Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jMU5Uqw3rMjRfbg0P27ZMKK6tgo.roa
File: jMU5Uqw3rMjRfbg0P27ZMKK6tgo.roa (raw, json)
Hash identifier: AfwPs1XDaueFa9oKvXbbVAOqG1aT5L+dn3hS9ULU8Fo=
Subject key identifier: 8C:C5:39:52:AC:37:AC:C8:D1:7D:B8:34:3F:6E:D9:30:A2:BA:B6:0A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185C95849DBC32D4DA9684CFB29B0B7D3B9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jMU5Uqw3rMjRfbg0P27ZMKK6tgo.roa
Signing time: Thu 19 Jan 2023 09:24:44 +0000
ROA not before: Thu 19 Jan 2023 09:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.225.20.0/24 maxlen: 24
185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
45.8.20.0/22 maxlen: 24
185.214.108.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 10:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:58:49:db:c3:2d:4d:a9:68:4c:fb:29:b0:b7:d3:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 19 09:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8cc53952ac37acc8d17db8343f6ed930a2bab60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:99:f7:51:d4:00:0c:29:1d:0d:e2:23:eb:4a:
89:ea:1c:1a:6b:89:0b:db:3d:99:9b:5b:e9:65:47:
25:05:a1:43:84:f2:fe:e0:7c:9c:c1:98:12:cb:09:
6a:91:da:74:e8:ce:e5:f0:5c:ac:c4:88:e7:8a:b0:
85:ee:90:67:b2:4d:6b:97:7d:bf:c5:e9:a4:c2:f8:
e2:3b:d3:52:8a:5a:dd:51:61:6d:25:d3:33:56:62:
75:2c:92:c3:c8:64:5a:17:c1:75:9d:12:ea:cf:3f:
83:1d:6a:c1:37:16:76:fe:74:d7:e3:70:01:65:e8:
b8:01:cd:50:b9:22:6c:74:e7:d5:4d:c1:e2:4a:3e:
5f:24:78:51:75:f9:64:7d:cc:bd:33:28:ad:49:4f:
33:39:71:29:d0:e5:c3:9a:78:a4:59:73:b1:cc:30:
54:79:74:1f:45:48:b5:ee:07:8e:95:28:c0:1d:a8:
ca:6d:15:1e:53:a8:5b:a8:89:07:10:f9:f6:59:62:
b5:79:f3:eb:0f:cf:63:23:d3:de:39:9e:b5:3c:26:
d5:36:24:e9:fc:71:47:aa:b2:1e:38:25:f3:cb:26:
55:7d:b6:be:91:51:20:9d:df:0d:58:f0:26:06:80:
71:b4:b0:6a:1b:af:15:21:4c:ef:d7:6c:01:26:7f:
85:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C5:39:52:AC:37:AC:C8:D1:7D:B8:34:3F:6E:D9:30:A2:BA:B6:0A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/jMU5Uqw3rMjRfbg0P27ZMKK6tgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.20.0/22
185.36.204.0/24
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.214.108.0/24
185.223.76.0/24
185.225.20.0/24
185.226.105.0/24
185.226.107.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
97:65:18:fa:f6:2c:a5:04:81:2f:ba:80:14:e0:71:33:1d:34:
94:31:be:67:25:1f:8c:f7:9c:38:0e:39:1e:db:c7:62:01:9b:
d5:c7:09:be:15:ad:a0:3f:37:db:b6:9d:3a:f8:71:ad:31:9f:
e1:8c:67:ac:2e:6b:53:77:5e:8f:89:4f:4c:f3:7e:e2:90:47:
f7:c1:80:0d:56:0f:27:c0:2e:a8:57:5d:cf:27:19:98:c0:23:
a8:fc:f9:52:8c:5c:42:f7:ce:77:e3:a4:86:6b:d7:3a:04:15:
73:eb:86:a8:40:71:30:26:26:8d:f1:ee:67:d9:84:cf:b1:e9:
25:6e:cd:ee:50:f5:7d:1a:34:bf:45:dd:4a:78:d6:10:2f:65:
89:7d:59:c6:40:23:fb:1b:ac:57:1e:da:bc:a6:81:63:62:00:
00:0d:3e:00:f8:bd:1e:d8:8e:7f:53:cb:90:f5:b5:85:57:95:
49:e4:60:e0:46:b8:09:3a:50:9a:df:2b:37:2c:25:e6:73:b7:
5a:74:ea:30:80:c2:84:0a:42:65:54:5b:35:8f:80:c3:d1:2f:
40:1a:70:1c:09:1e:7f:91:a9:ef:2c:ca:24:05:9c:ce:31:a3:
fb:63:01:9b:71:61:78:72:2b:0c:2f:ba:c3:0d:f5:2f:fc:1f:
97:a5:ef:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org