Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yCLfEtLI24OnqKanFGqQZTLvahw.roa
File: yCLfEtLI24OnqKanFGqQZTLvahw.roa (raw, json)
Hash identifier: zwCXh1ahUmHdSR/P6nbzBZPgOhl0/GWUwnBvBXAxrqY=
Subject key identifier: C8:22:DF:12:D2:C8:DB:83:A7:A8:A6:A7:14:6A:90:65:32:EF:6A:1C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A02FF117B289A5F7A6DCDCA853B3599E3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yCLfEtLI24OnqKanFGqQZTLvahw.roa
Signing time: Thu 17 Aug 2023 10:16:25 +0000
ROA not before: Thu 17 Aug 2023 10:16:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.225.22.0/24 maxlen: 24
185.225.20.0/24 maxlen: 24
185.230.52.0/24 maxlen: 24
185.228.75.0/24 maxlen: 24
185.251.229.0/24 maxlen: 24
185.251.230.0/24 maxlen: 24
185.251.231.0/24 maxlen: 24
185.225.0.0/23 maxlen: 23
185.194.177.0/24 maxlen: 24
185.223.81.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
185.223.80.0/24 maxlen: 24
185.222.31.0/24 maxlen: 24
185.222.30.0/24 maxlen: 24
193.58.144.0/24 maxlen: 24
193.58.146.0/23 maxlen: 24
193.58.147.0/24 maxlen: 24
45.147.224.0/24 maxlen: 24
45.8.21.0/24 maxlen: 24
194.5.65.0/24 maxlen: 24
185.220.251.0/24 maxlen: 24
185.220.250.0/24 maxlen: 24
185.210.232.0/24 maxlen: 24
185.210.235.0/24 maxlen: 24
185.227.145.0/24 maxlen: 24
185.227.144.0/24 maxlen: 24
185.226.106.0/24 maxlen: 24
185.218.23.0/24 maxlen: 24
185.221.20.0/24 maxlen: 24
185.209.75.0/24 maxlen: 24
185.246.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 12:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:ff:11:7b:28:9a:5f:7a:6d:cd:ca:85:3b:35:99:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 17 10:16:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c822df12d2c8db83a7a8a6a7146a906532ef6a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0a:46:81:3d:52:b7:db:62:28:18:37:29:f0:
c7:db:91:b1:5b:32:12:78:4b:36:d3:50:f5:e0:7a:
be:9a:dd:aa:38:81:66:18:b4:ac:83:16:77:a2:52:
e5:46:69:59:7b:59:53:d2:4f:09:ca:f0:04:ee:60:
9b:75:12:20:b4:4d:51:cf:0e:1c:f3:94:9b:c0:da:
9f:c8:15:52:a9:4f:32:49:a5:56:7f:2d:e1:28:10:
ca:bd:73:39:70:d6:5e:70:4d:4d:96:19:48:dc:51:
95:2b:d1:7c:55:13:1c:76:9b:3a:e2:03:7b:6c:4e:
94:58:9f:83:c2:ae:95:c8:ff:45:34:0c:78:cc:83:
0a:da:03:1a:c8:0f:97:53:3b:97:14:77:e6:8a:f4:
6d:50:81:ac:b8:ac:61:6f:7d:12:ae:65:14:27:a2:
00:bc:84:b3:0b:7a:53:26:1d:01:24:a5:00:52:f7:
18:ff:a7:54:98:3b:a8:cc:bf:98:dd:fa:fa:26:ed:
ce:b9:e7:63:f2:85:ab:52:5b:98:8b:cc:a7:2a:b7:
e0:66:72:ef:fa:c4:bf:a6:5f:6b:7d:59:d0:4f:c7:
b8:58:ca:08:a7:43:b0:54:bb:8d:fe:c3:72:ce:60:
9a:45:bf:54:08:f4:1d:16:9e:87:99:61:0b:e2:5f:
e2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:22:DF:12:D2:C8:DB:83:A7:A8:A6:A7:14:6A:90:65:32:EF:6A:1C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yCLfEtLI24OnqKanFGqQZTLvahw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.21.0/24
45.147.224.0/24
185.194.177.0/24
185.209.75.0/24
185.210.232.0/24
185.210.235.0/24
185.218.23.0/24
185.220.250.0/23
185.221.20.0/24
185.222.30.0/23
185.223.80.0/23
185.223.83.0/24
185.225.0.0/23
185.225.20.0/24
185.225.22.0/24
185.226.106.0/24
185.227.144.0/23
185.228.75.0/24
185.230.52.0/24
185.246.115.0/24
185.251.229.0-185.251.231.255
193.58.144.0/24
193.58.146.0/23
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:98:6b:90:68:b2:ed:22:00:d1:4b:ca:17:cd:46:48:ed:91:
ba:cb:59:04:47:47:56:fe:5d:da:66:93:4f:6f:77:62:14:c3:
d4:03:1c:dd:6b:92:e8:3e:d2:c7:8f:36:88:55:56:b4:69:ae:
9d:c3:37:30:5f:a6:5d:f1:b5:88:04:63:41:6f:1e:01:3d:15:
e9:5d:61:d6:a6:5d:54:28:d3:a5:78:a4:eb:9a:ea:c9:d6:08:
70:80:a5:76:79:5a:bd:47:03:b7:38:5b:03:01:30:99:e6:00:
20:2f:4c:73:a4:8d:92:9a:2c:10:75:1f:66:f6:e2:c6:53:53:
53:c3:d1:1e:ec:1e:d6:24:b1:ac:2e:0f:19:e8:44:67:2e:49:
6a:80:dc:01:68:dc:df:d3:86:d8:85:c8:9e:5b:fa:4a:77:05:
5c:f5:26:fe:e4:e8:a6:f0:e8:81:b3:57:59:b4:3b:f7:22:9e:
58:e6:29:a1:73:04:69:f5:a0:66:45:ae:c2:bf:87:4f:d3:87:
15:a4:77:b6:d6:93:44:cf:49:5d:07:af:6a:62:3b:52:8d:65:
46:06:50:db:51:d2:d1:1f:c0:37:8a:ec:50:e4:4e:39:36:1e:
b6:7c:67:a3:61:70:a9:4c:70:62:3c:81:f1:1c:cb:47:ba:90:
cd:6a:be:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org