10:c0:6b:90:53:c5:3f:c5:b7:7d:b6:8b:9c:6d:61:
51:3d:a0:0e:2f:52:63:33:f1:3f:5a:d2:15:74:ac:
ae:c3:34:b3:78:1c:c6:75:a8:db:a7:bd:71:22:05:
fb:13:1e:b8:bc:75:89:5e:bb:92:63:60:8d:ca:83:
81:e0:7e:fd:0f:ae:ef:76:3b:c3:47:10:9c:59:c3:
01:7d:26:57:48:0d:c5:d8:45:4a:88:6f:28:45:60:
5f:96:cb:95:fe:db:09:55:be:8a:4b:a0:19:a7:fb:
84:1e:d0:c5:8f:ed:8b:52:12:db:45:e7:f5:5c:94:
94:cf:65:00:94:f0:5e:09:05:a6:b0:57:3f:66:3a:
ad:18:ed:a7:98:65:75:8d:2c:fe:ff:e1:76:30:ee:
a4:95:66:e8:f2:da:cc:dc:29:06:5e:c6:dd:97:d9:
b3:ae:72:14:cb:01:c6:22:56:a4:54:eb:f5:cf:de:
20:df:56:88:d5:df:44:ac:08:ef:dc:38:f1:07:b2:
00:ec:aa:5e:25:3f:3d:e2:5d:8d:42:e5:30:34:de:
fd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6A:7F:2C:21:0E:37:37:6D:43:D6:F8:80:88:69:F6:30:16:A3:97
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0Wp_LCEONzdtQ9b4gIhp9jAWo5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.73.0/24
185.209.75.0/24
185.210.235.0/24
185.218.101.0/24
185.220.250.0/23
185.221.21.0/24
185.223.81.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.230.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:be:f1:b6:75:4d:69:5d:4f:30:2d:ac:96:f0:6d:8f:1a:3c:
ad:68:fc:64:67:b3:85:69:76:9d:74:17:dd:71:bd:e6:e7:f6:
df:1c:27:26:89:02:80:96:3e:09:f8:32:7d:00:c1:82:11:a7:
a2:76:93:14:d2:7b:58:64:44:69:b2:e5:8c:0a:0f:0d:b9:bb:
c1:2f:6d:a0:d7:a9:8f:3f:19:17:4d:41:f6:92:bc:92:25:1d:
87:fa:32:65:5f:a0:b4:aa:d4:54:bf:82:29:11:e8:61:3f:59:
a8:aa:8a:78:6e:99:90:a7:06:20:62:d5:d3:49:3f:6f:78:4f:
7e:c3:8e:b4:56:0b:76:02:f5:ec:a3:a2:dd:e3:d1:32:29:ee:
29:b2:2b:79:71:76:6f:d1:f2:00:1b:87:98:94:ec:9d:aa:c6:
73:d0:0c:10:e9:52:1e:f3:a3:c7:8a:98:6d:50:70:c0:7a:15:
8a:8a:2a:37:c1:fa:71:31:34:b0:bb:e8:36:31:3f:b2:71:b3:
fd:c5:e8:ec:0a:6e:c7:21:78:de:d7:35:f2:40:c5:04:35:a5:
54:f8:9e:4b:a3:1a:a5:68:b8:c0:d3:b6:e8:ee:91:3b:28:86:
62:bd:d8:aa:69:ea:d6:aa:d7:47:f3:0e:5d:34:14:6d:72:f8:
74:d9:89:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org