Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Hju3E0Ktyzg5a8b-fT_1bPH_-Q.roa
File: 1-Hju3E0Ktyzg5a8b-fT_1bPH_-Q.roa (raw, json)
Hash identifier: 5HIiFzgmm2AVhJWZ8bixk7IRFxfkGr/IFDbV+E6SiZw=
Subject key identifier: F8:78:EE:DC:4D:0A:B7:2C:E0:E5:AF:1B:F9:F4:FF:D5:B3:C7:FF:E4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A02BFE84CF429136C2C37B31182A2E1A1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Hju3E0Ktyzg5a8b-fT_1bPH_-Q.roa
Signing time: Thu 17 Aug 2023 09:07:25 +0000
ROA not before: Thu 17 Aug 2023 09:07:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 09:08:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:bf:e8:4c:f4:29:13:6c:2c:37:b3:11:82:a2:e1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 17 09:07:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f878eedc4d0ab72ce0e5af1bf9f4ffd5b3c7ffe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5d:5a:89:1c:09:98:e7:75:a6:0b:7f:e6:dd:
65:f8:3e:d1:fa:86:8d:bf:76:65:fa:ce:03:e9:17:
5d:d1:b2:e1:6c:44:1f:57:0f:f7:63:69:75:9f:06:
36:1c:3b:12:85:eb:a8:41:fb:1b:f5:15:4d:a7:ca:
eb:2b:b7:1f:56:ac:59:7f:5f:11:c0:21:3d:ac:01:
e2:1c:45:35:7d:4b:65:34:c6:d2:8a:96:21:e0:37:
f8:79:64:4a:43:52:46:6d:ed:3b:8d:62:2f:1e:62:
e2:ea:42:24:27:f2:7f:c1:33:9b:1a:6b:87:bc:37:
85:d8:fa:dc:83:3c:99:33:2b:d5:a3:46:27:d6:12:
09:c8:66:41:aa:ce:1e:86:ea:39:01:3e:96:f6:e9:
01:6a:37:0a:4e:41:1a:a0:dc:a9:e3:ae:87:bf:7b:
a6:1a:0f:74:e8:51:48:fc:a3:1b:af:e9:c3:e1:b3:
4b:90:22:ad:1e:ee:05:4c:47:d1:a4:17:d5:0f:e5:
0a:2f:62:bc:56:77:7e:8a:5a:ba:9b:72:97:fb:11:
64:c9:ac:aa:fb:8f:6b:9b:22:2c:be:27:e2:b8:1a:
90:6e:08:56:17:21:dc:d5:19:86:bf:2e:ec:2a:e7:
12:d4:10:bb:ab:a8:1b:66:23:70:27:3f:08:63:94:
ed:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:78:EE:DC:4D:0A:B7:2C:E0:E5:AF:1B:F9:F4:FF:D5:B3:C7:FF:E4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Hju3E0Ktyzg5a8b-fT_1bPH_-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.23.0/24
185.218.101.0/24
185.220.250.0/23
185.221.20.0/24
185.222.30.0/23
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.231.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:63:7f:93:73:42:cf:ac:71:30:2c:b3:1c:2e:98:4c:7e:92:
4e:1d:ef:cd:c5:61:e7:2b:4a:50:2b:f5:82:83:44:60:bc:e6:
41:40:98:c8:48:40:a1:99:b5:f2:a0:d5:26:36:ff:4f:49:0f:
ae:13:ab:75:07:51:bc:53:2f:d5:bd:09:1c:c8:0d:aa:ac:ee:
58:05:ab:9d:9b:0a:c5:d6:ab:33:f9:0d:07:18:f2:e5:af:c1:
68:1f:79:a7:50:21:4f:31:c7:04:99:bb:4d:f0:27:c5:dd:cb:
34:05:08:03:88:df:c5:0f:ee:62:98:b6:a6:70:21:5b:1f:e8:
57:eb:90:8b:28:f1:e9:72:4b:5b:36:f8:2c:9d:3f:ae:06:e0:
82:d0:b0:02:55:40:ab:e7:81:78:30:89:df:ba:4c:e6:b7:30:
89:e3:61:e3:61:31:05:35:44:73:9f:2d:bb:9c:ec:b4:f8:f7:
95:69:6d:1b:6e:98:cd:06:b7:bc:bf:2a:e1:85:94:e6:f8:bc:
03:fd:48:0f:e1:0b:d3:6e:2f:fc:e2:c3:29:49:5c:19:65:aa:
53:17:47:4e:2d:15:e4:c8:72:92:66:04:2f:88:4e:0a:d2:9e:
c8:37:fb:c5:7d:95:65:1c:c0:31:3c:3b:e6:47:bb:fa:be:6a:
af:d9:6c:00
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org