Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FVKMNgFac0OBw8Pof7DezzCuPz8.roa
File: FVKMNgFac0OBw8Pof7DezzCuPz8.roa (raw, json)
Hash identifier: L6bAU8ZNLqkm0KmjoQFtiPDXLUOf0xm2hfa1NmL/Hqo=
Subject key identifier: 15:52:8C:36:01:5A:73:43:81:C3:C3:E8:7F:B0:DE:CF:30:AE:3F:3F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189CB0FD5174EA2D8B628A3A36AF82CE95D
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FVKMNgFac0OBw8Pof7DezzCuPz8.roa
Signing time: Sun 06 Aug 2023 13:35:59 +0000
ROA not before: Sun 06 Aug 2023 13:35:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.5.65.0/24 maxlen: 24
185.225.22.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.81.0/24 maxlen: 24
185.223.82.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.21.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 15:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cb:0f:d5:17:4e:a2:d8:b6:28:a3:a3:6a:f8:2c:e9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 6 13:35:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15528c36015a734381c3c3e87fb0decf30ae3f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d1:fe:6c:ec:d5:1d:8b:10:b0:25:b6:f2:e2:
b8:0c:3e:9c:ed:ff:23:a7:62:c9:0c:fd:fc:fa:2a:
1c:0c:a7:e7:96:66:a5:02:dc:e5:bb:10:f7:b7:a6:
bf:1a:ad:47:8e:5e:c8:9d:fb:17:7c:43:2b:64:37:
16:82:78:f6:e4:b2:ae:63:4b:5a:9a:21:0b:4b:7a:
a8:35:b4:b7:d0:fe:29:78:26:c3:5f:e7:5e:a6:f8:
85:82:7f:33:aa:c2:71:e3:72:ae:54:a2:37:93:b0:
b5:d9:f5:cd:74:5b:68:82:ee:af:19:de:72:df:49:
c5:5f:05:00:94:7a:13:e3:fe:a5:c0:23:ca:77:9e:
3f:8e:0c:ae:34:a9:16:4c:8a:8b:4b:c2:7d:3e:22:
c2:9f:f5:70:bd:f2:09:7e:c2:d7:ec:a8:48:63:36:
55:fc:ad:f6:bc:bf:5e:6f:e7:1c:f0:04:c1:f2:e0:
ea:87:c9:03:5a:58:ea:6e:e8:b6:14:cf:a5:a5:76:
49:e6:b4:c2:35:35:a0:f1:ab:6e:c5:85:ff:e5:4a:
18:c6:ec:23:9b:e8:9a:49:d5:32:a4:2a:f4:a7:d1:
59:29:12:d2:c9:59:e9:c5:73:b6:49:b0:39:e6:87:
f0:62:47:be:75:76:93:34:ca:14:d0:3a:1a:ac:7f:
ce:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:52:8C:36:01:5A:73:43:81:C3:C3:E8:7F:B0:DE:CF:30:AE:3F:3F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/FVKMNgFac0OBw8Pof7DezzCuPz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.101.0/24
185.220.250.0/23
185.221.21.0/24
185.223.81.0-185.223.82.255
185.225.0.0/23
185.225.22.0/24
185.226.106.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.230.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c8:ee:58:cd:63:85:bb:c2:00:ba:1c:35:73:13:84:65:7c:
4c:80:27:94:13:10:5b:bd:5b:21:9b:63:d4:9b:02:f1:08:75:
f6:25:1b:ce:95:08:8f:9a:60:9a:66:99:5f:5b:d4:e0:89:60:
e5:91:24:4d:13:1a:93:8d:79:4e:de:eb:34:c9:b9:31:b4:2a:
29:14:e8:eb:7f:6b:de:bf:bd:c3:c1:a8:2d:26:34:84:d6:0e:
ba:7e:8e:a0:f1:e5:f0:44:96:ec:14:02:69:06:e0:29:a8:cd:
e6:60:9e:9d:19:92:f1:84:55:2c:b0:b1:a6:a2:2e:77:01:ff:
3d:b1:8d:5e:ea:73:78:5e:4f:9e:15:bc:38:78:19:e0:fe:0c:
ff:73:2b:af:e5:bc:3a:62:79:c7:76:cc:73:4e:ef:1b:6a:d1:
4a:3c:ef:50:16:dc:f6:f1:ef:44:7d:34:db:6a:2e:38:c7:b2:
3b:aa:5c:3a:46:8d:3a:cc:46:9f:bf:35:f7:de:71:3e:4f:25:
11:39:b1:24:eb:a2:43:c4:7e:99:1f:8c:76:6a:bf:bb:73:60:
19:7c:8e:30:aa:a9:0a:77:5d:a9:5a:f1:98:7a:6c:61:66:a2:
1d:c6:84:b0:45:0c:f5:c7:34:94:81:51:a4:63:71:40:52:87:
03:7a:8a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org