Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cYoMC6AQLRZ_1TGXEhk5mvrDzyc.roa
File: cYoMC6AQLRZ_1TGXEhk5mvrDzyc.roa (raw, json)
Hash identifier: WDJ9UJtM4V296bwqBvqjidtxkwVzSVLDRnJQMrPJoBw=
Subject key identifier: 71:8A:0C:0B:A0:10:2D:16:7F:D5:31:97:12:19:39:9A:FA:C3:CF:27
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189BAE68AC2091FB10BD3F96B8C6DE546A4
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cYoMC6AQLRZ_1TGXEhk5mvrDzyc.roa
Signing time: Thu 03 Aug 2023 10:16:58 +0000
ROA not before: Thu 03 Aug 2023 10:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.5.65.0/24 maxlen: 24
185.218.101.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.226.106.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 10:39:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:e6:8a:c2:09:1f:b1:0b:d3:f9:6b:8c:6d:e5:46:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 3 10:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=718a0c0ba0102d167fd531971219399afac3cf27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f6:a2:b7:c3:18:33:d2:40:27:ed:61:f6:02:
52:fb:4e:be:c1:de:91:ae:68:5d:6d:4e:14:cf:1a:
7c:bb:da:a7:96:e7:3f:ad:52:b9:ff:85:ee:df:23:
ee:81:1d:9f:ad:fc:4a:36:b9:42:71:7b:10:71:98:
f4:2d:4d:49:e6:c2:a9:02:23:e9:d4:2d:06:4b:fd:
97:e3:10:4b:ed:65:39:61:0c:cf:5a:f6:90:53:b4:
07:71:2e:0b:ec:e9:92:25:76:8d:1a:da:e3:a9:00:
d6:f9:53:52:22:5c:a6:ab:40:05:33:88:24:e2:9c:
9b:4f:31:49:8b:6e:8b:ad:a5:32:e2:1b:ad:b1:9a:
27:ea:2e:9f:2b:e2:ac:96:f6:43:d4:64:c6:2c:7c:
01:f7:b4:e3:07:9a:3c:fc:e4:25:50:09:09:a7:6c:
bc:f2:65:df:56:72:3c:75:f3:6b:df:29:a8:9b:76:
7f:3d:a8:a1:f5:0a:1e:c9:e2:1c:4a:4c:88:db:dc:
68:9f:58:61:12:66:c5:c0:4a:ea:72:ec:6c:af:7d:
88:c3:15:a4:f0:c0:ba:68:b9:4c:26:1a:d4:af:22:
47:d0:77:99:4f:f0:4f:0d:d8:0f:46:07:d5:5c:3d:
ae:40:b8:8e:8f:f7:c8:36:dd:e8:da:b3:38:b2:47:
6f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8A:0C:0B:A0:10:2D:16:7F:D5:31:97:12:19:39:9A:FA:C3:CF:27
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cYoMC6AQLRZ_1TGXEhk5mvrDzyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.101.0/24
185.225.0.0/23
185.226.106.0/24
185.230.52.0/24
185.251.229.0/24
193.58.146.0/23
194.5.65.0/24
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:12:3b:90:fb:99:e0:e3:bd:11:87:cb:10:5b:a4:2f:ac:4d:
7b:c6:a1:ee:91:3c:23:58:c1:63:13:27:e3:4f:18:42:4d:6c:
44:da:ed:ed:8d:da:c1:58:55:b2:7e:06:c1:18:ef:38:c8:f1:
52:e7:e9:68:fd:6c:9c:54:5a:a5:8e:bb:a9:ae:93:34:d4:6a:
8c:28:e8:66:ed:7a:22:1f:f1:a1:49:49:5c:b3:90:12:65:ef:
cf:25:1a:bf:3f:f2:a0:67:8d:a3:99:ee:32:f0:7d:2f:b1:c6:
cf:8b:27:d8:a5:d4:33:25:0b:f7:aa:95:e7:af:d2:2e:24:10:
49:58:7e:aa:86:ec:66:b9:58:d7:2f:4c:24:12:ba:e3:1a:9b:
e1:4d:32:18:f1:7e:17:ce:0a:b2:02:81:57:3a:a7:6d:b7:e7:
1f:88:f2:8d:75:db:9d:e6:a3:7a:54:91:88:4e:68:47:07:0b:
6d:f6:c6:76:ba:1a:31:4c:a3:8d:59:af:c4:53:86:d6:74:41:
49:fd:e2:e4:d1:c3:6d:2c:1f:a6:52:c6:2d:e1:29:1b:0e:a6:
fe:bb:b7:e2:58:cc:1c:05:cb:bf:45:ae:9a:74:ef:98:39:79:
f6:91:a8:f2:66:4f:79:65:4a:c4:cc:1f:2b:37:f7:00:4e:80:
1b:4e:70:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org