Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/fP8aj4T5W7EOzLWcb961g86BZT8.roa
File: fP8aj4T5W7EOzLWcb961g86BZT8.roa (raw, json)
Hash identifier: MwSYnAV2UN0P7j2bREPLa30XhcWQ6T96FNPSoLzxGlk=
Subject key identifier: 7C:FF:1A:8F:84:F9:5B:B1:0E:CC:B5:9C:6F:DE:B5:83:CE:81:65:3F
Certificate issuer: /CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Certificate serial: 0188172A038F4D5F8705ACD3898757994E90
Authority key identifier: 6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/fP8aj4T5W7EOzLWcb961g86BZT8.roa
Signing time: Sat 13 May 2023 22:10:09 +0000
ROA not before: Sat 13 May 2023 22:10:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198507
IP address blocks: 45.14.176.0/22 maxlen: 24
45.81.192.0/22 maxlen: 24
37.143.55.0/24 maxlen: 24
37.143.52.0/22 maxlen: 22
185.132.72.0/24 maxlen: 24
185.132.75.0/24 maxlen: 24
185.132.73.0/24 maxlen: 24
185.132.74.0/24 maxlen: 24
45.81.195.0/24 maxlen: 24
45.9.196.0/22 maxlen: 24
2a06:e040:7601::/48 maxlen: 48
2a06:e040:5901::/48 maxlen: 48
2a06:e040:3501::/48 maxlen: 48
2a06:e040:6900::/40 maxlen: 40
2a06:e040::/32 maxlen: 32
2a06:e043::/32 maxlen: 32
2a06:e040:3502::/48 maxlen: 48
2a06:e044:10::/48 maxlen: 48
2a06:e040:7603::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 May 2023 22:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:17:2a:03:8f:4d:5f:87:05:ac:d3:89:87:57:99:4e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d42cff18334b2ff76b15ad944a8a9135e90568c
Validity
Not Before: May 13 22:10:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cff1a8f84f95bb10eccb59c6fdeb583ce81653f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2b:53:8f:ce:be:9f:d8:cb:39:01:32:10:15:
c7:bb:4e:b8:ad:93:88:b5:37:4b:ef:51:d8:de:73:
17:a2:fe:ac:63:69:d8:8b:02:6f:95:02:3c:7f:22:
fd:b6:06:76:1a:66:57:2a:e2:a4:27:7e:f6:3d:22:
0b:8b:54:d3:c5:56:ed:7a:78:0d:d9:5b:3f:86:5e:
a1:26:a9:a9:7a:6d:a5:01:c4:20:fa:b2:25:7f:2e:
95:56:82:5a:6c:78:3e:1f:31:00:d1:55:b1:ac:4c:
23:c4:11:27:c4:34:4e:6f:f8:02:80:94:aa:02:22:
2e:de:f9:05:a3:1d:67:5e:4e:c4:28:ad:01:39:90:
cd:99:00:21:0c:a2:c5:10:a6:0e:ac:b2:b2:21:5f:
81:a2:9d:9b:a0:c2:03:b8:39:7e:b3:92:dc:90:07:
fe:65:38:21:69:71:f8:01:ce:32:94:ce:09:9c:6c:
9d:09:fa:1b:25:01:96:f2:fd:59:ed:11:51:17:83:
d4:fe:38:ad:52:d0:6d:80:df:fa:01:15:8e:34:76:
d4:48:71:1f:40:96:d8:4b:9f:1b:07:3a:d1:05:94:
2a:22:10:6a:7a:fd:09:0c:eb:e5:4f:ac:6f:f1:ed:
8c:dd:a1:10:4f:22:d4:7a:ac:4e:02:43:8a:a7:75:
41:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FF:1A:8F:84:F9:5B:B1:0E:CC:B5:9C:6F:DE:B5:83:CE:81:65:3F
X509v3 Authority Key Identifier:
keyid:6D:42:CF:F1:83:34:B2:FF:76:B1:5A:D9:44:A8:A9:13:5E:90:56:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bULP8YM0sv92sVrZRKipE16QVow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/fP8aj4T5W7EOzLWcb961g86BZT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/60d930-bd46-4517-ab0e-a6ce8355b2e0/1/bULP8YM0sv92sVrZRKipE16QVow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.52.0/22
45.9.196.0/22
45.14.176.0/22
45.81.192.0/22
185.132.72.0/22
IPv6:
2a06:e040::/32
2a06:e043::/32
2a06:e044:10::/48
Signature Algorithm: sha256WithRSAEncryption
7c:5b:33:1e:a7:12:12:9d:7a:fe:0a:22:75:45:13:23:04:79:
75:07:62:ae:33:19:21:8b:e9:7f:4b:d9:c2:17:1e:04:c8:5b:
2a:14:4a:e9:2a:44:20:89:91:83:be:a0:a9:ed:00:98:6d:61:
98:5e:4c:f7:61:b8:a2:74:f3:f8:b5:ce:5a:8b:0a:cc:c4:02:
50:9a:0b:01:54:f2:92:44:28:f7:9e:ea:55:8b:23:0c:33:c3:
dd:89:40:2d:0f:3b:48:a4:d0:c1:8a:37:1f:4b:6e:1a:49:9c:
e5:71:f6:2a:0c:67:11:1f:f4:32:6e:51:35:77:e1:99:f4:c9:
0f:3b:57:b8:8a:87:44:3b:7a:6f:d7:ad:58:b1:19:45:fa:ed:
d5:79:85:5b:43:2a:c2:94:ce:78:21:44:35:65:0f:f3:cf:de:
fa:b3:72:cb:3d:0d:73:70:ff:56:07:89:22:f4:f8:e9:fc:32:
fd:d1:93:0b:4c:41:6f:fb:9e:74:03:ae:0d:af:5b:15:77:5c:
d1:e4:43:5c:67:df:56:0a:46:81:99:5d:24:d7:e3:5f:48:54:
47:d0:61:09:55:c6:6f:e0:61:cb:81:1e:1d:61:c5:12:01:b9:
f3:c9:da:ef:1b:29:94:ac:f7:ad:de:9f:60:7e:b2:8e:61:a6:
b5:de:f9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:38 2024 by rpki-client on console-ams.rpki-client.org