Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-8KlYQpyGdJIHeRAjbYF2_imR-E.roa
File: 1-8KlYQpyGdJIHeRAjbYF2_imR-E.roa (raw, json)
Hash identifier: q5eHbVcPT4z6y+oxBR2lc0vTX/XXBNu39BHEZbqcShs=
Subject key identifier: FB:C2:A5:61:0A:72:19:D2:48:1D:E4:40:8D:B6:05:DB:F8:A6:47:E1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EEFB2093D37B35E3C8371FCC8C51A7C8A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-8KlYQpyGdJIHeRAjbYF2_imR-E.roa
Signing time: Thu 18 Apr 2024 05:33:26 +0000
ROA not before: Thu 18 Apr 2024 05:33:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.8.93.0/24 maxlen: 24
45.12.255.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
82.115.211.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.25.216.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
212.87.207.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 08:27:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:b2:09:3d:37:b3:5e:3c:83:71:fc:c8:c5:1a:7c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 18 05:33:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbc2a5610a7219d2481de4408db605dbf8a647e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:42:b9:91:b9:cc:61:f2:06:13:20:70:1c:
39:e8:e0:68:fc:7d:03:4d:02:ba:da:82:a8:02:83:
c7:d3:23:54:ab:09:e2:6e:ec:8d:8f:4b:3e:64:7c:
ce:1a:99:b8:e7:a9:5e:68:64:af:99:cb:13:8e:eb:
ce:ec:05:6b:ca:2c:b1:d5:b9:fc:2c:33:fa:34:9b:
aa:83:3d:c6:f8:b0:db:8a:6a:aa:46:a4:e0:23:7c:
fa:a2:1e:1d:e9:ec:d7:07:3a:99:4c:57:71:2f:d8:
5d:03:51:31:99:e3:06:d4:0f:64:d6:da:9e:a8:f8:
fa:dd:a1:da:b4:a5:39:98:a6:48:4f:3c:a8:61:f8:
82:d9:b8:7c:db:be:36:25:02:20:a7:e6:71:2c:8d:
d7:b5:20:3d:6e:59:70:29:86:58:7f:90:00:21:34:
cf:34:7c:f7:f8:75:21:29:8e:a6:c5:00:a4:84:db:
54:92:6a:18:4e:ee:7e:69:52:22:44:f4:49:00:d6:
1d:42:d3:75:b1:14:3d:59:1b:45:b8:b0:c0:d1:79:
72:a4:6d:c9:8c:ae:1c:0f:98:6d:53:35:c2:f4:b2:
c7:bf:db:8d:48:5f:35:fd:d8:33:73:09:7c:40:19:
20:28:f5:3e:09:68:6c:11:ea:1d:5f:35:d0:96:de:
9a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C2:A5:61:0A:72:19:D2:48:1D:E4:40:8D:B6:05:DB:F8:A6:47:E1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-8KlYQpyGdJIHeRAjbYF2_imR-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
45.12.255.0/24
45.66.228.0/24
82.115.211.0/24
141.98.5.0/24
178.215.238.0/24
193.25.216.0/24
193.149.28.0/22
194.180.36.0/24
212.87.207.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ec:22:43:a0:de:50:15:98:91:4f:c6:af:45:ef:64:c8:78:
d6:0b:98:25:d8:c1:0e:ca:63:eb:03:a5:ac:f2:85:ba:2f:25:
77:e5:75:a6:ec:9d:45:08:f1:ac:66:2e:6a:2d:aa:5f:af:1d:
b3:67:a4:0a:9e:6f:92:02:ec:f9:fc:a8:47:1c:99:73:c0:44:
b6:c9:3c:f5:31:2d:27:50:46:25:ad:74:ae:ba:12:c4:fe:36:
2b:d9:56:43:93:26:65:e9:3f:c7:1a:0f:70:3f:7f:e4:ca:a7:
31:c5:b8:67:12:10:fd:4f:72:2e:6f:38:f0:3b:db:fd:00:8c:
49:6e:50:30:37:1f:f9:19:02:97:81:bd:21:2b:0d:c3:46:72:
22:24:fd:84:5c:63:0c:db:75:12:86:71:76:aa:42:da:38:1c:
a3:11:6e:f4:ca:65:d9:a2:04:ca:a3:c9:8f:6d:74:36:cb:36:
2c:c9:43:71:6b:49:a7:ef:21:aa:40:e0:dd:8f:1b:f5:8b:ba:
16:26:33:19:74:7c:6e:b0:b0:d3:ed:41:0a:67:86:b1:92:2f:
95:61:0e:27:1b:72:fe:58:cc:29:2b:3a:e5:48:cb:74:92:c7:
68:db:c7:8c:99:51:81:0f:51:65:22:f5:b7:f4:78:76:a9:9a:
81:c6:2e:2b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:22 2024 by rpki-client on console-ams.rpki-client.org