Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-Pdy6wW-iZwVBLVm4m6zjJmSDnM.roa
File: 1-Pdy6wW-iZwVBLVm4m6zjJmSDnM.roa (raw, json)
Hash identifier: RdmRlmX7jN3ecD3zGaj69JV2rL1T7nPoL1DxppZde1Y=
Subject key identifier: F8:F7:72:EB:05:BE:89:9C:15:04:B5:66:E2:6E:B3:8C:99:92:0E:73
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192C47334ACF9A5F05B9C608A6962C2CAD4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-Pdy6wW-iZwVBLVm4m6zjJmSDnM.roa
Signing time: Fri 25 Oct 2024 16:12:17 +0000
ROA not before: Fri 25 Oct 2024 16:12:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.253.59.0/24 maxlen: 24
45.84.88.0/24 maxlen: 24
45.89.244.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
87.121.218.0/24 maxlen: 24
87.121.219.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
193.8.185.0/24 maxlen: 24
193.168.196.0/24 maxlen: 24
193.168.197.0/24 maxlen: 24
194.113.38.0/24 maxlen: 24
212.87.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Oct 2024 14:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c4:73:34:ac:f9:a5:f0:5b:9c:60:8a:69:62:c2:ca:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 25 16:12:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8f772eb05be899c1504b566e26eb38c99920e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:52:5d:c2:96:45:86:c0:96:21:5f:e4:f6:
21:9f:cd:82:64:95:3e:c7:5a:85:9a:fe:45:25:63:
75:64:52:d2:54:75:db:ba:d2:fd:50:19:ab:15:99:
43:f0:61:8b:c2:89:f5:5f:ae:68:c1:16:c9:5b:94:
3e:21:c3:6a:fe:21:68:1c:b6:94:8d:d4:f4:8a:22:
46:bf:f7:60:ff:1c:41:23:84:d0:2c:b0:3b:28:36:
e8:9f:39:82:da:cb:63:f7:51:34:ed:a1:49:79:22:
e4:fc:33:3e:03:c5:45:3d:e7:57:e4:57:98:ae:85:
d4:b8:c6:61:15:72:b3:d5:cd:20:37:f6:e4:76:27:
aa:cb:23:25:63:06:3a:5f:cd:68:bb:e4:b5:e3:1c:
9c:fe:68:db:7b:55:3a:5a:fd:0e:1d:c2:83:6e:b6:
87:12:fb:b2:be:e2:e9:7b:4d:b1:cf:8e:5d:26:f8:
d1:20:3b:1b:33:ec:37:36:f8:4b:dd:e2:b8:de:9c:
06:a5:4d:7e:03:6b:90:a0:9e:66:8a:cc:9c:96:f3:
68:a9:26:69:f7:60:ee:d2:0c:b7:e8:59:8d:4c:17:
63:5d:b1:4f:a6:a7:00:b5:15:d6:b4:8e:eb:de:e9:
fd:07:de:a7:21:9e:66:bd:d0:92:66:10:be:68:c8:
6d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:F7:72:EB:05:BE:89:9C:15:04:B5:66:E2:6E:B3:8C:99:92:0E:73
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-Pdy6wW-iZwVBLVm4m6zjJmSDnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.59.0/24
45.84.88.0/24
45.89.244.0/24
45.91.193.0/24
87.120.88.0/24
87.121.98.0/24
87.121.218.0/23
109.206.236.0/24
185.246.222.0/24
193.8.185.0/24
193.168.196.0/23
194.113.38.0/24
212.87.220.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:17:97:93:45:b2:51:99:33:49:88:bb:89:1b:8b:45:08:50:
75:e4:14:a4:b2:85:9e:d9:c0:75:a4:75:5d:45:92:94:7a:a3:
95:0e:2b:3f:0b:e9:08:fe:90:7e:e1:07:29:1b:93:e7:92:da:
43:9a:b5:ea:f2:fd:af:ff:3f:18:67:cc:76:a2:2d:33:2c:9c:
7b:8e:56:10:a6:d3:05:3d:3e:b1:b6:bb:18:ea:5b:fd:e7:4e:
ae:7b:25:79:75:1e:24:30:e1:af:7d:ce:df:ad:18:5a:9e:2f:
d5:50:cd:d2:4a:89:f6:a6:88:53:cd:b7:a0:4f:10:99:c4:72:
fa:50:9c:47:ad:a7:58:11:b1:4c:0c:17:12:2d:26:59:54:cf:
74:d2:50:09:aa:71:fb:9e:c2:0b:6c:28:cd:82:75:6d:ea:b8:
a1:22:65:c6:13:d1:72:a3:49:2b:a1:ef:cb:65:1d:ad:d2:d4:
b1:49:af:44:77:7a:56:6e:d8:70:b1:0e:97:dc:ff:9f:26:c9:
18:88:d6:f0:22:a6:ee:66:42:6b:c2:14:d3:84:54:2f:21:71:
b1:6c:6f:c7:7b:c9:c1:8a:cb:7e:34:c7:c6:3a:8d:58:18:62:
3b:9f:91:2e:ae:24:10:c1:ac:0a:ca:9c:ca:15:8b:78:58:a3:
9c:b5:0f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 26 16:41:12 2024 by rpki-client on console-ams.rpki-client.org