Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xe1oPD7eajEI6XQ_Itp1CE53pz4.roa
File: xe1oPD7eajEI6XQ_Itp1CE53pz4.roa (raw, json)
Hash identifier: 0l4pY9RBSxNjzDR+UlJjxSClc9nJHUhu9bohBfpTABg=
Subject key identifier: C5:ED:68:3C:3E:DE:6A:31:08:E9:74:3F:22:DA:75:08:4E:77:A7:3E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01878EB026E5DAB5DFB4BB76E551E21939DC
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xe1oPD7eajEI6XQ_Itp1CE53pz4.roa
Signing time: Mon 17 Apr 2023 10:08:41 +0000
ROA not before: Mon 17 Apr 2023 10:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.126.82.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.108.204.0/24 maxlen: 24
185.108.205.0/24 maxlen: 24
194.5.64.0/24 maxlen: 24
185.206.250.0/24 maxlen: 24
45.90.17.0/24 maxlen: 24
185.218.20.0/24 maxlen: 24
185.240.123.0/24 maxlen: 24
193.58.146.0/24 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
176.125.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Apr 2023 15:40:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:b0:26:e5:da:b5:df:b4:bb:76:e5:51:e2:19:39:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 17 10:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5ed683c3ede6a3108e9743f22da75084e77a73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6b:5a:48:e6:95:c7:a0:04:a8:6b:07:84:13:
12:b1:07:4c:f1:dc:3e:94:aa:50:af:5e:f4:89:cc:
cc:fd:7a:69:9e:d8:3e:ea:23:18:e7:7d:3f:bf:8d:
73:3d:dd:3f:4d:11:35:72:83:cf:b7:eb:dc:b7:ba:
47:45:7f:7a:0f:98:62:15:1e:7e:31:81:8b:87:43:
b3:a4:e6:48:9c:b4:ce:18:5d:b7:f3:a2:f8:83:85:
83:80:bb:1f:a9:ca:09:06:bc:1b:2f:67:63:f3:df:
30:1d:ec:c4:e4:9b:c1:20:88:93:9a:75:31:1e:31:
a0:22:43:17:26:ef:4b:90:06:93:6e:3c:be:95:78:
92:f7:72:2e:61:2d:ab:0a:d4:db:90:8a:8f:b5:7f:
e7:2d:b0:1c:7e:11:e9:fe:58:62:0d:89:91:ed:86:
bb:98:79:81:9b:3f:b8:90:23:18:c8:0b:db:bf:9f:
5b:64:ce:f1:8c:b2:b9:e6:bc:3b:a2:6e:9e:cc:9c:
07:26:f2:f0:bc:07:1d:7b:16:fe:e5:b5:e9:27:4c:
1e:29:d1:aa:29:98:f0:be:83:f6:54:07:20:ac:af:
6e:cb:90:fb:61:8f:b6:65:ea:cc:3a:ca:23:81:54:
07:40:10:ee:7d:2b:60:b7:29:c7:b6:e9:ca:55:e1:
de:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:ED:68:3C:3E:DE:6A:31:08:E9:74:3F:22:DA:75:08:4E:77:A7:3E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xe1oPD7eajEI6XQ_Itp1CE53pz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.17.0/24
45.147.224.0/24
176.125.248.0/24
185.108.204.0/23
185.126.82.0/24
185.206.250.0/24
185.218.20.0/24
185.225.0.0/23
185.240.123.0/24
193.58.146.0/23
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:0b:dd:5c:0a:31:c9:f4:62:fa:e2:98:76:82:64:09:cd:2d:
6f:35:ab:8b:76:0d:8f:20:51:a9:9a:2a:92:ac:81:51:a5:cd:
31:5a:aa:8d:cb:9b:bf:2a:aa:ff:f7:eb:fb:df:4b:ad:20:13:
f1:c3:b4:6b:77:47:dc:47:c8:5b:b2:de:0f:50:9a:61:89:cd:
54:17:ae:6d:fc:a9:56:4c:56:f5:d4:8b:72:df:f4:39:22:d5:
91:c7:f0:7c:df:3e:b7:d3:04:3c:73:81:de:19:3c:14:6b:17:
d1:b3:ae:5f:ba:d5:57:f7:c5:39:b5:75:05:c1:f0:c6:81:8a:
6f:67:b9:ba:e9:d5:88:83:70:47:bc:b5:9a:67:3b:5e:50:c1:
76:cd:81:3a:57:db:36:54:1c:b8:e6:91:a3:2d:4d:2e:4b:c6:
21:70:bc:c2:6b:40:6e:1a:d2:28:75:5f:e7:d9:2c:34:49:b6:
a7:7a:1c:03:7c:5f:b1:05:b8:18:b1:0d:f0:31:09:45:2b:34:
e9:58:9d:d2:d6:04:a3:ad:fb:56:77:56:4e:f1:b9:a5:05:6c:
fa:eb:7b:69:2b:f4:05:14:b9:ad:d1:05:7b:f7:71:e3:a5:af:
58:21:3c:43:e5:26:69:07:35:eb:5e:03:d9:2f:97:eb:cf:3e:
57:db:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org