Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mOJQwBylHgDw5MJDcW0mzXWyBz0.roa
File: mOJQwBylHgDw5MJDcW0mzXWyBz0.roa (raw, json)
Hash identifier: p68DO2CULIyLtAgixOuTiHYX0IQ0yVUGdwYNbbu45Co=
Subject key identifier: 98:E2:50:C0:1C:A5:1E:00:F0:E4:C2:43:71:6D:26:CD:75:B2:07:3D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A1D23312C92FB66BF23AF7A6E76BEECBB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mOJQwBylHgDw5MJDcW0mzXWyBz0.roa
Signing time: Tue 22 Aug 2023 12:06:00 +0000
ROA not before: Tue 22 Aug 2023 12:06:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.221.22.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Aug 2023 12:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1d:23:31:2c:92:fb:66:bf:23:af:7a:6e:76:be:ec:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 22 12:06:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98e250c01ca51e00f0e4c243716d26cd75b2073d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2a:1f:19:a1:82:cb:16:a9:73:e2:fd:21:6b:
ce:47:a7:c8:41:92:7f:30:0a:1f:cf:3b:08:82:ff:
37:95:d6:81:1a:c5:48:45:ba:f8:a2:ad:3d:a1:c4:
5a:2d:69:f5:51:70:d3:57:6c:23:57:59:01:8d:6f:
94:bc:6f:76:f8:77:71:ab:f7:f9:e5:9e:c4:a8:4f:
72:c9:9a:c0:47:b3:6d:83:40:11:a3:25:bf:69:b3:
a8:0e:d8:87:e2:9b:2f:9e:da:f1:5b:83:6e:bb:ce:
34:5a:e5:55:0b:15:da:8b:e5:8b:3c:ea:0e:81:24:
8f:99:97:ef:c3:55:7a:41:a5:8e:68:a5:b7:d8:3c:
cb:35:2d:bc:80:a0:8b:a8:6b:53:4e:01:31:d4:76:
1e:e3:a3:d8:19:bb:3b:77:c2:01:54:10:f6:f5:5b:
6f:86:2b:13:08:38:cb:8a:93:e4:24:8f:99:36:71:
28:1b:da:fc:74:da:7c:ed:bd:c4:a2:fe:66:2c:95:
b4:71:43:37:3d:39:9a:34:a3:8e:e4:9e:45:45:57:
22:98:d0:3c:55:71:ed:02:5f:84:4a:6f:78:59:65:
16:36:75:ea:4a:66:51:f2:f8:5f:ee:39:d1:69:f8:
07:ad:89:bc:26:23:bb:79:d9:8e:1d:0d:da:13:5d:
42:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E2:50:C0:1C:A5:1E:00:F0:E4:C2:43:71:6D:26:CD:75:B2:07:3D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mOJQwBylHgDw5MJDcW0mzXWyBz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.23.0/24
185.220.249.0-185.220.251.255
185.221.20.0/24
185.221.22.0/23
185.222.29.0-185.222.31.255
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.231.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:35:db:8d:5c:d3:26:be:2d:00:13:bc:a4:42:ac:57:7d:83:
e8:db:ca:38:7a:78:3c:4f:9b:4c:b8:49:fc:63:53:39:94:bb:
14:97:f5:5d:b0:75:f7:95:7c:80:21:26:60:1a:55:d6:82:89:
5b:f7:76:05:97:77:8f:09:e0:b5:0c:35:16:8c:a9:7c:e3:b0:
38:ea:e9:88:96:7e:fd:33:7b:db:c4:ce:1b:25:7d:7d:21:fc:
24:e1:d1:dc:a7:22:5c:0b:fc:f0:42:8b:26:40:bf:de:e8:9f:
7f:db:0f:0e:98:55:50:0d:ce:cf:a8:a0:0a:ca:76:41:4a:3b:
bc:16:aa:d4:0b:c0:91:c9:e3:09:b1:a7:15:4e:c4:0c:59:f9:
1c:50:10:81:7a:ce:be:0d:22:73:fc:c5:95:7e:cc:09:69:55:
14:cb:69:96:ed:f8:d9:99:67:04:d6:89:bc:3f:76:26:b8:db:
52:15:95:55:d3:46:3e:42:d4:57:8d:20:0b:cf:d5:89:0b:dd:
4a:58:31:6e:5c:ef:a5:24:57:ae:44:e0:29:21:dd:b9:04:39:
14:ae:ac:de:70:d7:6d:10:d8:29:cb:2e:b2:ce:b5:b6:d5:43:
92:26:03:95:46:ee:d9:2b:59:7b:e1:57:f4:0d:54:27:d5:77:
78:49:11:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org