Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hTnpxpt4L_ir5nJYWpDf5hyv9I4.roa
File: hTnpxpt4L_ir5nJYWpDf5hyv9I4.roa (raw, json)
Hash identifier: SYgb2wtsCiLYWZ9ccyu3IS87kwj9ywIg1unBfAUwQbQ=
Subject key identifier: 85:39:E9:C6:9B:78:2F:F8:AB:E6:72:58:5A:90:DF:E6:1C:AF:F4:8E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01877B85D8FF602D55195F5B8826E6237FD0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hTnpxpt4L_ir5nJYWpDf5hyv9I4.roa
Signing time: Thu 13 Apr 2023 16:49:41 +0000
ROA not before: Thu 13 Apr 2023 16:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.126.82.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.108.204.0/24 maxlen: 24
185.108.205.0/24 maxlen: 24
194.5.64.0/24 maxlen: 24
185.206.250.0/24 maxlen: 24
45.90.17.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
185.240.123.0/24 maxlen: 24
193.58.146.0/24 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
176.125.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 10:08:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7b:85:d8:ff:60:2d:55:19:5f:5b:88:26:e6:23:7f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 13 16:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8539e9c69b782ff8abe672585a90dfe61caff48e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b6:2a:e7:7a:cc:d0:2c:1f:58:c8:3b:c6:ca:
a7:74:e0:b9:ea:2a:b7:7c:dd:fd:35:15:e8:bd:42:
26:96:fa:14:49:90:86:d1:f7:80:1b:72:cd:57:68:
99:56:2a:f3:d5:30:53:ae:65:e9:85:95:d9:f6:c2:
7e:31:be:b6:35:fa:d6:b7:c5:07:c4:5c:86:1b:2d:
0b:29:40:3e:25:a0:d6:60:f6:c2:d6:82:b3:e2:04:
4b:bf:f8:1e:cc:8a:84:2c:3f:f5:29:92:36:f9:b7:
4f:20:cf:04:64:a1:db:78:b0:0f:11:31:11:6e:28:
f8:62:16:2c:70:08:b9:6a:1b:65:98:ca:7e:74:bc:
3c:c7:4d:be:6d:a9:73:47:54:0c:60:48:b5:40:76:
cf:67:30:cd:24:94:45:f3:37:39:9a:68:6b:20:bc:
6f:88:5d:c0:4e:bc:bd:d7:da:5b:eb:7f:ca:e7:ce:
b9:8b:a9:e5:a7:40:fb:1b:c3:2e:b9:70:0e:9e:07:
ea:f6:7a:b8:cd:3f:27:4e:69:e1:cb:87:0b:ee:05:
bd:08:40:66:22:63:b2:0c:8d:e9:6e:8a:91:cd:24:
0f:c0:56:02:ad:aa:bf:1c:69:21:7f:c9:1c:7e:24:
8f:c9:44:66:77:60:ab:8d:10:f0:73:65:18:39:c1:
7b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:39:E9:C6:9B:78:2F:F8:AB:E6:72:58:5A:90:DF:E6:1C:AF:F4:8E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/hTnpxpt4L_ir5nJYWpDf5hyv9I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
45.147.224.0/24
176.125.248.0/24
185.108.204.0/23
185.126.82.0/24
185.206.250.0/24
185.218.20.0/24
185.225.0.0/23
185.240.123.0/24
193.58.144.0/24
193.58.146.0/23
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:bb:97:1e:6f:68:af:50:77:59:e3:9d:93:35:ea:13:8a:92:
5e:0f:c5:8b:5a:cd:31:92:96:fa:be:5e:ab:74:63:30:b1:9f:
42:33:e7:3c:d7:07:23:b9:30:42:2d:eb:a0:95:b3:b1:0f:c2:
ef:89:3f:e4:bd:62:e6:7a:ba:04:da:c7:e9:09:64:24:79:94:
c8:3c:d8:98:f3:a0:e2:b1:27:43:17:ee:89:4f:e8:f9:e5:01:
5b:1e:51:1b:ce:81:61:9b:3e:0b:1a:ce:eb:2f:bb:88:0a:92:
7e:26:a2:d0:a9:99:8f:36:76:c6:9d:1c:17:0a:9b:f2:27:a5:
5f:17:3c:b3:0a:0e:4c:2a:0a:b9:e6:48:4e:9b:00:30:48:40:
fb:c9:07:64:f7:3b:3f:49:93:98:57:7f:9d:57:1f:5c:9f:52:
d6:44:47:70:ef:26:c2:2f:d2:d4:92:2a:88:d5:2f:47:e1:b5:
7c:a9:b9:f7:66:1e:c9:a9:c9:04:ad:6b:6d:40:d8:09:10:7c:
42:84:97:f7:22:bb:1e:61:11:08:c2:9e:71:c5:a0:ff:54:b9:
18:eb:2f:8d:7c:87:45:8a:21:33:fc:a0:e9:03:bb:87:61:89:
2a:69:09:0f:c2:56:28:30:d6:7c:27:a2:3f:83:8d:87:b4:b2:
46:7f:8d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org