Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FARN6Onc0ZIgswYJtHOIBiC9VgQ.roa
File: FARN6Onc0ZIgswYJtHOIBiC9VgQ.roa (raw, json)
Hash identifier: L/XWJQgePrbStcs7++tUQ++DXqFImZ9PZTjeJllquTM=
Subject key identifier: 14:04:4D:E8:E9:DC:D1:92:20:B3:06:09:B4:73:88:06:20:BD:56:04
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01862637FFECE3EC006D2722E0DDDDD2F3BF
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FARN6Onc0ZIgswYJtHOIBiC9VgQ.roa
Signing time: Mon 06 Feb 2023 10:14:09 +0000
ROA not before: Mon 06 Feb 2023 10:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 45.90.16.0/24 maxlen: 24
185.218.22.0/24 maxlen: 24
185.126.83.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
45.131.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Mar 2023 19:19:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:37:ff:ec:e3:ec:00:6d:27:22:e0:dd:dd:d2:f3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 6 10:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14044de8e9dcd19220b30609b473880620bd5604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:3b:ee:c9:a5:5f:b7:22:a3:12:be:51:f7:
7f:39:84:e4:48:5a:e5:7d:ca:4e:64:e7:85:84:78:
26:df:cf:30:26:ab:8a:07:b1:ff:a3:c3:7b:fd:d6:
f1:7e:02:63:b1:ad:39:4b:42:2a:f6:d9:ae:cf:52:
31:e6:bc:2f:2e:4f:4f:6c:2b:f9:e5:87:b2:7c:f1:
d9:68:4c:4e:76:30:fd:71:6f:b0:36:94:a2:cb:57:
ec:6e:39:57:75:2d:c7:fc:33:03:6c:a8:58:b1:fc:
2f:08:34:c7:39:78:21:5d:41:2f:d4:e9:6d:a3:10:
28:ec:b3:b8:1d:1b:eb:0c:a7:70:90:3b:e5:8c:22:
c3:bf:f3:ed:e9:51:3f:7c:f6:5c:a8:f9:0e:ae:41:
7f:0f:1d:e5:35:51:63:fd:74:10:18:c5:ff:7f:ff:
ba:26:86:f2:e6:7f:16:ec:13:18:d3:16:14:1a:0a:
c0:0f:77:77:83:48:f9:8a:da:a1:0c:f8:7b:02:52:
bf:53:70:96:94:76:2b:a1:72:93:6b:ef:28:0d:27:
d7:88:ff:4d:9a:36:9b:e8:28:e8:a8:b9:1b:28:0a:
77:12:5e:15:e5:73:2b:3d:e8:53:fc:a6:67:94:6b:
f4:27:f2:a1:0c:ad:db:f9:49:c1:2a:ea:7b:4b:25:
a9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:04:4D:E8:E9:DC:D1:92:20:B3:06:09:B4:73:88:06:20:BD:56:04
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FARN6Onc0ZIgswYJtHOIBiC9VgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.16.0/24
45.131.134.0/24
185.126.83.0/24
185.218.22.0/24
185.228.74.0/24
193.58.144.0/24
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
53:02:d9:b7:63:c3:43:61:e0:86:1c:24:19:c4:98:8d:95:7b:
99:be:88:40:f1:7c:b3:59:b1:a9:b0:c7:9c:8a:86:3d:11:47:
45:9c:27:1d:86:7f:ee:b7:68:5e:6e:87:f4:3c:2a:4a:45:1e:
e6:85:4b:86:ee:ab:a8:02:ad:0f:1b:b2:eb:47:72:3c:9e:57:
00:01:22:f2:d6:72:c8:75:4d:24:80:82:ff:e8:d8:ff:46:aa:
6b:24:a2:7c:2e:86:28:f5:3e:75:3a:a7:4a:4c:df:56:e0:bc:
3f:4f:14:6b:4a:61:a9:d9:64:f7:18:ad:d6:ac:b3:66:ce:7f:
b4:7e:58:e8:01:47:61:20:7d:80:c6:7f:dc:a8:07:1b:7b:f2:
c3:f6:4a:2e:6e:1e:51:50:00:7a:43:5d:ba:3c:78:77:80:bf:
41:1b:93:13:fe:93:16:76:89:c0:04:ba:e3:f3:83:cc:e8:15:
d0:37:65:7c:3f:b2:c1:f1:47:cc:56:70:78:66:70:af:5c:ff:
10:bd:79:20:8e:45:68:62:1c:ec:5e:f3:ba:ab:58:ca:c2:2b:
ea:91:2e:8a:d0:2e:12:97:86:86:25:98:14:b0:87:75:cb:28:
95:93:8f:39:78:b0:58:60:8c:de:9e:a5:cd:95:43:3d:0b:17:
76:71:04:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org