Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/das_E0WzyPTzObc3oFCmwB6stgA.roa
File: das_E0WzyPTzObc3oFCmwB6stgA.roa (raw, json)
Hash identifier: WKbetDr6VG1dRWjiKzeNwgVXngj63jQW4wDF9HnXV/w=
Subject key identifier: 75:AB:3F:13:45:B3:C8:F4:F3:39:B7:37:A0:50:A6:C0:1E:AC:B6:00
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0190A147C935250865F1583264212FFD9B2E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/das_E0WzyPTzObc3oFCmwB6stgA.roa
Signing time: Thu 11 Jul 2024 10:12:34 +0000
ROA not before: Thu 11 Jul 2024 10:12:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.8.21.0/24 maxlen: 24
185.126.82.0/24 maxlen: 24
185.214.108.0/24 maxlen: 24
185.220.250.0/23 maxlen: 24
185.225.0.0/23 maxlen: 23
185.226.104.0/24 maxlen: 24
185.227.146.0/23 maxlen: 24
185.227.147.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
193.8.112.0/23 maxlen: 24
193.58.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 11:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a1:47:c9:35:25:08:65:f1:58:32:64:21:2f:fd:9b:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 11 10:12:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75ab3f1345b3c8f4f339b737a050a6c01eacb600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fe:6b:a3:e6:1a:ab:ec:45:1b:b8:65:ff:25:
fa:8f:5c:6a:7e:34:53:d3:12:40:a5:e0:6b:38:cd:
2f:47:70:a5:21:9f:bb:75:84:bb:e8:92:d0:ca:05:
12:2d:ac:91:b3:c4:dc:0e:4d:3c:48:c5:a9:98:8d:
f8:81:ee:4e:ad:ee:3d:e2:3e:e0:a9:ee:eb:3b:22:
36:e0:27:89:c9:3a:2f:05:fb:11:0b:14:66:bc:f4:
a9:5f:5d:33:00:82:d8:45:98:6a:36:cd:4e:81:63:
77:13:96:72:59:3f:f0:d6:ea:9a:b8:3a:9a:bb:84:
4b:b8:9c:23:fa:a8:df:90:d9:54:d7:ac:8a:e8:c2:
2a:94:5d:5f:4c:2e:2e:f6:d5:ac:20:31:aa:84:78:
f1:78:9f:4b:ba:ef:2d:c1:32:fe:f0:be:e3:6c:85:
80:76:e9:dd:f8:ab:f8:e5:47:a9:ad:00:f2:4b:60:
e3:9d:f7:e7:34:aa:24:96:b1:8b:b5:f2:49:da:29:
99:96:4c:94:5c:d5:40:d1:f8:ec:00:ec:55:b4:19:
6b:96:78:6b:4a:c3:0d:59:63:92:18:0b:35:59:1b:
0f:c8:14:e6:76:d0:28:98:6f:7b:82:49:ed:84:9c:
e4:c6:07:53:c2:82:8d:95:1c:74:8f:18:15:e6:af:
ef:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AB:3F:13:45:B3:C8:F4:F3:39:B7:37:A0:50:A6:C0:1E:AC:B6:00
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/das_E0WzyPTzObc3oFCmwB6stgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
185.126.82.0/24
185.214.108.0/24
185.220.250.0/23
185.225.0.0/23
185.226.104.0/24
185.227.146.0/23
185.251.230.0/24
193.8.112.0/23
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:42:49:d2:41:37:34:8e:62:de:2b:3b:37:24:92:6c:97:39:
b3:69:66:2a:d7:aa:8b:f5:2a:37:4e:f8:b1:09:9b:e5:d7:c7:
06:b4:bd:84:9d:63:9f:f4:13:b0:9e:9a:0f:cd:45:e7:ac:26:
81:e8:80:94:69:24:ac:c4:cc:f0:fb:fd:59:bf:e6:d6:60:fb:
63:0f:11:df:6f:6d:c4:33:91:4f:fb:8e:b5:72:28:f4:1f:0b:
fb:29:d1:3e:55:00:bd:01:aa:d1:6b:72:b1:e6:15:e6:03:81:
85:c4:3a:ff:d7:04:2f:99:64:78:d4:8b:e2:b3:90:bd:a6:21:
7e:15:2d:01:8c:33:cb:b0:81:88:25:f6:8b:e0:f3:d7:e0:83:
e2:f4:9d:f2:ab:9c:27:b8:e4:af:bf:9b:c1:d6:f0:fc:a8:cc:
be:4e:19:57:8e:10:98:df:1a:25:6a:3d:e7:bd:ad:44:a4:54:
d2:bd:dc:f9:09:7b:28:27:50:fd:29:99:d1:7d:be:46:f8:90:
b8:e3:16:8d:af:ac:a5:2e:0f:eb:76:3b:a8:28:fd:06:a9:27:
dd:c6:49:ec:4b:9f:31:5a:55:88:12:8e:9c:2e:b2:6b:07:9b:
ed:56:6d:77:73:e2:18:a3:b9:80:5d:3d:88:6e:14:7a:f4:90:
79:c6:a4:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 13:01:34 2024 by rpki-client on console-fra.rpki-client.org