Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DhRNgGb8qW4zYwiDV9pvFi1zeZs.roa
File: DhRNgGb8qW4zYwiDV9pvFi1zeZs.roa (raw, json)
Hash identifier: EnKNWuxDl3hN8guJXr63gY42aUcwWpeBoz5IzQjpRME=
Subject key identifier: 0E:14:4D:80:66:FC:A9:6E:33:63:08:83:57:DA:6F:16:2D:73:79:9B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188D2C76ABC30AADD0FB1900B51D776126E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DhRNgGb8qW4zYwiDV9pvFi1zeZs.roa
Signing time: Mon 19 Jun 2023 08:31:04 +0000
ROA not before: Mon 19 Jun 2023 08:31:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207046
IP address blocks: 185.247.4.0/22 maxlen: 24
194.113.28.0/22 maxlen: 24
185.247.5.0/24 maxlen: 24
185.247.6.0/23 maxlen: 24
194.146.220.0/22 maxlen: 22
185.221.16.0/23 maxlen: 23
185.227.206.0/24 maxlen: 24
45.134.84.0/22 maxlen: 24
185.227.207.0/24 maxlen: 24
185.224.220.0/22 maxlen: 22
185.249.204.0/22 maxlen: 22
185.250.182.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 09:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:c7:6a:bc:30:aa:dd:0f:b1:90:0b:51:d7:76:12:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 19 08:31:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e144d8066fca96e3363088357da6f162d73799b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c3:d0:26:00:0b:8d:60:ef:86:59:bd:f3:ff:
ef:54:b0:bb:77:55:e3:e4:27:03:2a:f0:24:27:f8:
1c:83:e6:d9:ac:8a:c2:3c:cc:07:bb:f0:ca:fd:cb:
23:c5:00:af:d7:51:92:7a:eb:78:1a:19:db:c9:ed:
bd:80:40:58:2c:40:58:80:53:41:5d:cf:48:93:bf:
e2:89:1f:41:1f:e8:45:5b:dd:5d:72:01:6d:fa:76:
3c:56:21:20:ab:13:85:f8:4a:5f:ca:ed:f2:bc:ab:
ed:6d:1b:b0:fa:fa:bb:88:6d:36:c6:37:bd:3a:d6:
c0:e3:b5:d1:a9:1a:25:a7:d7:63:f8:89:af:c6:32:
7e:ce:74:80:b5:c4:fc:54:b5:a6:b2:69:e4:6d:4f:
0b:89:4a:d8:38:36:b0:0a:ff:67:5d:5c:d7:f5:92:
01:cb:5a:fa:b4:64:91:f2:bc:65:c2:e8:92:f1:39:
33:c9:fe:72:8b:9c:61:4d:b6:73:7b:40:60:f0:44:
14:98:3d:ae:d6:9e:c1:a2:aa:b1:8a:7d:92:b4:78:
37:8d:0e:39:ff:13:47:b6:4b:f5:17:b4:54:be:04:
13:40:d3:cb:fd:b5:1c:0e:c8:ca:04:1b:4b:97:97:
51:6a:b7:2a:36:de:88:02:44:d3:7a:92:f9:a1:49:
88:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:14:4D:80:66:FC:A9:6E:33:63:08:83:57:DA:6F:16:2D:73:79:9B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/DhRNgGb8qW4zYwiDV9pvFi1zeZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.84.0/22
185.221.16.0/23
185.224.220.0/22
185.227.206.0/23
185.247.4.0/22
185.249.204.0/22
185.250.182.0/23
194.113.28.0/22
194.146.220.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:9e:6c:4e:dc:d0:76:2d:2c:94:41:6b:32:c8:85:59:e3:cd:
60:eb:f8:78:4d:c6:b9:28:28:bd:d6:35:54:4e:2b:6d:72:36:
ee:95:84:19:ef:e0:c7:bc:c2:7d:f9:7f:ea:d6:bd:66:91:87:
5e:28:56:a5:61:ea:09:6a:18:73:c8:e4:72:fc:fc:08:7e:c1:
c3:69:3b:8b:44:06:0f:80:0f:60:2e:5b:d5:c9:ea:51:12:5c:
09:db:be:78:d4:ee:26:6d:4a:4d:71:43:3f:d2:f0:7d:b5:63:
55:d9:9d:87:6f:c3:dd:b8:a3:c1:55:bf:b4:d3:91:d0:f2:52:
96:06:eb:14:c8:19:d2:17:58:11:f7:ae:a8:ff:4d:2b:05:8f:
76:b2:28:e0:db:88:0e:c7:f3:b5:e0:2f:57:74:e5:28:6c:98:
21:7c:82:cc:f2:57:83:68:69:81:21:93:49:a7:fe:9c:1f:10:
2d:36:42:88:96:91:c9:dd:11:18:7d:b9:74:84:d5:d8:35:98:
e8:6a:30:99:ab:bd:6d:89:18:03:99:d7:0e:f2:d6:5e:94:56:
81:56:86:15:f0:8d:98:86:ac:fa:f2:f0:eb:f0:f8:a5:03:b3:
2d:34:6b:a6:07:40:cb:a4:a8:85:bb:ba:4b:40:17:01:bf:25:
7b:ce:19:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:21 2024 by rpki-client on console-ams.rpki-client.org