Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mTo14xZjIlU_sK_H-DeApiOMif4.roa
File: mTo14xZjIlU_sK_H-DeApiOMif4.roa (raw, json)
Hash identifier: GNyzzMKWJ/Kl0F2WDP8bfWCjXpKSSNYB088XT0PaQkE=
Subject key identifier: 99:3A:35:E3:16:63:22:55:3F:B0:AF:C7:F8:37:80:A6:23:8C:89:FE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018586BD791845387481A3CDC60A9BD93811
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mTo14xZjIlU_sK_H-DeApiOMif4.roa
Signing time: Fri 06 Jan 2023 11:00:42 +0000
ROA not before: Fri 06 Jan 2023 11:00:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 45.90.16.0/24 maxlen: 24
185.218.22.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.126.83.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.228.73.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
194.147.16.0/24 maxlen: 24
45.131.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Jan 2023 10:05:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:86:bd:79:18:45:38:74:81:a3:cd:c6:0a:9b:d9:38:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 6 11:00:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=993a35e3166322553fb0afc7f83780a6238c89fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e3:06:99:4a:c2:f3:47:80:96:1c:24:c4:af:
12:a4:57:77:37:96:9d:77:6c:b2:71:82:77:5f:db:
ba:94:af:12:1a:e5:80:83:38:d6:67:63:ea:e9:f1:
69:c1:f0:d4:4f:77:59:ac:9d:27:73:e2:04:0c:06:
e0:b8:68:5d:2a:11:a8:9c:08:ec:19:7b:73:fc:9a:
78:e5:38:67:eb:c6:fb:4c:ae:54:87:57:d7:0a:85:
3c:0d:ac:8d:74:17:e3:18:13:7c:fc:ae:d9:06:23:
8e:e7:7f:e0:33:03:91:1a:b9:33:3c:97:9c:78:95:
66:62:0b:be:02:94:91:c8:ba:3b:8e:bb:72:a0:22:
05:fd:bb:ff:ee:88:40:3a:57:a9:e0:88:59:15:90:
90:b9:43:91:9e:a1:22:cc:e7:7e:2b:3e:20:a8:fe:
b3:a4:79:39:6a:a9:3f:95:53:f2:fd:71:82:a1:f2:
0e:d4:ac:45:cb:7f:99:3d:e9:1f:93:5a:ff:ce:49:
5c:ab:b4:67:d2:87:85:a9:06:7c:b7:ab:2f:b5:24:
8c:30:1d:6d:b7:4b:34:12:39:3a:36:0e:27:45:6d:
7c:42:bb:f6:cb:46:69:14:24:a4:ef:c5:24:2f:4b:
78:67:5c:d5:05:54:02:07:e9:eb:f1:c2:ec:d2:84:
59:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3A:35:E3:16:63:22:55:3F:B0:AF:C7:F8:37:80:A6:23:8C:89:FE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/mTo14xZjIlU_sK_H-DeApiOMif4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.16.0/24
45.90.19.0/24
45.131.134.0/24
45.147.224.0/24
185.126.83.0/24
185.218.22.0/24
185.228.73.0-185.228.74.255
193.58.144.0/24
194.147.16.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:a7:28:14:38:b7:7b:7e:87:f5:96:65:50:47:b1:26:c8:8c:
2c:cf:f5:f1:d0:e7:d9:c7:f4:11:71:00:1e:0c:c8:df:fc:e4:
50:f1:06:31:94:67:bb:13:84:57:47:41:1c:3c:cd:c9:43:d0:
d2:4e:a2:f1:5c:19:e2:f4:4e:01:b4:4c:31:ad:69:29:95:1f:
2f:70:46:6e:99:fe:42:de:29:fd:56:98:a3:58:ba:3b:17:41:
c3:53:74:db:22:17:be:72:a4:8f:08:27:ba:17:0b:42:8f:b3:
42:92:d0:bd:02:1a:4c:76:ad:e2:5c:0d:90:15:6f:27:29:2a:
da:83:f0:b0:d6:a5:43:ab:49:d8:00:ae:d9:58:74:a6:dc:c0:
f8:a0:91:80:17:03:6e:55:19:bd:b6:fb:f0:bd:f6:e3:9c:96:
f2:77:c5:66:5f:2d:50:8c:77:a3:ad:38:3a:61:2c:48:df:6c:
4d:83:70:91:60:a1:33:6a:5d:c8:ee:5b:f7:d2:d6:eb:f0:46:
3a:38:24:da:34:7d:a5:d9:ae:aa:18:8d:3a:b4:cf:e9:a8:e8:
06:54:6e:66:ca:38:55:b7:8a:7b:ac:91:ad:e2:7a:aa:56:11:
cf:bd:1b:0d:01:a1:29:0e:0b:bb:94:eb:e4:f4:e3:a2:a9:4f:
87:34:7d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:28 2024 by rpki-client on console-ams.rpki-client.org