Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KrW2sNfvtY3FpZgEXy6y8rYdTw8.roa
File: KrW2sNfvtY3FpZgEXy6y8rYdTw8.roa (raw, json)
Hash identifier: j5eRItkoRfnz0SJxYv6Xc7V0reZdSQ1/aKteFoPPIag=
Subject key identifier: 2A:B5:B6:B0:D7:EF:B5:8D:C5:A5:98:04:5F:2E:B2:F2:B6:1D:4F:0F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018775480C53C23D83D805CC42687B6248C5
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KrW2sNfvtY3FpZgEXy6y8rYdTw8.roa
Signing time: Wed 12 Apr 2023 11:44:28 +0000
ROA not before: Wed 12 Apr 2023 11:44:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.206.250.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.199.158.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
176.125.248.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
45.131.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 16:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:48:0c:53:c2:3d:83:d8:05:cc:42:68:7b:62:48:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 12 11:44:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ab5b6b0d7efb58dc5a598045f2eb2f2b61d4f0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3e:ec:f4:e0:aa:35:d3:e0:ff:46:a5:4d:7c:
43:ed:58:4c:73:e5:ed:bb:4e:2d:ec:a1:cd:ec:58:
55:83:cf:7a:22:b3:c3:f4:7b:da:44:b7:6d:a3:cd:
7a:a8:29:e9:f8:74:85:d4:53:a3:9b:fa:f9:fc:c3:
0e:c5:e9:0a:6d:17:54:cd:8c:4b:e3:67:70:7e:fb:
a0:9c:4a:d2:42:39:61:13:09:ce:64:0d:3f:5c:1e:
fc:0e:23:9b:e2:44:e3:6d:e5:09:c7:f0:d2:86:7c:
e1:53:7d:05:9b:96:7b:d8:fe:25:60:42:3d:f5:7b:
9f:41:11:75:3f:1e:b4:ac:15:7a:40:d0:68:42:95:
77:ac:5c:59:4f:cb:1b:1d:16:85:d2:a1:d0:ca:77:
e0:13:74:1c:84:f1:88:de:59:b8:12:ef:23:99:43:
46:b8:f0:5f:12:40:ff:18:48:7e:d5:7e:45:18:21:
98:ae:c1:a3:df:bd:c0:a3:8d:5c:22:4f:56:d3:55:
9c:a9:bf:a8:dc:7d:03:97:8d:a4:00:46:90:c4:26:
0a:5e:48:7f:23:07:24:9e:bc:4b:11:4b:42:3d:e7:
73:d5:d0:a2:11:c9:14:82:22:c8:57:d6:32:58:d6:
cf:b2:4b:b9:ee:98:67:6b:59:79:f8:25:bc:b0:25:
2a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B5:B6:B0:D7:EF:B5:8D:C5:A5:98:04:5F:2E:B2:F2:B6:1D:4F:0F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KrW2sNfvtY3FpZgEXy6y8rYdTw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.134.0/24
45.147.224.0/24
176.125.248.0/24
185.199.158.0/24
185.206.250.0/24
185.218.20.0/24
185.225.0.0/23
193.58.144.0/24
193.58.146.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:73:31:13:87:43:d0:ac:05:0a:05:6d:fe:a4:e7:f9:f4:56:
dc:1d:89:79:a0:cd:c8:4c:7b:85:40:d8:eb:77:e8:e3:e2:70:
f5:46:a6:e0:57:5d:83:d7:cc:46:b8:65:40:12:57:de:0f:8d:
8b:28:80:a0:19:48:ad:8d:78:b9:3f:a0:38:51:06:00:c4:45:
5a:ac:1d:6c:a7:27:85:01:83:04:79:49:9a:f3:62:5a:2a:55:
97:e1:5d:80:f6:7f:0b:f5:31:57:0d:b8:6d:34:5f:23:16:e8:
5d:99:cf:39:14:37:b4:94:1d:c1:91:9b:75:bf:87:e0:6a:8f:
cf:a3:68:ca:d7:a0:19:2e:de:67:3b:ab:68:17:d2:e9:11:23:
b0:41:33:7c:71:cb:28:9d:9e:44:04:69:27:7a:24:d8:24:44:
33:b0:b2:24:23:98:b1:ee:23:17:1e:1d:0a:8a:97:f4:93:b4:
c3:f4:d5:d9:c8:e1:da:b4:88:56:fd:11:17:8f:22:28:79:68:
25:b8:1d:1e:7b:34:bd:7a:0b:81:bd:42:38:ce:2c:2d:a9:60:
51:22:d5:bf:60:f1:2b:a9:5e:b4:c3:8b:79:c6:b3:a8:0e:8c:
5f:d7:19:de:ef:1c:ab:22:ce:c3:7f:f1:bf:39:e7:fc:15:f6:
19:e7:14:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org