Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yyCrlG-1AYd16N4t9V5LeimYrjc.roa
File: yyCrlG-1AYd16N4t9V5LeimYrjc.roa (raw, json)
Hash identifier: J0iKvidmfi2G8E7A2pQUAswFTjV5LvyhRe8P610RZmY=
Subject key identifier: CB:20:AB:94:6F:B5:01:87:75:E8:DE:2D:F5:5E:4B:7A:29:98:AE:37
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018746B93294A8E522C90587545893CA2047
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yyCrlG-1AYd16N4t9V5LeimYrjc.roa
Signing time: Mon 03 Apr 2023 10:45:54 +0000
ROA not before: Mon 03 Apr 2023 10:45:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 185.206.250.0/24 maxlen: 24
45.147.226.0/24 maxlen: 24
185.246.112.0/24 maxlen: 24
185.223.78.0/24 maxlen: 24
45.131.132.0/24 maxlen: 24
45.131.135.0/24 maxlen: 24
45.131.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 07:41:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:46:b9:32:94:a8:e5:22:c9:05:87:54:58:93:ca:20:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 3 10:45:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb20ab946fb5018775e8de2df55e4b7a2998ae37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:33:da:fb:b6:a5:4c:b9:f4:da:27:06:55:77:
95:05:69:1b:d0:dc:3e:53:95:5b:78:56:b4:f6:3a:
92:37:10:ef:1e:2f:38:66:08:ca:58:86:15:8c:ea:
5d:d0:e5:75:d3:58:7e:48:a0:d6:4e:3d:36:19:5b:
98:e2:63:18:09:47:52:fe:1e:c8:d0:21:de:24:61:
93:ca:89:7a:8b:67:4d:d3:46:82:37:1c:62:16:3e:
0c:cf:34:e6:35:cc:de:bf:4a:70:f3:68:8c:7e:f3:
ac:fd:ae:14:b8:1a:58:aa:eb:a7:18:35:3a:c4:e3:
fa:e9:26:3e:3e:d6:fc:d3:66:c4:5c:24:8b:59:5d:
8a:4e:0f:0b:5d:3d:a2:83:d9:4d:13:3a:c2:03:2e:
1e:96:1b:c9:67:c0:7a:af:08:a2:86:62:16:a2:37:
a5:ed:d0:32:29:6a:26:64:a6:02:ef:e5:78:44:ea:
e6:cc:2e:e8:fc:ae:a7:81:08:05:d5:05:0f:75:a2:
08:e1:b9:69:0e:a8:42:03:ed:10:e2:5b:34:cf:a6:
7a:81:35:2e:ed:de:02:c9:b8:8d:df:4f:68:85:ca:
01:62:c6:59:e6:01:dd:88:36:49:65:09:86:3d:65:
c8:bb:d9:6d:a1:d8:74:0e:69:e3:87:a1:a0:56:99:
81:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:20:AB:94:6F:B5:01:87:75:E8:DE:2D:F5:5E:4B:7A:29:98:AE:37
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/yyCrlG-1AYd16N4t9V5LeimYrjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.132.0/23
45.131.135.0/24
45.147.226.0/24
185.206.250.0/24
185.223.78.0/24
185.246.112.0/24
Signature Algorithm: sha256WithRSAEncryption
46:97:00:6e:6a:06:4b:7c:9e:83:b3:4b:6c:de:19:20:22:3c:
84:da:0f:0b:79:06:d1:95:01:a5:69:7f:e7:1f:52:5f:2e:dc:
30:34:b8:92:77:33:f9:47:28:0f:61:9f:30:a3:aa:f0:ab:f5:
0d:25:d5:6d:8e:a3:07:0c:7c:13:57:cc:8b:ae:f8:28:3c:a0:
36:ea:e3:3f:1e:a6:d6:64:6b:09:7f:90:d1:b5:fb:65:74:f1:
8e:1e:5b:9e:92:f5:e5:16:24:a8:f1:26:ab:1d:6a:e6:f3:9f:
60:3b:a1:b8:d3:c9:a9:5f:55:65:1a:21:5f:01:66:ad:5e:13:
c5:ec:1d:bf:aa:af:19:48:65:ac:13:9b:92:4d:5d:f6:1c:b8:
3a:0c:15:f2:c9:3d:df:e5:cf:eb:83:aa:b4:9d:90:d6:8c:e4:
69:85:2f:7e:a0:99:50:f2:c2:4e:e7:b7:a7:93:3b:3c:3f:90:
01:3f:ee:7a:f7:7f:63:98:3d:ce:d0:6f:54:48:f3:d8:ee:01:
c0:13:89:7a:32:02:9d:ab:87:57:67:c9:3f:4e:bc:d6:b4:34:
0b:17:ae:72:10:bd:69:50:32:2b:56:07:2e:33:8b:76:ac:52:
1f:43:f5:9d:92:6e:5b:66:b9:7d:02:5f:89:e8:67:5c:24:d6:
8e:8c:a9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:44 2024 by rpki-client on console-fra.rpki-client.org