Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5umiO_glfJpc4BSKSfy8RkMz3DE.roa
File: 5umiO_glfJpc4BSKSfy8RkMz3DE.roa (raw, json)
Hash identifier: pnLLOJSuMM072EDxqUHHVhmRtH1D6kMh3EyN6JFDaz4=
Subject key identifier: E6:E9:A2:3B:F8:25:7C:9A:5C:E0:14:8A:49:FC:BC:46:43:33:DC:31
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A2C72F2F5E644AC54C783F661CFC83623
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5umiO_glfJpc4BSKSfy8RkMz3DE.roa
Signing time: Fri 25 Aug 2023 11:27:25 +0000
ROA not before: Fri 25 Aug 2023 11:27:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 14:57:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:72:f2:f5:e6:44:ac:54:c7:83:f6:61:cf:c8:36:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 25 11:27:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6e9a23bf8257c9a5ce0148a49fcbc464333dc31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:72:21:ed:92:33:77:b6:74:18:f1:d8:64:2a:
7a:54:c9:48:b8:3a:a2:70:f6:a1:d5:51:24:11:17:
0a:f4:c8:db:28:ce:bb:5b:9e:0f:92:d7:10:32:b3:
ea:36:93:8d:4a:f3:c8:1c:da:cd:fb:ed:7e:4b:0c:
39:d8:6c:7f:d2:9b:a2:09:45:0e:a8:0f:ec:df:1e:
e9:97:6a:b8:ab:2a:da:e8:fc:6b:02:06:6b:d8:18:
74:0a:2f:a7:b7:e2:c1:d8:ad:08:61:8b:ef:21:70:
91:40:41:2a:59:24:d3:3a:f5:2a:e7:ac:89:f7:a0:
eb:17:bf:5a:54:18:5c:48:b3:78:1e:44:06:55:24:
d4:5a:d4:b0:7d:b2:cd:71:d3:16:e7:28:1c:45:4e:
36:51:93:f0:32:db:e7:62:65:1f:fe:0b:00:82:4a:
19:d8:68:35:14:ef:ac:a7:b2:22:8f:e8:41:1b:b0:
b1:e1:f4:c4:c5:9c:57:64:33:58:54:fe:54:19:25:
1c:38:55:68:e5:46:bd:5f:26:54:9f:ec:fb:ec:90:
09:e4:ed:b7:32:43:cc:35:c2:fa:b9:dc:51:e1:ea:
b2:37:cc:bb:eb:66:70:d7:b3:b7:fb:0f:a1:69:53:
1e:13:6f:59:0f:c3:ea:a4:03:ec:2f:78:37:b8:cc:
d3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E9:A2:3B:F8:25:7C:9A:5C:E0:14:8A:49:FC:BC:46:43:33:DC:31
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/5umiO_glfJpc4BSKSfy8RkMz3DE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.218.23.0/24
185.218.101.0/24
185.220.249.0-185.220.251.255
185.221.20.0/24
185.221.22.0/23
185.222.29.0-185.222.31.255
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:70:ff:bf:f1:c7:48:f6:26:50:b1:67:a9:06:56:f0:e8:e5:
2c:a9:b1:f3:2f:36:ea:ea:5e:78:a5:c4:6f:44:d2:cd:6d:71:
b6:45:78:7f:e8:60:9c:b8:ab:75:7b:bc:54:ba:77:1b:e3:93:
d5:f1:64:4b:9b:94:4b:d5:da:3c:c7:29:da:6d:03:e9:f3:c3:
2a:7b:32:da:6c:24:18:8b:5b:ef:1a:1a:f3:06:5f:99:e5:59:
a7:e4:e9:f8:57:99:84:8c:3f:3a:c5:87:45:f9:e3:1b:39:5d:
4c:2a:20:62:c1:71:ab:1d:4e:c5:df:de:99:a3:fa:b4:43:88:
ef:55:5f:33:50:f5:b5:60:96:ec:e2:e7:13:d0:e8:0e:49:d8:
b7:dc:68:31:3c:d0:5c:9d:d8:91:4a:ef:6e:0d:35:00:31:72:
cc:c0:fd:da:0b:b4:75:d8:87:87:5a:91:dd:29:77:f0:4c:71:
5b:9a:17:d9:dd:90:d8:55:1d:94:3b:a5:65:91:41:82:15:a6:
cc:c2:a4:e0:00:ec:b2:5f:25:eb:ac:06:ec:8d:e4:28:9b:70:
09:a4:3d:79:18:a0:e7:b7:c2:ca:86:e9:00:b0:04:51:43:40:
f2:d4:f1:3f:e0:a5:e9:8e:31:af:95:32:d5:c7:9f:94:a2:db:
e5:eb:d6:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org