Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-GHqWdSlC4Kh36dhgMuPT07lfBc.roa
File: 1-GHqWdSlC4Kh36dhgMuPT07lfBc.roa (raw, json)
Hash identifier: rBLg2Ci6y1RjxFBtgMHeZdneokPClY5nsw8thViPRZU=
Subject key identifier: F8:61:EA:59:D4:A5:0B:82:A1:DF:A7:61:80:CB:8F:4F:4E:E5:7C:17
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C81C5B2A119FED231395A6BB8BEF8E964
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-GHqWdSlC4Kh36dhgMuPT07lfBc.roa
Signing time: Tue 19 Dec 2023 11:11:06 +0000
ROA not before: Tue 19 Dec 2023 11:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.218.84.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.252.176.0/24 maxlen: 24
147.78.101.0/24 maxlen: 24
147.78.100.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
185.226.172.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
185.216.84.0/22 maxlen: 24
45.88.90.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
93.123.116.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:c5:b2:a1:19:fe:d2:31:39:5a:6b:b8:be:f8:e9:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 19 11:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f861ea59d4a50b82a1dfa76180cb8f4f4ee57c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:46:b6:22:cd:43:29:b4:1a:0a:5d:e3:3d:
cd:af:79:f3:2f:d3:5e:f4:96:f9:5f:6b:8c:13:e2:
78:ba:1b:c5:38:8c:47:fe:76:0f:b2:c8:4e:7f:e2:
5b:4d:6a:44:0c:cb:2a:4d:fc:d7:a3:a9:38:a1:dd:
31:d3:04:5f:23:d6:8f:39:30:9b:e7:a2:3b:c8:41:
6e:61:33:40:b8:95:9c:59:04:1a:9e:9c:c4:11:2f:
63:43:f9:f6:b9:87:db:7a:29:5d:ea:c3:27:32:b8:
3b:26:e1:67:cd:3b:f9:b6:d9:69:e7:96:5a:5e:b1:
dd:69:97:95:af:9a:f1:c0:3a:95:b0:e9:a8:ba:51:
86:cf:d7:d7:76:11:3b:48:7c:77:8f:d8:79:7f:5a:
ca:3b:58:f6:d6:30:b3:de:1b:e3:16:07:88:ac:b3:
37:07:85:d8:51:84:3f:c5:1c:ae:34:85:10:5f:f5:
68:8a:8a:c7:b8:96:3a:20:80:3a:28:9d:b9:1b:6a:
a1:af:c5:b5:91:f9:c3:c9:40:ae:f9:d9:0d:36:b1:
b1:9d:b1:0e:25:98:65:cb:20:b8:3d:4e:e7:91:85:
9e:e9:0c:cf:71:7b:9d:20:f3:d1:83:95:5d:ad:b7:
be:56:91:44:87:95:2b:2a:ac:56:4a:fb:45:0c:fd:
16:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:61:EA:59:D4:A5:0B:82:A1:DF:A7:61:80:CB:8F:4F:4E:E5:7C:17
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-GHqWdSlC4Kh36dhgMuPT07lfBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
93.123.116.0/24
94.154.161.0-94.154.163.255
94.156.239.0/24
147.78.100.0-147.78.102.255
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.172.0/24
185.226.175.0/24
185.252.176.0/24
194.180.36.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:30:2e:11:11:58:36:ca:7c:b7:b1:b8:e4:6d:e3:31:4f:14:
1b:27:76:6c:3e:c2:87:30:7f:2a:61:a3:de:6f:cc:37:a4:2c:
8d:a7:e1:66:2a:47:0c:c6:2d:dd:fc:e3:09:d7:17:98:02:aa:
c9:f5:c2:f9:a2:2d:b8:02:04:15:b1:cb:25:c7:7f:26:37:90:
89:99:f3:6c:5b:b9:2f:fb:07:1c:34:17:4a:aa:79:75:2f:e9:
0d:36:1a:69:98:3c:30:ca:d6:96:6c:60:e6:76:92:d5:8b:3b:
29:a6:2d:55:fb:29:22:43:cc:d8:92:c6:fd:6e:87:de:37:23:
51:f2:5b:c5:df:17:2d:d1:58:e2:94:83:d7:24:2d:79:fb:3e:
a5:4b:db:df:86:63:4b:05:60:11:0e:f5:ba:6f:17:b5:e9:19:
d0:84:9a:63:d7:27:c7:c7:36:c5:5f:ab:aa:7a:d3:2f:62:45:
7d:72:72:44:39:9e:e1:05:8a:89:75:47:fe:8c:13:08:39:73:
27:a2:f2:16:0a:48:4e:e0:20:0a:cb:29:22:84:5e:fb:fe:4f:
d3:65:49:5f:45:50:d6:b6:d4:da:f6:84:c6:c6:6b:52:b5:70:
59:9c:40:0a:80:a3:8b:02:27:c9:c2:8f:0e:e8:06:41:e4:ad:
19:7e:d8:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 08:57:51 2023 by rpki-client on console-ams.rpki-client.org