Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i_KlliW7SjWkBqxbthzrP7hv9Tw.roa
File: i_KlliW7SjWkBqxbthzrP7hv9Tw.roa (raw, json)
Hash identifier: yzE2rEyaRb+mtNqNVwnMYFDhUCIlTOEok8E/5KmpGCQ=
Subject key identifier: 8B:F2:A5:96:25:BB:4A:35:A4:06:AC:5B:B6:1C:EB:3F:B8:6F:F5:3C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188AF32E7DD93B1BF74C389C8EEF22AD48F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i_KlliW7SjWkBqxbthzrP7hv9Tw.roa
Signing time: Mon 12 Jun 2023 10:42:08 +0000
ROA not before: Mon 12 Jun 2023 10:42:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.58.145.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.23.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 15 Jun 2023 09:24:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:32:e7:dd:93:b1:bf:74:c3:89:c8:ee:f2:2a:d4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 12 10:42:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bf2a59625bb4a35a406ac5bb61ceb3fb86ff53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:39:06:0d:2a:b3:e3:c9:38:b8:bb:ba:92:de:
65:2c:72:9c:e9:9a:9d:c1:c8:a3:98:34:81:1c:4f:
0b:cd:b0:50:8c:3f:6b:fa:58:7d:c9:f3:b4:2f:86:
fb:9a:47:86:af:f4:0a:38:b8:ce:eb:2b:a1:a5:0f:
35:ae:80:cd:5e:3a:03:5b:eb:50:f6:78:9c:ea:b7:
cb:71:2e:e5:38:21:2a:be:58:09:fd:3d:b4:51:c5:
a0:a4:b3:29:15:fa:71:57:f6:a1:09:59:db:49:68:
bc:81:41:84:2d:b0:60:75:84:7c:52:3c:db:9f:f2:
24:c7:30:59:de:7b:8a:cf:c8:77:06:8e:fb:51:f1:
8a:a2:9a:91:47:b4:0d:04:38:2b:45:55:cf:ea:82:
1f:05:6d:41:7d:30:3b:c4:d0:20:8a:f2:99:88:31:
7e:62:f4:37:b1:c5:2a:a0:be:41:66:f0:9d:90:a4:
5e:cd:34:20:af:54:80:5b:99:cc:13:a1:eb:16:d8:
4e:ef:d9:b9:f2:6c:72:4d:16:83:ac:bb:eb:8b:31:
b3:a2:0e:a2:cc:20:18:86:ef:78:7a:ed:d6:94:e8:
49:7d:f2:1b:f7:27:bd:8d:c7:2e:64:c8:c4:ed:a2:
7c:1c:78:6f:b6:b1:be:b9:a9:d4:8f:89:6d:45:2a:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:F2:A5:96:25:BB:4A:35:A4:06:AC:5B:B6:1C:EB:3F:B8:6F:F5:3C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i_KlliW7SjWkBqxbthzrP7hv9Tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.8.23.0/24
45.147.224.0/24
185.225.0.0/23
193.58.145.0-193.58.147.255
Signature Algorithm: sha256WithRSAEncryption
17:ef:50:b2:02:4b:71:c9:af:cd:8f:3d:2d:12:6f:a7:5a:f3:
b5:85:c6:3b:a0:63:a1:cf:f0:b5:a7:3f:aa:3f:67:33:57:39:
5b:de:a7:bf:a4:7c:7d:2a:c4:ed:d1:30:f0:19:ae:05:f4:2f:
b6:be:5a:36:df:6c:ed:3f:a5:5b:c9:12:3e:87:05:8c:0a:b4:
c7:42:e5:3c:e4:d5:f5:b6:7e:44:91:18:8e:1f:8d:e9:17:26:
67:c5:fa:3b:82:dc:57:c1:55:9d:1e:d2:ce:0a:3b:90:28:e2:
16:2e:66:69:32:3a:92:ad:69:f2:b9:28:7e:01:a2:3c:f4:0e:
a4:f1:bf:f2:c5:37:c4:76:a0:7a:af:39:7c:81:e7:34:a9:2f:
23:2b:ea:a9:bb:fc:4f:01:49:34:38:8c:7c:fd:47:ce:a0:c7:
31:1b:61:fe:2e:ce:3a:6f:3d:c9:ea:35:82:b8:83:2b:ee:11:
3a:5d:0d:85:c8:f8:d5:45:62:0d:e2:af:2c:d8:8d:4b:d0:75:
1b:df:32:2c:1a:a3:67:ba:63:9f:ca:9c:48:38:86:cc:47:50:
61:ba:24:72:16:41:e4:a0:1f:fb:5a:2a:61:62:fe:59:83:13:
0c:d7:82:5c:0c:1d:77:af:86:f8:ae:3b:f0:77:61:ed:65:55:
26:54:75:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org