Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/15NrADrVY5nL-CcTd1Vf1FLy4hc.roa
File: 15NrADrVY5nL-CcTd1Vf1FLy4hc.roa (raw, json)
Hash identifier: IvQ3xHHGSAXL+pv3K+ZMK6X+YkuOf387g6GE6z21ZIw=
Subject key identifier: D7:93:6B:00:3A:D5:63:99:CB:F8:27:13:77:55:5F:D4:52:F2:E2:17
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189F485FAA8BF76C6B7B69C93CAF784AEEC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/15NrADrVY5nL-CcTd1Vf1FLy4hc.roa
Signing time: Mon 14 Aug 2023 14:49:28 +0000
ROA not before: Mon 14 Aug 2023 14:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.21.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 14:52:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:85:fa:a8:bf:76:c6:b7:b6:9c:93:ca:f7:84:ae:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 14 14:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7936b003ad56399cbf8271377555fd452f2e217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:31:a9:35:2d:89:87:c7:20:b3:7f:d2:d3:dc:
be:3a:84:d1:c7:38:d5:e7:d1:e5:3b:a9:4a:84:04:
4b:43:89:7b:de:36:2d:42:7b:8c:89:e0:1d:9c:17:
bc:4b:a1:ea:f9:cd:3a:7f:1a:b9:95:c2:47:c3:22:
3c:a8:e3:55:db:72:ec:33:73:7e:e5:8d:52:39:75:
3d:7c:03:d6:00:e3:1f:5f:96:99:1f:c0:bb:3c:ca:
11:14:7f:3e:fc:34:1e:ad:d8:75:41:99:8f:1e:74:
22:30:c9:d3:19:25:8b:19:8a:58:46:94:da:b5:f2:
79:1f:31:9f:cb:27:f9:e7:1c:da:f2:46:7b:6b:34:
45:da:87:66:67:29:a9:2a:4f:f1:fb:ed:4f:26:78:
a7:a9:0e:a0:ec:c9:45:95:d7:96:bd:99:1d:b8:96:
41:4f:42:6d:f1:ee:00:3d:ea:53:ee:ea:46:6a:b4:
fb:82:fe:da:f3:2b:41:93:a2:65:f7:be:c4:d3:e2:
40:a8:01:fa:7a:b5:1b:11:3f:ee:dc:b6:39:39:f6:
41:2d:b0:74:3a:e7:69:83:de:7e:3a:40:e6:06:88:
71:f9:b1:7b:2b:12:dd:05:18:1f:f0:8f:70:39:86:
e0:7c:fd:fc:b5:eb:b4:bd:61:ac:fb:0f:81:21:ca:
93:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:93:6B:00:3A:D5:63:99:CB:F8:27:13:77:55:5F:D4:52:F2:E2:17
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/15NrADrVY5nL-CcTd1Vf1FLy4hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.23.0/24
185.218.101.0/24
185.220.250.0/23
185.221.20.0/23
185.222.30.0/23
185.223.81.0/24
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.230.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
44:0a:1d:b2:6e:38:d3:ee:27:f4:5f:21:9e:21:2c:6a:27:ef:
40:83:10:98:0e:b8:a0:fd:5e:c8:ca:db:a1:99:70:59:d1:ba:
3c:05:11:20:b9:77:6e:36:82:62:36:ad:3d:df:fe:cc:b4:79:
88:72:76:07:bb:e3:6c:7c:95:7e:81:52:d4:83:09:6f:f8:e2:
6c:52:b1:6a:11:bc:0a:fd:e9:e8:6d:c1:75:f9:65:ea:fc:8f:
f1:f2:be:9a:20:c0:f5:23:79:16:e1:24:db:08:28:5a:9f:30:
70:e1:e4:35:0f:a6:3e:3a:09:5e:9e:70:8d:6b:d6:87:58:95:
44:63:9a:4e:39:2a:9e:43:8f:f5:4d:40:95:ea:88:44:a7:81:
58:f5:22:b6:c6:24:01:36:95:bc:5e:2e:3f:6f:6c:a8:a2:0d:
ed:50:d5:2e:30:da:94:ca:a2:95:6f:49:37:1e:4e:58:57:78:
56:3a:01:6b:f5:36:e7:01:d5:52:95:4b:b6:8c:29:65:39:ad:
8f:5b:73:ea:d5:3f:b8:f5:78:34:f9:af:06:db:d4:11:5e:40:
90:22:be:47:fd:4a:1b:96:90:cb:c6:9a:e4:d2:46:3d:c9:5f:
3d:55:d2:72:fe:a5:33:e5:99:3b:8a:58:7a:8b:c9:c9:03:db:
8f:74:71:e1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org