Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yXuzVxyUEYXtHYhye-PdxYjgWA.roa
File: 9yXuzVxyUEYXtHYhye-PdxYjgWA.roa (raw, json)
Hash identifier: FtWp44vAp90oc+bj34wDLXHbBBn0FyI1Q7WchdT02R8=
Subject key identifier: F7:25:EE:CD:5C:72:50:46:17:B4:76:21:C9:EF:8F:77:16:23:81:60
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A8DBA97223B5553CCB012CC8F4512B846
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yXuzVxyUEYXtHYhye-PdxYjgWA.roa
Signing time: Wed 13 Sep 2023 08:48:50 +0000
ROA not before: Wed 13 Sep 2023 08:48:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
45.90.16.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 09:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:ba:97:22:3b:55:53:cc:b0:12:cc:8f:45:12:b8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 13 08:48:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f725eecd5c72504617b47621c9ef8f7716238160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:03:31:7f:ac:fb:be:4c:ac:2b:b6:02:80:
09:68:ad:bf:05:d1:ca:9c:1f:ab:24:ae:52:cc:7c:
d0:6f:f4:f3:b9:f4:b9:bd:ad:48:1f:15:c7:5e:ac:
a1:05:0e:da:37:8a:9d:7b:8d:64:b2:c6:f3:54:2e:
94:b6:0b:b9:ea:08:e0:a1:c7:b7:0c:52:07:56:ff:
80:a3:d0:ab:bc:47:23:48:56:d1:20:16:63:5d:3b:
48:57:22:6c:0d:58:6d:23:cd:6b:d2:4c:b3:96:18:
a8:cc:45:24:f1:29:8d:44:e6:94:2e:5f:e5:e0:34:
9c:99:cb:83:43:80:f6:04:77:92:06:a3:ad:95:1a:
ff:0a:5d:dd:c2:af:d7:8e:82:54:90:55:22:79:74:
3f:e1:4b:18:24:3e:b1:67:0a:b5:81:7d:db:2d:29:
8e:b8:c8:5b:e9:c0:c6:c3:bd:ab:d0:7c:c5:15:05:
b5:d6:45:1d:78:51:13:12:32:e9:7f:c7:84:3a:a2:
5a:e1:fe:ec:34:c7:2e:bc:4f:90:d9:69:70:14:15:
45:b3:47:9e:22:57:40:24:e2:2e:b2:e5:54:85:da:
89:a6:c7:1e:2c:59:c7:63:61:3c:a8:ec:67:7f:31:
cf:e9:3e:7b:4a:0f:14:1f:7c:51:08:08:df:cd:ab:
38:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:25:EE:CD:5C:72:50:46:17:B4:76:21:C9:EF:8F:77:16:23:81:60
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/9yXuzVxyUEYXtHYhye-PdxYjgWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.16.0/24
45.90.19.0/24
45.147.224.0/24
185.36.205.0/24
185.194.177.0/24
185.209.73.0/24
185.210.233.0/24
185.220.249.0/24
185.222.29.0/24
185.223.80.0/24
185.225.0.0/23
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.74.0/24
185.246.112.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
39:2f:aa:af:ab:ba:b9:79:6b:69:3a:0c:e2:bf:f5:0b:58:87:
83:f1:e5:15:33:62:2d:0c:0e:a3:7e:68:9e:61:93:23:5d:30:
b8:2f:7f:9e:22:fe:b8:e3:b7:b8:c2:1d:2d:03:30:9b:1f:d7:
32:9c:e6:30:2f:e9:16:9d:64:4d:73:f3:a5:3a:6c:f3:4e:42:
40:18:6a:56:c7:35:75:fc:6f:07:f6:de:70:7d:ca:aa:df:11:
19:ad:1d:95:a3:56:c5:b5:e3:0b:62:24:a0:14:ea:b8:42:64:
c6:b4:75:0c:24:83:44:de:33:f4:de:e0:f3:48:2f:73:ed:24:
44:57:e3:cb:72:c1:0c:d4:f9:a2:e8:a4:f5:1c:7b:a9:4f:ed:
8a:6d:aa:ef:ff:bd:27:a3:30:53:d0:34:c3:97:6c:ea:e1:86:
2d:ea:b9:c4:6a:b5:79:fd:4a:b6:f8:e6:e1:7d:3e:79:c0:70:
fe:4b:8d:a6:71:8c:b4:48:14:bf:b8:d2:80:a9:bb:20:94:b9:
ac:91:a7:ac:59:53:cb:60:66:e7:4d:a0:70:0b:5f:41:c2:99:
c5:a8:c6:9f:62:05:0a:3c:b8:86:9b:c0:79:28:ae:15:1a:56:
72:ca:04:97:9d:7d:54:01:2c:42:4b:e0:77:2b:8e:f2:50:64:
f4:82:f2:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org