Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vfjxjh0g-Z8NYifxpO9ugVErFF8.roa
File: vfjxjh0g-Z8NYifxpO9ugVErFF8.roa (raw, json)
Hash identifier: /sxM7jz6EkTlJCWsrtciSwW69MTMkjMlsEZmKu6XE3E=
Subject key identifier: BD:F8:F1:8E:1D:20:F9:9F:0D:62:27:F1:A4:EF:6E:81:51:2B:14:5F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018959A76FC4F9084DDA12C60593CD870AFB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vfjxjh0g-Z8NYifxpO9ugVErFF8.roa
Signing time: Sat 15 Jul 2023 13:04:52 +0000
ROA not before: Sat 15 Jul 2023 13:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.230.52.0/24 maxlen: 24
185.218.21.0/24 maxlen: 24
185.209.72.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.223.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jul 2023 09:32:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:59:a7:6f:c4:f9:08:4d:da:12:c6:05:93:cd:87:0a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 15 13:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bdf8f18e1d20f99f0d6227f1a4ef6e81512b145f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:69:50:7b:1a:fa:54:02:fe:81:63:9c:30:ca:
ec:4a:92:c9:73:d6:14:5a:8d:55:53:d1:45:22:f2:
c9:19:2e:a7:be:16:8a:31:b8:a0:b3:7b:73:09:0d:
26:a5:f5:69:52:d2:4f:b4:c3:bb:6f:cc:b1:7e:28:
11:d4:77:d2:76:2f:d1:37:89:dd:69:25:a7:96:f6:
32:b1:c7:2b:c6:9d:42:be:09:42:d1:6e:07:4b:df:
2d:2b:0a:88:5d:f5:26:9f:23:5e:ea:db:a8:e9:f8:
b3:75:52:47:73:04:d2:20:03:d6:dc:e3:04:3b:d7:
38:35:6f:bb:ad:8b:d3:88:02:23:5d:50:87:d3:29:
80:e7:0f:37:6d:7c:8b:83:5f:d8:b8:59:88:81:1b:
78:9f:7b:8d:43:0d:a1:d5:5f:05:1d:45:63:ca:4d:
3a:d8:0b:b2:58:c0:e4:90:4a:23:05:f9:f8:df:d5:
89:34:5b:e4:3e:f5:41:2d:09:d9:87:a4:e0:31:e5:
09:a5:85:a4:ee:03:3c:12:30:48:e1:66:a2:68:6d:
19:d4:29:cd:f5:d8:13:c1:ef:29:40:6f:69:10:13:
21:84:d8:92:c8:a1:3f:3c:dc:1f:3f:fa:c3:45:41:
cf:24:48:4a:c9:c4:a9:87:e6:bb:f2:e7:a9:04:71:
b9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F8:F1:8E:1D:20:F9:9F:0D:62:27:F1:A4:EF:6E:81:51:2B:14:5F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vfjxjh0g-Z8NYifxpO9ugVErFF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.209.72.0/24
185.218.21.0/24
185.223.80.0/24
185.225.0.0/23
185.230.52.0/24
185.251.229.0/24
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:7a:63:fa:a2:1f:1e:35:fb:08:b6:be:78:e8:a4:74:f7:cf:
eb:a3:51:5b:b6:f2:b5:6c:18:07:62:23:31:3e:53:32:bd:92:
5b:83:be:69:f8:55:ef:e7:a2:eb:67:ba:d0:e6:aa:7c:1b:05:
8c:5e:6e:fe:c0:9f:e5:3f:d5:bc:67:2e:8a:ad:ca:a6:04:81:
f5:5a:ba:5a:e9:0e:de:63:84:94:9a:81:1a:35:63:e8:30:82:
39:2c:8f:c1:d5:56:66:9a:c6:40:5a:b7:df:57:fa:6b:6a:df:
c8:2a:c1:a2:a2:16:5c:27:be:12:57:3d:fd:eb:f2:57:61:cb:
70:86:83:c5:6f:27:9b:b6:21:c8:f9:69:2c:72:91:a2:2f:4f:
e1:86:56:67:bb:cf:ee:a5:2b:2f:10:97:2f:69:b6:60:74:6e:
bc:a3:5e:0b:e2:7e:c8:77:34:2c:78:8f:79:0d:03:1a:77:f9:
58:c8:0e:53:37:fe:d6:f7:32:19:4b:7d:09:83:01:11:fa:db:
8d:53:85:61:46:dd:05:2d:04:e3:ee:ca:36:95:25:97:82:97:
25:89:df:fb:5d:d5:81:0d:15:60:3a:57:63:15:9a:ee:af:0f:
5d:9d:4e:2e:86:aa:b7:ad:37:ed:3d:27:b4:27:3c:c0:da:bb:
51:b8:d5:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org