Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VZ69avdBbm0u-fk80pizYVNKQfQ.roa
File: VZ69avdBbm0u-fk80pizYVNKQfQ.roa (raw, json)
Hash identifier: aZX5Lqdv8Fmfo0KN2oFZatG+T965xZlmXFH3gAV/Mdg=
Subject key identifier: 55:9E:BD:6A:F7:41:6E:6D:2E:F9:F9:3C:D2:98:B3:61:53:4A:41:F4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A723A3F2988A878AA3AAFA2DF3EE1FE5A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VZ69avdBbm0u-fk80pizYVNKQfQ.roa
Signing time: Fri 08 Sep 2023 00:38:54 +0000
ROA not before: Fri 08 Sep 2023 00:38:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:72:3a:3f:29:88:a8:78:aa:3a:af:a2:df:3e:e1:fe:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 8 00:38:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=559ebd6af7416e6d2ef9f93cd298b361534a41f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:bb:49:a0:dd:d6:3c:5e:6b:9a:1f:b2:ce:dd:
0a:3d:4f:e0:28:27:58:59:f5:2b:72:19:8c:81:45:
29:85:be:3b:36:66:62:a5:47:e6:06:1f:32:68:fd:
47:a6:11:e5:df:0d:0a:ed:e7:29:9f:82:cf:bf:89:
1f:c4:52:bb:70:db:24:06:30:6a:a1:dd:c3:8c:2b:
d3:50:5f:a6:a7:47:fd:b3:0e:88:ba:2e:d8:34:c9:
7f:19:a6:a5:a7:7d:73:f6:a7:00:e8:fd:1e:8a:ac:
4c:84:d9:c2:be:a4:ea:9c:02:95:e7:44:d5:71:60:
74:6f:69:1e:cf:b3:30:ca:32:41:e5:6c:ad:8a:cc:
f5:c8:14:34:89:b2:e4:6e:7b:33:a0:90:c9:f7:80:
88:a6:59:69:73:26:5a:da:60:16:44:22:b9:59:02:
fe:27:b8:9a:1d:ff:fb:41:5e:7c:d0:22:21:c7:dd:
d2:fa:67:c0:f7:79:fb:31:dd:1f:77:70:7b:5c:d5:
4f:03:da:f9:e8:01:23:1f:2b:b3:97:f7:ff:a5:b4:
49:2c:36:9f:7e:9b:46:52:ec:42:fd:cc:d3:3d:c6:
85:aa:44:bd:ed:7f:9f:9b:87:af:6e:b7:4f:3a:cb:
27:5e:28:f9:f6:42:a6:e9:73:8e:28:bf:c2:c3:c9:
d0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9E:BD:6A:F7:41:6E:6D:2E:F9:F9:3C:D2:98:B3:61:53:4A:41:F4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/VZ69avdBbm0u-fk80pizYVNKQfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.19.0/24
45.147.224.0/24
185.36.205.0/24
185.194.177.0/24
185.210.233.0/24
185.220.249.0/24
185.222.29.0/24
185.223.80.0/24
185.225.0.0/23
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.74.0/24
185.246.112.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:3f:c6:b7:04:06:a7:f4:c7:44:cc:92:30:a8:fa:75:63:2a:
91:a2:79:d5:e6:48:54:15:da:26:2a:9f:0c:cb:7d:3c:5f:56:
e3:99:d7:b5:58:d2:f7:f3:8a:9c:23:63:6c:34:16:59:37:2e:
6d:38:48:82:1c:4d:ee:dc:71:33:e5:d9:b6:e9:15:96:82:59:
ff:b4:3f:30:17:3e:3f:7a:f1:1f:26:0a:d0:9f:35:ea:1d:47:
39:f1:e2:c0:44:e1:96:88:74:dc:7c:f9:8a:ed:42:30:e9:25:
3b:17:f7:cb:3f:61:3a:fa:a4:19:d1:cf:e1:2d:f8:18:67:1d:
7b:f6:96:a7:bc:3b:9c:ef:ea:76:e6:e0:26:43:30:b2:08:8a:
9d:e5:66:33:90:a9:36:ed:51:bc:e7:2e:4d:3f:40:85:d2:75:
fe:71:76:70:68:0e:f8:d2:24:5a:81:06:aa:13:83:b6:43:66:
d6:af:96:7c:7f:1e:2a:bd:b7:69:26:90:7a:85:f7:88:c8:96:
db:6c:26:08:09:53:ca:5d:90:cc:15:2b:9e:d3:72:c2:75:57:
4c:e9:89:ca:9d:83:d6:2b:6c:fb:92:c4:50:b3:f5:ea:df:6a:
89:22:c3:f8:2d:51:39:18:5b:5e:5d:d1:5a:f0:f8:f6:60:03:
68:7b:f6:98
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org