Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uR82IFFip5ZFV3vObwXDsrY-0r4.roa
File: uR82IFFip5ZFV3vObwXDsrY-0r4.roa (raw, json)
Hash identifier: c92OkKOSsyZOUk25XO8OIEufLZQCRPTBD7qgpVXvK1I=
Subject key identifier: B9:1F:36:20:51:62:A7:96:45:57:7B:CE:6F:05:C3:B2:B6:3E:D2:BE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AA93EA7D14433C17F287DABDD557D7AC2
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uR82IFFip5ZFV3vObwXDsrY-0r4.roa
Signing time: Mon 18 Sep 2023 17:02:50 +0000
ROA not before: Mon 18 Sep 2023 17:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.220.249.0/24 maxlen: 24
185.210.233.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.80.0/24 maxlen: 24
185.222.29.0/24 maxlen: 24
45.90.19.0/24 maxlen: 24
185.209.73.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.146.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.23.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
185.36.204.0/24 maxlen: 24
185.36.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 18:09:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a9:3e:a7:d1:44:33:c1:7f:28:7d:ab:dd:55:7d:7a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 18 17:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b91f36205162a79645577bce6f05c3b2b63ed2be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:c2:57:e5:ab:d0:b2:ad:cd:07:eb:8d:a2:
9e:23:f9:6f:11:8c:2e:18:2d:ae:7e:c5:dc:8e:62:
68:4d:69:85:dd:47:0c:98:a3:5c:e2:66:30:18:e3:
11:5a:a3:5d:c6:74:92:8b:3c:b5:76:86:e5:26:99:
ee:0d:cc:0c:ca:9b:73:08:97:89:b4:b6:71:a3:a9:
48:08:98:e8:fe:f6:00:a6:9f:3c:0e:3f:c9:01:c0:
96:f8:ff:b7:fa:52:5d:2f:94:d2:41:9d:1d:83:fa:
a6:44:7d:62:2d:6a:96:0b:52:1b:df:8a:f1:9c:4b:
c8:2c:09:6e:ae:88:59:47:b9:8e:31:4a:54:33:c4:
25:0c:b7:a0:73:96:ac:23:ac:17:b7:53:76:1b:8b:
3a:a0:64:c7:b4:6d:4e:a2:77:93:2e:cd:63:8e:d7:
f4:f3:a2:93:49:c9:03:33:97:7c:37:a5:f8:46:96:
28:8f:40:5f:f4:2a:22:92:ac:2b:0f:95:87:2d:67:
3a:99:04:6b:f6:85:7a:27:22:31:c1:dd:a0:35:0b:
f8:8a:43:92:03:60:3a:6d:be:72:ae:28:88:38:57:
83:90:9f:be:25:9c:00:53:d5:0d:13:4b:3f:39:1d:
7a:41:b8:d8:db:5e:6c:68:9b:76:53:af:d0:57:e4:
ba:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:1F:36:20:51:62:A7:96:45:57:7B:CE:6F:05:C3:B2:B6:3E:D2:BE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uR82IFFip5ZFV3vObwXDsrY-0r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.8.23.0/24
45.90.19.0/24
45.147.224.0/24
185.36.204.0/23
185.209.73.0/24
185.210.233.0/24
185.220.249.0/24
185.222.29.0/24
185.223.80.0/24
185.225.0.0/23
185.225.22.0/24
185.246.112.0/24
185.246.115.0/24
185.251.229.0/24
185.251.231.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:db:53:9f:d6:7d:67:29:bc:9f:86:a2:99:f7:0b:c7:96:27:
f7:37:13:80:66:6e:40:00:a7:1b:8e:34:c0:ae:b5:3d:2c:05:
e2:f1:61:6e:f7:aa:31:0b:3c:09:09:b1:d7:06:18:06:b8:15:
bb:15:7a:cb:d4:61:b4:d1:2e:26:6c:22:72:0b:a7:86:7e:b8:
b0:5b:ae:1e:51:c3:16:a4:46:d4:3b:71:22:47:e8:d6:07:08:
04:9f:1c:55:c5:fc:f7:75:fa:8b:4d:f5:b3:eb:94:b9:1a:fd:
92:ad:a1:c2:87:30:de:16:c5:20:d6:77:48:25:1a:b8:ec:77:
13:46:3b:a9:c9:b7:38:24:12:66:1e:00:a8:24:55:02:c0:b2:
f1:54:c3:9d:0e:f7:22:4d:70:b9:d7:80:d5:24:7d:5f:af:1b:
78:cf:77:ea:30:53:68:b8:d5:ba:1c:a0:eb:7d:e9:f4:4e:3c:
59:6c:2a:16:10:d9:c5:0c:b9:f3:87:bc:7d:3c:d2:c9:e3:63:
be:58:27:a4:9a:fe:60:19:46:20:56:1a:da:c0:48:da:be:14:
b7:96:23:d6:fe:52:8c:f1:a5:43:ff:04:1f:8b:40:2d:8f:c7:
69:37:30:57:a0:79:d9:a0:98:b9:52:e1:78:d8:f5:fc:b6:16:
80:2d:54:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org