Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5j6SBH6r82lsc0nM3XCKanG6MwU.roa
File: 5j6SBH6r82lsc0nM3XCKanG6MwU.roa (raw, json)
Hash identifier: zzpHcAi7lKQjiAeXW932nBgkEXkInWp/rGaKp2erTHQ=
Subject key identifier: E6:3E:92:04:7E:AB:F3:69:6C:73:49:CC:DD:70:8A:6A:71:BA:33:05
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186B65F2C34B833A82AF202081079D680B1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5j6SBH6r82lsc0nM3XCKanG6MwU.roa
Signing time: Mon 06 Mar 2023 10:02:15 +0000
ROA not before: Mon 06 Mar 2023 10:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.225.20.0/24 maxlen: 24
185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
45.8.20.0/22 maxlen: 24
185.214.108.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Mar 2023 09:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:5f:2c:34:b8:33:a8:2a:f2:02:08:10:79:d6:80:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 6 10:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e63e92047eabf3696c7349ccdd708a6a71ba3305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:80:9a:84:84:c9:04:15:40:1d:12:a0:d9:13:
68:2b:58:51:66:f9:ac:a4:b7:91:f2:b6:08:b8:fb:
24:16:a8:d5:3b:d5:50:0c:ab:38:b9:05:22:be:37:
f9:01:5a:ea:c2:3a:06:6d:ca:6c:e4:9c:2d:b1:af:
d2:0e:1c:70:fc:0d:35:e7:c4:97:49:20:5b:2d:72:
a7:1c:69:fd:9c:a3:e2:ba:cb:23:9d:57:4b:03:15:
08:03:21:af:54:44:f5:ee:29:d3:0f:84:90:14:02:
e7:96:a3:09:df:28:1e:4d:a1:13:f2:b2:34:82:45:
f0:10:2c:e6:29:02:d9:1e:ee:cc:51:42:7b:6f:7f:
d1:d9:2f:07:24:bc:b1:aa:e0:e9:a9:d7:2d:5d:96:
cc:c2:cd:50:aa:e5:8e:cc:90:49:57:df:a3:1b:c3:
62:99:e3:99:1e:18:26:b8:d2:0d:cc:5d:04:6e:4b:
42:50:7e:67:9a:d3:e9:0f:e6:7c:bc:02:60:bc:5f:
27:81:53:e0:49:90:ed:35:89:6e:d6:d0:47:3b:93:
f5:c7:8d:75:37:99:a7:19:f0:4d:e8:e3:e4:87:67:
d7:87:28:f3:a2:71:95:bf:7f:4c:08:60:f3:fa:84:
f5:43:cf:09:ea:87:f6:ed:5a:4e:77:b5:c9:0d:f3:
bb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3E:92:04:7E:AB:F3:69:6C:73:49:CC:DD:70:8A:6A:71:BA:33:05
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5j6SBH6r82lsc0nM3XCKanG6MwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.20.0/22
185.36.204.0/24
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.214.108.0/24
185.223.76.0/24
185.225.20.0/24
185.226.105.0/24
185.226.107.0/24
185.228.74.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.229.0/24
185.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
67:21:3b:6a:43:c9:11:c8:29:0d:36:48:07:3b:52:3b:f9:14:
0b:e9:30:71:14:94:0e:c6:f0:18:97:b4:1d:25:ff:60:74:ac:
1b:77:aa:af:32:3b:da:b6:bd:e4:ae:25:2a:ac:b8:8b:c7:b2:
05:4a:65:4e:f9:a2:db:63:4a:f6:d1:32:7f:6e:43:9d:0e:46:
c3:b0:17:96:e0:bb:40:74:f9:fa:61:8c:7f:cd:52:34:2d:42:
08:7c:6f:b3:dd:d1:d4:21:34:82:32:74:24:98:74:0f:9e:5c:
ea:c3:a7:48:d9:bd:54:06:23:86:b6:af:ed:b1:89:4a:b1:18:
c4:66:6b:ba:9d:b0:0d:f5:51:42:f4:df:d9:2b:c9:08:b1:12:
df:da:32:35:b6:f7:79:8f:90:e3:94:0c:e4:b5:fe:89:1b:80:
3d:e3:f8:3b:4f:00:cc:a4:c5:de:d0:19:04:57:07:98:02:a3:
17:0d:12:5f:0a:a7:fb:12:85:41:57:bd:84:85:5a:de:63:6e:
67:1d:49:62:1e:df:48:b0:e6:83:20:7a:d6:74:1a:04:e7:e2:
58:aa:8a:d1:e4:3d:c4:04:c9:c8:50:5a:42:a3:f0:34:0c:1c:
93:38:7f:d5:6e:4a:ee:5e:ac:53:b3:be:82:77:04:b5:4e:c5:
04:c4:f8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org