Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/__G9WbWc9kTj5pqtVwX5NZPp05U.roa
File: __G9WbWc9kTj5pqtVwX5NZPp05U.roa (raw, json)
Hash identifier: SFGA/Oy2XVZdZcLxL2xPQE0xXlb+8POfAiu0wfDjTnw=
Subject key identifier: FF:F1:BD:59:B5:9C:F6:44:E3:E6:9A:AD:57:05:F9:35:93:E9:D3:95
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A40CA2725E4FDEDD47CE1758E683ED109
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/__G9WbWc9kTj5pqtVwX5NZPp05U.roa
Signing time: Tue 29 Aug 2023 10:15:04 +0000
ROA not before: Tue 29 Aug 2023 10:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.0.0/24 maxlen: 24
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 21:44:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:ca:27:25:e4:fd:ed:d4:7c:e1:75:8e:68:3e:d1:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 29 10:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fff1bd59b59cf644e3e69aad5705f93593e9d395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:34:26:e3:d0:b4:f6:52:df:d8:68:4d:ba:1d:
6f:0a:d3:f7:d0:6a:ff:f4:e1:d8:88:33:5f:a3:ea:
95:10:73:0b:0e:3f:a2:ae:b4:63:db:28:38:4b:fd:
64:51:eb:a1:90:4b:67:26:d9:60:5d:f1:78:be:d7:
27:b9:f1:db:e3:d7:b5:4e:ca:c2:4b:f5:6e:eb:6d:
52:a7:93:7f:26:16:79:de:60:82:ce:90:4d:26:80:
69:68:12:be:04:a1:cd:26:1f:1f:ac:cb:5e:d5:dd:
b6:e0:8a:87:22:98:8b:17:19:26:3b:22:29:df:99:
a1:b9:49:4c:dc:d1:1f:50:fd:f5:f7:58:31:8c:76:
ec:f1:70:b4:60:fd:09:0b:2f:4a:24:3e:c5:a4:70:
5d:b7:25:aa:ca:02:43:61:b4:0f:1f:70:5c:2b:ac:
81:22:b8:49:18:38:57:26:17:fb:85:c3:fb:98:cd:
84:70:76:6e:3f:b4:4e:c7:f6:52:22:3e:0a:10:9d:
43:50:62:b3:9c:e2:63:55:75:39:83:60:3f:f0:95:
40:22:26:c9:65:43:18:83:ef:ca:38:a5:2c:37:8d:
a6:a1:47:2f:3d:18:7d:17:db:6c:95:8f:bc:61:58:
d8:ae:53:dc:3e:dd:21:2e:71:f7:5e:4f:02:4c:1a:
ee:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:F1:BD:59:B5:9C:F6:44:E3:E6:9A:AD:57:05:F9:35:93:E9:D3:95
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/__G9WbWc9kTj5pqtVwX5NZPp05U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.218.101.0/24
185.220.249.0-185.220.251.255
185.221.20.0/24
185.221.22.0/23
185.222.29.0-185.222.31.255
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.145.0/24
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
89:01:34:05:ee:d8:f5:76:e9:d1:12:c7:64:53:1b:ab:19:f8:
86:13:12:12:bc:b5:e5:c5:ff:dd:d7:6f:33:35:0d:b7:24:23:
7c:e8:a9:c9:34:e6:ed:e0:f3:94:36:4d:8a:6f:6a:fe:95:49:
9f:c8:75:7b:03:1d:d1:f1:42:48:a1:b9:39:d9:f1:c3:56:e5:
da:6d:59:eb:9f:06:94:ae:2b:e5:d7:1a:40:4b:e5:73:48:4a:
20:c9:23:9b:e2:76:8d:7c:98:6a:95:f2:fb:1e:21:70:b6:ae:
8e:ea:e3:fa:3d:dc:bc:bf:d8:2e:6b:9a:01:f8:62:5c:17:41:
73:a8:27:5c:8e:84:fd:af:e1:63:a7:db:e7:b1:a6:f5:e3:51:
6f:1a:d3:3a:6f:50:bf:50:4e:be:2a:be:ac:9d:4a:af:03:39:
8e:4e:39:86:b0:54:93:8f:43:a4:f0:47:f4:82:18:15:b6:99:
df:01:82:93:d5:9d:2a:c5:c8:0b:0d:2a:69:ac:68:5c:40:18:
30:7a:05:07:65:d9:59:37:4c:a8:93:20:f8:66:33:44:f0:8c:
18:48:5b:c8:fb:48:c6:e9:fe:30:5a:ac:d4:51:e4:e9:43:92:
e6:49:10:d2:ba:bd:f7:53:3e:a1:cd:11:50:60:97:b0:7d:84:
1c:40:7a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org