Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WqazYrb83l0q83hLlsly4KMq6ms.roa
File: WqazYrb83l0q83hLlsly4KMq6ms.roa (raw, json)
Hash identifier: yC9b7MtEFr+4fG6CdF8HmvsqNNKxODg9pWl/e/3GA9Y=
Subject key identifier: 5A:A6:B3:62:B6:FC:DE:5D:2A:F3:78:4B:96:C9:72:E0:A3:2A:EA:6B
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189C6E18F5CEA9B8F24BD10423803876918
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WqazYrb83l0q83hLlsly4KMq6ms.roa
Signing time: Sat 05 Aug 2023 18:06:58 +0000
ROA not before: Sat 05 Aug 2023 18:06:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.5.65.0/24 maxlen: 24
185.225.22.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.81.0/24 maxlen: 24
185.223.82.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.21.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Aug 2023 13:35:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:e1:8f:5c:ea:9b:8f:24:bd:10:42:38:03:87:69:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 5 18:06:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5aa6b362b6fcde5d2af3784b96c972e0a32aea6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7b:3d:ca:b7:c1:c4:8e:4d:59:0d:7d:cf:41:
33:25:db:0d:3b:b0:75:8b:db:d3:eb:a5:34:72:c0:
43:72:67:be:e1:e8:ac:13:e3:f6:e7:47:bf:c5:f7:
32:81:39:6d:c3:66:88:e1:ed:22:f3:7f:fa:c2:92:
b2:30:46:25:2e:4e:71:50:91:bb:6f:2e:09:76:53:
1e:b2:cc:84:cf:2c:53:2c:51:6d:c2:db:80:d8:48:
1c:9a:3e:b6:a2:3a:35:a1:5e:2f:5c:e3:28:1a:c5:
83:ba:83:87:91:0d:20:63:49:df:d5:c0:13:c2:40:
dd:d7:bc:2b:77:a2:9f:2f:91:f1:68:ba:fd:d4:c2:
fa:49:34:95:95:e9:e1:1a:93:04:2d:09:58:63:84:
5b:08:7d:16:a3:ab:7e:4e:62:0a:e3:1f:21:3b:01:
b6:54:51:cf:d8:c8:c5:1a:d5:04:f1:7a:78:32:2b:
15:8f:70:5d:63:40:b7:8a:93:a8:ea:20:f5:4f:27:
22:02:ab:b5:bd:30:fe:aa:38:2b:2b:41:03:b1:e3:
e2:73:75:d7:a9:72:5e:08:61:0f:96:ff:89:f9:d0:
be:ea:b6:86:c9:e1:ff:2f:10:92:12:a5:b2:14:63:
5c:ef:50:93:e1:82:f9:2e:10:19:55:6c:d3:c8:24:
f0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A6:B3:62:B6:FC:DE:5D:2A:F3:78:4B:96:C9:72:E0:A3:2A:EA:6B
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WqazYrb83l0q83hLlsly4KMq6ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.101.0/24
185.220.250.0/23
185.221.21.0/24
185.223.81.0-185.223.82.255
185.225.0.0/23
185.225.22.0/24
185.226.106.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:32:27:da:22:35:88:99:68:c2:f8:5c:5d:fd:08:c8:a7:c7:
b9:d8:16:16:6f:12:10:a2:6f:cd:d6:b4:e1:da:9b:d0:9e:14:
98:3d:44:5b:fa:64:fa:9d:97:7a:82:21:36:3d:f1:8b:e8:17:
3c:50:f3:db:51:b7:94:0c:51:f4:63:c8:4c:b4:2c:d5:73:73:
04:51:06:09:5d:cc:fa:39:50:70:bc:08:98:45:fe:2b:bf:98:
0e:c2:b8:af:80:8c:af:4b:f7:c8:97:e5:10:cd:a1:d4:ed:d1:
24:95:9e:91:4d:d1:13:42:78:d2:3e:ea:4b:f8:f0:fe:7d:13:
76:17:a2:af:27:b2:ea:e8:36:1f:3e:fe:6a:69:7b:35:55:8d:
12:9e:ea:d1:9a:9d:0c:9f:19:63:2a:f0:68:6c:1b:54:fe:bb:
6d:cf:11:72:8c:4e:5b:29:fe:f7:63:a6:64:53:c4:bc:15:db:
b3:f1:92:9e:c1:b6:a5:67:de:aa:8a:35:fc:9c:8b:9d:08:73:
3b:2f:1d:42:58:01:60:3b:e9:44:ab:fe:be:f1:ba:0f:5e:1f:
b7:29:5c:54:e9:c7:37:68:f4:d6:cb:ad:42:2c:14:37:92:34:
4e:8a:9a:c9:79:fd:1f:63:cb:f3:ac:73:a3:0e:4d:9d:ea:e6:
e7:b9:dd:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org