Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xmUiYU43Biderrfs644mEuabLHE.roa
File: xmUiYU43Biderrfs644mEuabLHE.roa (raw, json)
Hash identifier: 1PFmYma5Vq4LX4dQ3t1r4EW+SlpK8PIr4irBOKdocb8=
Subject key identifier: C6:65:22:61:4E:37:06:27:5E:AE:B7:EC:EB:8E:26:12:E6:9B:2C:71
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0186BB4C89AC873D53A2237418DF31F2837F
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xmUiYU43Biderrfs644mEuabLHE.roa
Signing time: Tue 07 Mar 2023 09:00:00 +0000
ROA not before: Tue 07 Mar 2023 09:00:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.225.20.0/24 maxlen: 24
185.230.52.0/23 maxlen: 24
185.255.124.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
45.8.20.0/22 maxlen: 24
185.214.108.0/24 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 12:09:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:4c:89:ac:87:3d:53:a2:23:74:18:df:31:f2:83:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 7 09:00:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c66522614e3706275eaeb7eceb8e2612e69b2c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:90:31:73:a9:b5:04:e3:59:c0:c5:33:27:00:
0f:b0:b4:d8:3a:ec:11:5c:d5:4d:69:ed:92:f4:2b:
09:3a:0b:d0:cc:87:06:ef:9d:bc:cf:2f:fe:d1:77:
8a:e5:ac:ca:80:35:ab:04:56:f9:d7:25:2c:7a:48:
6d:74:a4:15:44:a2:b6:3a:0d:17:4b:e0:1f:5c:d6:
25:82:06:fd:51:2e:9a:6f:07:8f:f9:57:90:0c:41:
d1:6a:65:6d:a0:02:0e:17:64:8c:ef:72:de:54:6a:
a6:34:e6:0c:60:21:5a:7f:32:f6:98:6b:fb:66:1d:
8c:93:13:12:c5:f2:8b:93:92:88:cf:08:28:6b:b7:
99:cc:4f:c9:7d:9c:95:11:18:82:18:43:c7:ef:b2:
21:43:37:aa:78:b1:e6:79:59:28:ff:89:2c:d9:27:
4f:be:1a:64:82:1d:c1:f4:c1:2a:b9:a4:6f:8e:39:
bc:ef:86:63:2f:5c:b8:56:19:c3:56:b7:79:4a:83:
8e:b2:9d:90:9a:d4:45:4a:e7:04:5e:1c:dc:09:54:
eb:48:93:a9:47:d6:d7:c7:46:e9:cc:3b:47:05:5f:
c9:24:c1:be:24:3e:bc:46:87:24:42:47:55:38:d9:
f0:d5:b0:75:60:b0:6e:b1:de:02:64:ad:73:0e:4b:
58:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:65:22:61:4E:37:06:27:5E:AE:B7:EC:EB:8E:26:12:E6:9B:2C:71
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/xmUiYU43Biderrfs644mEuabLHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.20.0/22
185.36.204.0/24
185.121.12.0/22
185.206.248.0/24
185.206.251.0/24
185.214.108.0/24
185.223.76.0/24
185.225.20.0/24
185.226.105.0/24
185.226.107.0/24
185.228.74.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
185.251.229.0/24
185.251.231.0/24
185.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:56:47:b7:df:85:29:9f:06:69:b1:d0:a1:e3:45:98:0b:c0:
e5:da:36:4a:c5:07:56:1a:f3:8f:93:47:76:c2:f3:86:04:c0:
75:1b:ce:47:49:96:ca:c3:2a:c1:13:12:ef:e8:88:56:25:fc:
40:51:99:f4:0d:b8:e1:ad:9e:a5:31:da:54:5d:d2:e7:fd:71:
bc:93:36:c0:7c:0e:5b:0e:8b:b5:b2:08:61:3e:03:cf:3e:81:
ac:31:4a:2f:3d:05:e6:a9:4e:1c:2f:c6:2b:f8:86:93:45:42:
c4:13:ee:9d:58:f7:32:85:a8:73:a6:e3:1b:ed:06:d1:d9:2c:
7c:7c:62:44:5a:bf:80:c2:ee:5a:b4:32:3b:f1:29:4e:45:00:
38:62:65:a4:d1:f3:e5:63:5e:b8:70:6c:42:3a:7e:1c:c8:92:
c3:3c:62:04:07:e7:98:70:e3:8f:50:28:5f:97:fc:b3:7a:78:
ec:65:30:40:3b:bb:06:48:b7:a1:36:aa:18:8c:26:9b:1e:da:
1a:d7:e0:13:dd:38:e1:f2:ca:80:fc:62:20:7a:21:51:4c:47:
cd:e5:a4:ba:9f:f2:3c:0d:2d:c3:06:2a:75:76:26:62:81:7f:
fd:ff:24:68:c8:55:52:73:b2:ab:c3:b0:ed:f5:eb:16:36:52:
f4:cf:b5:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org