Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8JK9Mkd3ODVrriMNoPWEB3wyOWk.roa
File: 8JK9Mkd3ODVrriMNoPWEB3wyOWk.roa (raw, json)
Hash identifier: CES+DR1xdXv5HNnV7XVFag0WUs+vUqrpR7XU52tbjFU=
Subject key identifier: F0:92:BD:32:47:77:38:35:6B:AE:23:0D:A0:F5:84:07:7C:32:39:69
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189AD240AB57E507D85AD325694F8693CA4
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8JK9Mkd3ODVrriMNoPWEB3wyOWk.roa
Signing time: Mon 31 Jul 2023 18:09:27 +0000
ROA not before: Mon 31 Jul 2023 18:09:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.230.52.0/24 maxlen: 24
185.220.248.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.222.28.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 10:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ad:24:0a:b5:7e:50:7d:85:ad:32:56:94:f8:69:3c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 31 18:09:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f092bd32477738356bae230da0f584077c323969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:32:b1:ca:25:9d:04:07:a4:25:ae:85:2d:cf:
60:7b:03:cc:b2:b4:4f:9b:35:e5:c1:6c:7e:fe:60:
e4:8a:28:fa:bc:3a:43:bb:97:8c:b3:b4:1a:e9:e4:
14:a3:b1:ba:97:b7:36:f5:4f:b8:bd:32:f1:42:ef:
18:73:8e:3f:9c:e7:03:f8:c2:21:83:40:ae:1e:db:
c8:6a:43:84:6a:72:20:d7:91:e5:73:ee:a3:46:5a:
32:4a:2e:e3:02:ab:f5:84:eb:7c:02:0e:3f:e4:8d:
6d:d7:83:72:f0:1f:60:8c:80:a9:58:88:42:d1:7e:
77:22:2c:d4:ee:8c:6d:31:fa:06:2f:28:1a:28:fb:
1e:fe:3a:09:17:93:31:99:02:b6:c8:0d:4a:c0:d9:
27:8e:a7:09:bf:b5:22:a0:5e:68:09:3a:5b:91:55:
71:ee:2b:d5:b5:a2:0b:2b:bd:ff:c5:33:63:f8:e3:
9a:02:e9:82:0d:05:79:ec:6d:50:86:7e:60:88:19:
9d:10:b9:cb:0b:7e:b9:28:76:5a:c1:52:39:72:65:
b6:d3:7f:ce:17:80:45:33:2b:3e:74:9f:0a:72:95:
df:0f:f9:41:b1:b1:81:bc:58:3f:24:68:73:a5:bc:
b1:89:68:6f:04:cb:3f:6c:32:f4:e5:f4:ea:fe:45:
c1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:92:BD:32:47:77:38:35:6B:AE:23:0D:A0:F5:84:07:7C:32:39:69
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8JK9Mkd3ODVrriMNoPWEB3wyOWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.19.0/24
45.147.224.0/24
185.220.248.0/24
185.222.28.0/24
185.225.0.0/23
185.226.106.0/24
185.230.52.0/24
185.246.112.0/24
185.251.229.0/24
193.58.146.0/23
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
03:7e:9f:bb:6e:f8:33:9a:5b:1c:03:a3:43:03:77:94:6f:29:
a4:f2:88:ef:0b:54:9f:d5:73:4b:f7:e8:f0:1c:89:4e:07:e0:
a6:b4:78:8c:cf:49:40:44:40:2c:21:57:48:fd:90:d5:84:d4:
9f:08:7a:0b:a5:bf:85:58:95:93:6e:25:4d:ff:b9:ae:cc:9a:
75:98:d4:16:e3:b6:f4:2d:3d:d0:31:fa:c9:25:e5:4f:db:f8:
e9:a2:04:04:96:91:d1:02:09:78:71:99:23:07:cf:91:ca:06:
c1:83:92:20:44:34:72:bf:e4:e7:ce:d4:04:34:9f:a8:fb:1e:
30:8d:aa:9c:e5:45:8f:19:d6:d8:d0:8c:e6:da:c5:f9:5f:3c:
70:af:5b:21:97:aa:3c:98:8a:d6:d9:3f:0c:32:4d:78:21:0f:
a1:94:a9:fc:38:92:02:a9:90:3d:ca:89:11:8c:b9:bb:10:c3:
9c:41:49:a1:81:11:a3:be:de:a7:e7:6f:e4:60:4a:0e:3d:89:
38:c7:08:be:90:12:43:33:63:b7:95:10:04:66:e1:68:b8:89:
e2:10:f2:0f:c7:5c:67:71:d3:8b:89:99:b1:bf:be:35:83:cd:
4a:bb:57:57:c4:47:57:0a:0e:73:16:50:70:0b:f6:a1:73:bb:
ce:89:f8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org