Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/dEUrdEKvR8RASKEIAyC8v2pAOjI.roa
File: dEUrdEKvR8RASKEIAyC8v2pAOjI.roa (raw, json)
Hash identifier: jTCYVXxQN7MJ6XlHsJnM/stQCnmgjP7sXGQjAYk3Rvs=
Subject key identifier: 74:45:2B:74:42:AF:47:C4:40:48:A1:08:03:20:BC:BF:6A:40:3A:32
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018BE890BD9C2CC6284D8BFD9A54AD3275F8
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/dEUrdEKvR8RASKEIAyC8v2pAOjI.roa
Signing time: Sun 19 Nov 2023 17:11:21 +0000
ROA not before: Sun 19 Nov 2023 17:11:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.227.146.0/23 maxlen: 24
185.209.38.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.1.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
194.5.64.0/24 maxlen: 24
185.222.30.0/23 maxlen: 24
45.90.16.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e8:90:bd:9c:2c:c6:28:4d:8b:fd:9a:54:ad:32:75:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 19 17:11:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74452b7442af47c44048a1080320bcbf6a403a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:84:14:1e:9b:f0:10:a5:72:ac:7b:87:25:8a:
09:97:e6:af:4b:dd:c4:c6:b0:51:68:0b:9c:c5:5d:
9c:15:09:09:28:ac:e9:cb:95:d2:2b:5a:31:ac:fc:
29:72:29:d6:60:bc:0b:34:53:a5:61:10:ae:54:2f:
b0:64:a0:d8:29:bc:d4:6f:ff:4b:d0:b0:d1:79:1b:
24:4c:b2:8f:a9:a9:a4:5a:63:4b:ca:d2:3b:d6:be:
38:d5:c5:81:d2:4e:49:6c:e3:84:ba:72:1a:86:8f:
b8:c8:9d:12:f9:8b:72:b6:f2:a3:07:02:77:9b:d1:
9b:8f:6c:b1:6c:b4:b0:90:0f:7f:6f:8d:56:5a:8a:
51:52:55:74:33:89:af:4f:fb:a8:9a:79:3c:35:4f:
91:17:f9:be:29:59:e3:98:ee:fd:90:c8:f5:36:06:
b1:3f:88:39:3d:1c:56:a8:7a:1b:97:b9:e8:d7:7d:
d7:48:26:57:05:31:67:f6:12:b3:c7:b9:7f:9e:e4:
2e:99:2a:51:11:d2:7d:4e:a2:19:c8:95:e2:2a:09:
23:fb:c2:f2:f7:da:1e:63:6c:97:51:e4:e9:90:70:
15:71:8f:d5:f5:11:26:0a:aa:33:43:e7:0f:74:19:
95:39:3e:f1:08:a6:d2:fd:77:6a:cb:ca:f3:2d:30:
b0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:45:2B:74:42:AF:47:C4:40:48:A1:08:03:20:BC:BF:6A:40:3A:32
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/dEUrdEKvR8RASKEIAyC8v2pAOjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.16.0/24
45.147.224.0/24
185.209.38.0/24
185.220.250.0/23
185.222.30.0/23
185.223.80.0/24
185.225.0.0/23
185.227.146.0/23
185.251.229.0/24
193.58.146.0/23
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b0:27:58:f8:c9:03:fb:cb:66:3c:ce:7d:5e:51:4c:4c:f7:
ba:1f:61:74:ba:ed:83:e1:34:c1:9a:19:4a:0c:31:4c:c6:51:
7d:6a:eb:00:91:30:f9:9d:82:6d:ce:3f:3a:ff:10:06:0b:9d:
c7:c5:eb:2b:7d:84:ec:f0:d7:a6:1c:63:cf:80:a2:4d:fc:1c:
fb:5e:e9:fa:98:5c:0f:54:ab:a4:ae:f6:4c:03:4c:f0:a3:52:
ca:ee:81:ec:05:01:30:2e:a0:69:e7:fc:4c:e0:90:bb:3e:0f:
de:db:67:4d:5a:8e:9e:ae:e3:ac:66:8c:a5:5d:c8:34:53:b1:
87:6a:e5:2e:3e:0c:ad:1a:03:01:77:8f:7e:cf:92:b3:7a:c3:
92:8c:61:c7:72:ac:75:42:f1:5e:92:b2:16:aa:59:41:77:e9:
3d:81:51:90:78:3e:50:08:71:82:52:8c:eb:65:f3:db:c5:2d:
44:d3:f8:1e:0d:79:ca:d1:29:2d:ec:29:64:b1:84:a0:18:45:
19:f5:65:7c:53:2e:31:6d:81:a9:c4:16:ab:e1:e2:67:f3:96:
1e:05:00:eb:81:63:67:4c:6a:db:dc:54:dd:fb:38:64:9d:95:
98:ff:d2:bd:fd:93:ae:f7:61:ba:71:59:ac:66:a8:89:d1:11:
85:01:73:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org