Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RlP1Ih5X1AIkr4d9QkjxUAEEy6U.roa
File: RlP1Ih5X1AIkr4d9QkjxUAEEy6U.roa (raw, json)
Hash identifier: FvgVNFzjjXCqjl3W7cAKmmHHtSaD493bBqT5x/H7PL0=
Subject key identifier: 46:53:F5:22:1E:57:D4:02:24:AF:87:7D:42:48:F1:50:01:04:CB:A5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A3CA6345760B86F448396C39747477D8F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RlP1Ih5X1AIkr4d9QkjxUAEEy6U.roa
Signing time: Mon 28 Aug 2023 14:57:19 +0000
ROA not before: Mon 28 Aug 2023 14:57:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.0.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 10:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:a6:34:57:60:b8:6f:44:83:96:c3:97:47:47:7d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 28 14:57:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4653f5221e57d40224af877d4248f1500104cba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:41:4e:1e:73:cb:4e:d8:02:fa:69:81:ff:e5:
39:4b:18:6e:05:2f:23:be:3c:6b:d0:c3:77:e6:2f:
5d:61:77:49:ed:64:12:3e:0a:9c:bb:c7:51:f8:13:
67:8b:24:04:1d:92:22:1b:f6:6b:6f:4c:cd:c9:9a:
7b:28:37:c6:cb:d3:51:fb:40:b8:4d:6b:4c:92:2c:
68:1f:5d:36:74:d9:d8:00:15:23:65:de:2f:e9:08:
c6:b2:d3:a3:2e:65:a3:46:12:67:3d:15:06:62:b6:
e9:2e:5d:8c:1c:0d:34:3a:f2:3f:d8:79:91:2c:e8:
d1:2e:5a:15:f9:2f:21:23:02:fb:21:7a:19:01:c2:
41:a9:4a:eb:4d:6f:c3:7c:f7:0e:93:cd:35:77:ac:
26:28:37:d7:c6:7c:ea:ba:eb:db:41:a9:b1:7c:4b:
e4:3c:11:29:41:38:47:59:70:09:96:ce:2b:d4:59:
db:4b:50:6c:78:36:df:cd:20:8d:35:97:a6:40:2b:
f5:11:52:6f:74:db:16:11:a8:cd:53:3a:d5:3e:a9:
52:66:a8:62:5d:39:7e:cb:1a:64:a0:72:e2:2a:af:
9f:f1:49:64:6e:e2:ad:f0:a0:cc:ea:d2:c0:e2:d6:
97:aa:4e:2e:ad:1c:0a:c9:69:f2:c3:b8:21:10:79:
1c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:53:F5:22:1E:57:D4:02:24:AF:87:7D:42:48:F1:50:01:04:CB:A5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/RlP1Ih5X1AIkr4d9QkjxUAEEy6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.218.23.0/24
185.218.101.0/24
185.220.249.0-185.220.251.255
185.221.20.0/24
185.221.22.0/23
185.222.29.0-185.222.31.255
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
af:36:10:76:db:46:57:fe:e4:b3:93:24:b8:bd:8f:f0:21:e8:
38:e1:57:41:04:29:5d:65:cf:25:11:30:ef:77:8f:29:24:a7:
df:2f:99:b3:9c:8e:c4:ca:92:95:ff:5a:43:fa:22:18:b9:e1:
c6:bc:df:b5:86:1e:32:f0:cd:b7:75:2b:7f:c4:61:db:ba:e4:
35:ac:84:52:ba:19:9b:72:c9:b3:83:fa:12:48:94:06:e9:0e:
33:30:c6:f9:0f:4a:bb:87:8e:69:e0:07:f8:65:70:05:3c:ed:
69:a7:c2:3f:b4:fb:27:5f:a5:08:69:4b:a2:6a:33:30:b5:e4:
20:35:2e:b3:ee:47:d6:06:08:30:24:b7:8b:01:7d:a4:ab:2d:
fb:1f:e5:a1:c5:3a:2a:ff:26:5b:b1:f6:57:0f:19:9e:d4:72:
f6:70:a6:be:02:1c:27:03:16:da:b1:50:63:72:e5:be:15:4c:
c6:8a:7e:9f:fe:86:fa:c6:3e:b1:e4:e6:09:c9:28:5d:f1:6d:
52:00:3a:17:7c:e9:1b:34:2c:10:a0:9c:8f:4b:8e:76:d0:bb:
35:eb:33:5a:78:88:77:0f:1b:b1:93:28:18:4d:1a:95:ea:47:
f4:e8:99:66:8c:70:98:30:22:cf:5d:c1:0e:72:cc:6a:83:f9:
12:6d:24:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org