Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IKdy-qfoQerUYiQmYv5GYrW8pAI.roa
File: IKdy-qfoQerUYiQmYv5GYrW8pAI.roa (raw, json)
Hash identifier: gyE/DhqJmveOMOp4JVciJGxccbnldHg4LM1fPFpSYfQ=
Subject key identifier: 20:A7:72:FA:A7:E8:41:EA:D4:62:24:26:62:FE:46:62:B5:BC:A4:02
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A93067CA4D0828BE2363981760C35BCF3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IKdy-qfoQerUYiQmYv5GYrW8pAI.roa
Signing time: Thu 14 Sep 2023 09:29:50 +0000
ROA not before: Thu 14 Sep 2023 09:29:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.206.250.0/24 maxlen: 24
45.90.16.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 09:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:06:7c:a4:d0:82:8b:e2:36:39:81:76:0c:35:bc:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 14 09:29:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20a772faa7e841ead462242662fe4662b5bca402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f4:c6:0d:b1:8a:0e:2b:69:7c:20:00:9a:7a:
39:ca:22:a2:f8:46:4c:b3:f6:f9:d3:c8:b2:f0:0a:
0d:25:2e:2e:05:10:02:85:cb:d7:58:b8:d3:fa:9c:
e9:47:10:4e:05:93:3d:b1:23:dd:db:4d:e8:27:b6:
95:8c:3e:b6:ec:5a:6a:86:4c:46:33:51:64:69:26:
1a:6c:6e:8e:45:51:f1:81:bd:fe:b8:e7:d7:57:32:
90:40:22:c3:e3:99:f2:aa:1c:3d:63:40:c0:0b:8f:
6a:d9:9c:ad:a6:f9:e2:3e:62:c7:79:c8:ff:7d:fa:
f4:77:ed:ae:23:1c:d3:26:a1:9f:c4:a4:e0:e2:58:
89:c0:f5:a3:41:0c:63:c9:ae:2e:56:5b:1f:89:b3:
67:e5:52:22:2d:65:0d:cc:4e:b5:29:db:1c:4e:60:
80:47:06:7b:23:32:8d:7c:cc:f2:d9:cb:34:7c:bc:
0e:af:1c:61:ae:26:a4:b7:2b:03:53:98:20:70:a3:
d3:d5:5b:15:99:1e:f7:2c:b8:d5:4c:22:75:a1:0e:
e9:3f:a0:f8:cc:b4:cb:ec:1f:9f:87:e3:16:08:ec:
56:f3:91:9e:f7:42:d0:26:c6:8e:61:67:ae:b9:a7:
17:30:23:97:09:c3:c7:59:cc:ad:40:3e:ab:4a:c8:
86:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A7:72:FA:A7:E8:41:EA:D4:62:24:26:62:FE:46:62:B5:BC:A4:02
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/IKdy-qfoQerUYiQmYv5GYrW8pAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.16.0/24
45.90.19.0/24
45.147.224.0/24
185.36.205.0/24
185.194.177.0/24
185.206.250.0/24
185.209.73.0/24
185.210.233.0/24
185.220.249.0/24
185.222.29.0/24
185.223.80.0/24
185.225.0.0/23
185.225.22.0/24
185.227.145.0/24
185.228.74.0/24
185.246.112.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
54:eb:82:1f:5a:ea:e4:7f:b0:b9:0a:9a:1f:f1:d2:c2:0b:36:
5b:0f:c7:e6:9b:6e:e3:e6:35:db:e5:e4:7e:a4:76:ef:ac:10:
40:14:ad:c5:f3:99:4f:e9:9d:ba:b4:2d:11:9d:e3:6b:00:fc:
43:10:be:e3:8d:4a:ab:fd:69:e9:83:96:45:b0:d1:f7:ec:e1:
e1:1b:94:6e:e5:1a:3a:c9:a1:32:78:c7:90:ed:49:83:c1:03:
7c:a5:61:67:6b:ab:64:cd:61:6c:7f:d2:82:b5:12:45:f2:b9:
e2:ba:3d:69:5d:e2:28:68:20:e6:ad:57:d7:98:23:47:36:03:
c6:cb:8d:7c:20:9a:12:1b:94:38:59:d5:29:49:5a:50:5d:89:
17:99:c3:41:07:e2:d8:80:44:53:a6:48:ac:a4:a8:57:b6:d4:
14:b9:b5:8d:26:b9:9a:33:65:19:49:05:e2:fe:19:f5:66:ff:
54:ea:2a:5e:58:0f:18:a3:57:e5:77:db:71:3f:3c:ad:a1:a0:
0e:fb:87:ca:1e:1e:d7:4c:be:b8:c4:fc:78:d7:7d:0c:51:bf:
8f:69:03:00:a9:d9:53:2c:50:8a:a6:32:9f:54:6d:58:d8:f1:
92:41:4f:fb:79:6a:7e:d2:79:d4:58:ce:78:39:7f:ed:a7:5f:
ea:08:55:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org