Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5GricBU5AmYuE2J6Ykt1mDVGv5Y.roa
File: 5GricBU5AmYuE2J6Ykt1mDVGv5Y.roa (raw, json)
Hash identifier: Mp3cCt2jkGdie8bcnJioFW6xemiHPdIaV3g5LXJVmP0=
Subject key identifier: E4:6A:E2:70:15:39:02:66:2E:13:62:7A:62:4B:75:98:35:46:BF:96
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A8DE2DF19C874D03C7D47DAB836E9946A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5GricBU5AmYuE2J6Ykt1mDVGv5Y.roa
Signing time: Wed 13 Sep 2023 09:32:50 +0000
ROA not before: Wed 13 Sep 2023 09:32:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.206.250.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
45.90.16.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 09:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:e2:df:19:c8:74:d0:3c:7d:47:da:b8:36:e9:94:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 13 09:32:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e46ae270153902662e13627a624b75983546bf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:74:72:c3:17:ca:d8:c4:4f:64:cf:93:a3:8f:
9a:8b:39:76:cc:ce:d5:40:f7:c7:b5:2d:a9:0e:f0:
ef:db:5b:27:1c:cc:fa:00:a9:51:de:1b:e9:cf:f0:
79:12:98:bb:9a:4b:77:44:46:db:e5:14:14:5e:76:
52:6e:0e:3e:c7:33:ed:0f:8f:d0:ab:7e:87:fc:68:
ab:f8:f3:4e:64:a3:1d:0b:c7:96:38:bc:31:d1:be:
23:bc:9f:60:14:75:aa:c6:a5:fa:f1:76:40:5b:6b:
da:7c:68:5e:a5:99:b5:e4:f8:82:fc:e9:bb:23:30:
9a:6a:73:0c:7d:78:ca:a8:01:1a:0d:1a:1f:01:27:
9b:7e:ee:ed:09:c0:1f:4e:af:55:6f:6a:27:55:25:
4d:26:17:fd:19:1e:00:24:94:2a:e3:83:49:54:57:
6c:dc:b3:aa:ca:4c:05:9d:94:48:ca:a1:42:87:d1:
97:5a:cb:a6:ca:e4:2b:d5:c8:a1:1f:b7:40:df:44:
aa:50:ad:ec:54:66:e6:d4:b5:fb:5e:e3:a4:73:28:
0a:68:e4:ed:95:99:6a:0a:7f:82:d3:54:a4:53:a2:
c2:ee:7d:91:cb:e3:25:4a:3c:a4:63:e9:ea:70:c0:
e8:1a:8c:ba:b5:28:e2:cc:a2:75:52:dc:f8:66:d2:
b1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6A:E2:70:15:39:02:66:2E:13:62:7A:62:4B:75:98:35:46:BF:96
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5GricBU5AmYuE2J6Ykt1mDVGv5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.16.0/24
45.90.19.0/24
45.147.224.0/24
185.36.205.0/24
185.194.177.0/24
185.206.250.0/24
185.209.73.0/24
185.210.233.0/24
185.220.249.0/24
185.222.29.0/24
185.223.80.0/24
185.225.0.0/23
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.74.0/24
185.246.112.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:97:30:eb:3c:f4:97:0c:68:e7:68:7e:da:b8:c8:fe:da:51:
28:dc:44:4b:37:51:e5:4b:84:21:14:5d:fa:e6:50:a0:27:10:
fa:99:0a:cd:9e:18:f9:69:c4:ef:b6:79:4d:79:32:d5:d5:c2:
a7:1a:cd:3f:03:d2:59:89:a7:ff:97:c5:89:65:e8:f6:59:5a:
37:25:33:66:0e:1a:c7:d0:c8:16:20:71:6f:b3:73:a9:7d:d6:
44:d5:f9:c2:ed:22:86:8c:dd:bb:08:12:f6:b9:e3:fb:7b:a6:
25:f5:44:df:10:33:6b:31:66:d9:0d:fd:b9:67:25:23:b5:41:
39:89:1c:83:5c:a5:87:93:b7:55:16:60:ea:38:f5:1f:be:f4:
b2:84:1f:fc:ee:2c:05:f6:66:32:3a:8b:d3:ff:16:44:f2:0a:
bc:73:fa:7f:02:55:57:42:53:25:59:e4:81:13:0c:fe:8f:e3:
4c:1e:9f:02:3d:0a:7c:61:1c:1b:b0:cb:91:61:ae:eb:e1:b3:
38:da:92:48:66:c0:a3:cd:18:6d:96:76:1d:49:24:8a:30:0e:
81:b6:d5:29:8e:d8:b8:c7:d8:2d:13:78:ec:9b:c1:cf:e3:35:
41:5e:c8:d2:97:40:8b:c2:e6:62:0c:88:ac:a5:ae:48:cd:42:
8c:af:5d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org