Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QOoYo3-y2e8-5cALBxN5m-WtAf8.roa
File: QOoYo3-y2e8-5cALBxN5m-WtAf8.roa (raw, json)
Hash identifier: b/jZpO8z431fxAys/kDzCbUXoBGujieNoEfi4LMaQvU=
Subject key identifier: 40:EA:18:A3:7F:B2:D9:EF:3E:E5:C0:0B:07:13:79:9B:E5:AD:01:FF
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187230A9F8F89C4CFA543BB731A2607C7EA
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QOoYo3-y2e8-5cALBxN5m-WtAf8.roa
Signing time: Mon 27 Mar 2023 12:28:31 +0000
ROA not before: Mon 27 Mar 2023 12:28:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.225.20.0/24 maxlen: 24
185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.214.108.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 12:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:0a:9f:8f:89:c4:cf:a5:43:bb:73:1a:26:07:c7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 27 12:28:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40ea18a37fb2d9ef3ee5c00b0713799be5ad01ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:7a:d6:c5:4d:16:43:3e:8b:b5:c2:47:39:
bc:c0:c6:56:6a:27:1a:d7:6b:f5:fd:95:76:5f:20:
f9:f1:28:a8:34:58:02:d1:e6:b7:ec:89:90:4d:59:
cb:ce:fc:12:f8:1a:59:be:0f:04:dc:bd:76:3f:3f:
54:96:d9:79:1e:50:95:9f:46:fb:b2:f4:20:18:83:
16:9a:3d:3b:39:86:9b:48:71:5d:99:26:bb:34:e0:
9f:77:47:94:5f:69:e7:42:65:fb:21:b9:09:6f:cf:
6a:af:36:96:5d:cc:ec:28:f7:fc:76:00:77:69:64:
a6:85:10:83:15:9a:25:1d:b3:4c:6f:0f:19:47:04:
0e:67:b6:05:bd:f0:8e:c3:a4:ea:77:7f:b9:06:ea:
a1:d0:81:28:53:1f:5a:0f:c5:e1:a1:43:37:a5:43:
cf:fc:5d:f2:e3:92:ce:1a:3a:f6:36:7a:c0:44:c1:
3d:06:09:bd:db:76:f0:45:b2:ea:24:9b:2f:03:0d:
c2:fc:2f:c4:40:c5:1a:26:91:fc:13:76:84:51:5a:
dd:38:7c:ea:8e:c3:0d:20:d1:06:fa:03:68:97:db:
df:54:3d:e3:d0:10:87:fb:16:9b:84:92:22:e5:38:
51:68:0f:be:69:60:bd:88:a9:f8:0f:05:01:a4:14:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EA:18:A3:7F:B2:D9:EF:3E:E5:C0:0B:07:13:79:9B:E5:AD:01:FF
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QOoYo3-y2e8-5cALBxN5m-WtAf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.204.0/24
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.214.108.0/24
185.223.76.0/24
185.225.2.0/24
185.225.20.0/24
185.226.105.0/24
185.226.107.0/24
185.228.74.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.229.0/24
185.251.231.0/24
185.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:d5:09:6d:d2:70:9b:19:90:2a:f2:00:5c:9f:fa:67:38:30:
ba:07:1d:6a:f1:5c:df:10:50:31:0a:3d:4f:f4:58:a5:fb:58:
80:c8:be:dc:21:26:83:c2:08:09:3c:8f:16:e7:96:d2:b0:90:
6b:8c:f5:83:24:ec:19:97:07:b6:1b:1d:f0:2b:7c:a9:15:3a:
de:ef:f6:81:cd:c4:a5:92:d4:8a:0d:1b:2b:74:31:c2:ca:be:
2d:33:ed:dc:46:f5:db:b1:55:e7:b5:3b:bc:cc:7a:42:29:73:
55:17:ff:49:12:7d:a4:92:ed:a7:46:eb:33:b9:76:e9:67:63:
8f:c2:c7:a5:58:55:fc:4e:5d:db:04:12:06:5b:d5:d2:ea:47:
3b:f6:9a:b6:1e:35:0c:2b:dd:da:ba:53:97:a4:b9:f2:59:b7:
dd:43:6f:71:90:6b:c9:a9:b8:06:60:f0:6b:41:e6:54:90:c3:
d6:da:0d:67:e6:b2:ba:7f:1c:5a:dd:b8:b7:c2:7a:1b:9b:0e:
df:08:35:58:22:ac:af:3f:4b:f4:5d:e9:5f:9d:f7:51:2c:b2:
6b:79:a9:cd:8c:b0:aa:af:da:60:ab:16:94:a0:f9:9a:b9:db:
81:0d:9f:8a:46:27:90:32:2c:38:07:df:7b:72:87:22:d4:18:
a1:8c:83:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org