Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/mAtTQxWFxPOjeKiEkfLWQexLiBI.roa
File: mAtTQxWFxPOjeKiEkfLWQexLiBI.roa (raw, json)
Hash identifier: ViVUk5Hea5vroOhpLCiP2l2UbL2bT8bDYLm6PDdqv+Q=
Subject key identifier: 98:0B:53:43:15:85:C4:F3:A3:78:A8:84:91:F2:D6:41:EC:4B:88:12
Certificate issuer: /CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Certificate serial: 018D19321EC0E196AD1F5667DEE005020406
Authority key identifier: 66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/mAtTQxWFxPOjeKiEkfLWQexLiBI.roa
Signing time: Wed 17 Jan 2024 20:52:11 +0000
ROA not before: Wed 17 Jan 2024 20:52:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216279
IP address blocks: 45.83.200.0/22 maxlen: 22
185.114.156.0/22 maxlen: 22
185.229.32.0/22 maxlen: 22
2a03:3a60::/32 maxlen: 32
2a03:3a60:a22::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Jan 2024 10:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:19:32:1e:c0:e1:96:ad:1f:56:67:de:e0:05:02:04:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f8206e3311df394f48389b8122b94aa1f0b05c
Validity
Not Before: Jan 17 20:52:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=980b53431585c4f3a378a88491f2d641ec4b8812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:45:12:53:b3:3c:f1:d1:17:58:21:69:19:14:
5c:07:1e:0c:4a:75:88:12:38:e7:82:aa:c9:f4:d8:
0c:48:e3:8f:e6:23:32:76:d1:b1:19:ff:e3:34:1d:
0c:3a:e4:dd:99:68:01:49:4d:ab:c0:98:9d:ff:c3:
df:1a:d9:9a:53:3a:ef:a5:b7:02:7b:18:8d:b3:93:
0c:68:a8:bd:12:7b:fd:42:63:42:54:63:6b:3a:d7:
41:3a:8c:04:2e:15:f5:df:0f:61:92:c3:a7:03:45:
9b:4a:0d:d2:e9:b7:a7:1b:fe:95:2f:29:f6:20:68:
45:ce:1a:80:6c:82:b2:2e:4e:02:d5:87:52:d1:16:
90:1c:3d:9b:2b:52:ca:14:82:97:a6:8e:f4:bc:94:
f1:eb:97:e5:f0:ea:b8:28:94:f7:78:a6:af:3a:7c:
54:6e:8a:e6:3b:5c:66:09:e0:2d:d0:33:08:94:91:
4f:67:8c:1e:02:a0:93:ec:61:48:0a:27:b4:b4:a8:
08:a6:8c:57:30:dd:fe:7d:50:fd:46:f3:97:f0:f1:
42:8b:5e:a8:90:75:38:b0:7f:dc:ba:a1:f5:49:e9:
82:08:c5:4f:05:49:ed:e7:d8:f8:cf:9a:00:c6:9d:
05:fa:14:ad:97:1b:40:82:65:d7:25:7e:4f:3b:81:
d2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:0B:53:43:15:85:C4:F3:A3:78:A8:84:91:F2:D6:41:EC:4B:88:12
X509v3 Authority Key Identifier:
keyid:66:F8:20:6E:33:11:DF:39:4F:48:38:9B:81:22:B9:4A:A1:F0:B0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvggbjMR3zlPSDibgSK5SqHwsFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/mAtTQxWFxPOjeKiEkfLWQexLiBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/be1a25-5855-4aec-8e18-bbfd45c84bea/1/ZvggbjMR3zlPSDibgSK5SqHwsFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.200.0/22
185.114.156.0/22
185.229.32.0/22
IPv6:
2a03:3a60::/32
Signature Algorithm: sha256WithRSAEncryption
51:e5:1d:ec:56:ec:5a:79:d2:c4:8e:18:e5:48:df:36:58:8f:
c9:af:fe:67:5a:08:62:d3:4f:5b:a7:59:9f:23:5f:d5:c6:2d:
4a:fc:fe:84:0b:ad:91:3d:6b:12:d9:d6:16:53:7b:d0:57:c2:
67:3c:59:3d:3f:56:02:d3:e5:89:bb:c0:1c:be:8d:75:48:22:
d7:74:f0:f2:a6:0c:4a:60:62:a8:b9:0c:53:ea:5b:4d:99:eb:
73:92:ad:6d:8a:f7:c1:8f:62:65:5b:fc:2e:73:86:59:19:a9:
a5:c5:3a:2a:f5:21:26:60:61:a2:0d:52:fa:56:d6:48:83:ca:
65:6f:25:43:b6:6b:f1:31:2b:1f:ec:60:87:57:12:d2:73:2e:
79:42:bc:f3:2a:58:ab:ba:50:8e:93:b6:50:36:58:1f:75:9b:
41:a4:df:be:48:8c:63:8d:77:48:0b:89:54:24:c7:c7:65:4d:
e5:99:e9:b1:dd:77:86:cd:0a:89:8a:53:5a:7b:80:44:d0:87:
80:03:59:71:c4:c3:81:8a:be:10:02:54:50:20:eb:f6:53:53:
c6:9a:58:26:61:8a:e9:20:ef:f7:1f:7e:88:e7:d0:8f:1c:30:
8c:d4:27:5f:a5:55:83:3b:41:26:c1:ba:fd:07:68:63:d1:99:
1e:9f:4a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:01 2024 by rpki-client on console-ams.rpki-client.org