Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ilQrdOnhk0PfgdIAHmGtqU81v7Y.roa
File: ilQrdOnhk0PfgdIAHmGtqU81v7Y.roa (raw, json)
Hash identifier: loe5nYjfNjtqIsT1q/R70ia2Tx94I+q7lp0xtR4b7bc=
Subject key identifier: 8A:54:2B:74:E9:E1:93:43:DF:81:D2:00:1E:61:AD:A9:4F:35:BF:B6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01883849DF7CCC23E49C569685BC07F368AD
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ilQrdOnhk0PfgdIAHmGtqU81v7Y.roa
Signing time: Sat 20 May 2023 08:32:25 +0000
ROA not before: Sat 20 May 2023 08:32:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.90.17.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.225.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 10:09:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:38:49:df:7c:cc:23:e4:9c:56:96:85:bc:07:f3:68:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 20 08:32:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a542b74e9e19343df81d2001e61ada94f35bfb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:9c:4d:c0:14:14:a4:49:a5:d0:a5:ce:90:
be:a2:d6:0b:5f:a5:f5:6e:fc:9c:8d:af:20:74:80:
2f:56:5e:49:36:0a:cf:9b:e9:1f:03:7a:49:58:fe:
9e:da:79:a5:af:c7:2d:33:3b:ad:2f:24:26:94:48:
36:dc:93:7a:e2:28:05:31:b7:16:af:eb:ce:97:62:
29:c3:1c:7a:e8:45:7f:90:72:be:0c:e4:81:a1:9a:
8c:c5:b0:16:84:7c:f1:fc:72:61:93:de:66:b3:64:
9b:2a:3c:43:4b:c7:ca:25:90:1e:2e:6f:66:6d:95:
30:e9:88:b6:95:19:e6:1b:84:80:f8:e4:dd:cb:1c:
2d:12:2f:3c:bc:47:ba:c7:68:38:fc:b8:ee:8f:b6:
db:ef:a3:3d:7f:e2:74:d9:ee:c4:06:f1:62:2a:0c:
75:04:7e:5f:5e:78:e0:74:68:c2:eb:e9:07:8b:37:
cf:41:0e:92:dc:36:d8:32:b8:6d:12:ec:2c:43:ee:
6d:32:48:63:c8:9c:0c:53:5e:18:08:3e:1e:41:4a:
9a:92:bc:b9:8e:e9:66:f7:69:3f:4b:2b:87:7c:7c:
82:b3:68:0c:39:17:b5:17:a8:7d:96:f5:16:d0:b4:
8d:9f:7d:24:90:3e:d9:e0:6c:42:34:2b:44:dd:4b:
cd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:54:2B:74:E9:E1:93:43:DF:81:D2:00:1E:61:AD:A9:4F:35:BF:B6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ilQrdOnhk0PfgdIAHmGtqU81v7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.90.17.0/24
45.147.224.0/24
185.225.0.0/23
185.246.115.0/24
193.58.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:d9:60:8d:72:39:b3:5a:c5:bb:5b:9f:a8:84:47:6d:ad:09:
83:f9:24:0e:f9:f1:12:e6:dd:a5:75:54:c5:da:e4:03:48:23:
1c:cc:8e:ab:82:bf:fb:c0:95:34:84:2c:2c:c0:ff:ea:78:eb:
2e:0f:42:63:1b:eb:cb:a3:87:06:c9:e6:0a:d5:22:ea:1a:d4:
d9:34:ff:cb:f4:b6:87:ca:bb:ef:ce:29:a2:49:75:fa:bf:d1:
7b:56:e7:e5:32:3a:b1:3f:84:9e:73:3d:bc:2a:e4:3b:81:e0:
a2:e6:92:a0:a0:d7:06:83:98:2f:ac:98:59:de:89:aa:ed:1d:
a2:26:7e:c7:0c:a4:d7:3a:1e:ca:01:39:bc:ed:81:78:65:80:
15:61:1c:14:24:30:56:c9:6c:de:e0:c4:ed:11:52:84:f4:13:
91:7c:a1:2a:1e:76:94:0c:3e:bf:62:e2:f9:58:eb:48:eb:36:
a2:0a:5d:29:e9:18:c8:88:76:26:03:dd:3f:0f:d6:c5:61:ab:
ad:58:a5:e4:4c:f4:91:a4:cd:6b:0e:e8:8f:c9:8c:8c:b1:c7:
13:f6:58:0a:50:bc:63:bc:06:f3:7d:10:9c:d0:11:26:58:72:
ef:54:f6:0c:73:b3:b4:ac:bc:69:fc:d3:67:7d:80:3d:d7:28:
f9:86:b0:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org