Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/11RItyJakA9piruWS-aBzXkP7lo.roa
File: 11RItyJakA9piruWS-aBzXkP7lo.roa (raw, json)
Hash identifier: Ec89DyBq5qwCzrlMSgQsYigsdUKBEa9iTcsM13elnDM=
Subject key identifier: D7:54:48:B7:22:5A:90:0F:69:8A:BB:96:4B:E6:81:CD:79:0F:EE:5A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C80F320A636C758508A6B1E1A3F13307C
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/11RItyJakA9piruWS-aBzXkP7lo.roa
Signing time: Tue 19 Dec 2023 07:21:06 +0000
ROA not before: Tue 19 Dec 2023 07:21:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1
IP address blocks: 45.66.229.0/24 maxlen: 24
87.121.100.0/24 maxlen: 24
87.121.101.0/24 maxlen: 24
194.59.30.0/24 maxlen: 24
88.218.76.0/22 maxlen: 24
84.21.173.0/24 maxlen: 24
87.120.64.0/23 maxlen: 24
87.120.89.0/24 maxlen: 24
94.103.126.0/24 maxlen: 24
87.121.57.0/24 maxlen: 24
87.121.56.0/24 maxlen: 24
194.169.174.0/24 maxlen: 24
87.120.220.0/23 maxlen: 24
94.156.78.0/24 maxlen: 24
87.120.35.0/24 maxlen: 24
87.120.34.0/24 maxlen: 24
87.120.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:80:f3:20:a6:36:c7:58:50:8a:6b:1e:1a:3f:13:30:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 19 07:21:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d75448b7225a900f698abb964be681cd790fee5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8d:19:34:8a:07:2d:4f:87:68:1e:12:98:ff:
2d:90:13:47:c3:f7:d3:0e:e1:8a:67:b3:43:c1:a9:
6a:5c:ba:06:cd:df:81:91:54:c9:e7:05:40:61:83:
14:b1:47:ac:61:40:ad:a2:5c:c8:9d:cf:15:8b:1e:
aa:69:91:54:3e:8d:6e:16:19:06:97:f3:35:c4:a4:
14:5c:ff:e2:63:ba:7f:76:80:ce:c0:55:5f:71:4b:
53:39:ff:7b:fd:fc:92:e7:61:78:d4:04:5e:21:6e:
e1:85:79:4c:c2:6a:50:28:d1:8e:cf:37:cd:b0:2c:
5a:09:06:71:17:35:10:7d:9e:82:d7:e6:63:3d:c9:
c4:8d:7e:a2:5e:d9:fd:a0:8e:57:95:b5:98:3a:86:
25:5f:cc:da:68:08:1b:29:53:d6:2b:c3:c7:6c:c2:
5f:e3:a3:46:76:a5:89:52:a9:2f:9c:11:2c:a8:2c:
26:dd:21:b6:bb:62:be:c6:9e:8f:d5:07:e4:4a:4d:
47:d2:39:e9:cb:63:25:80:fe:ff:73:a7:cb:4a:92:
f4:85:b8:26:5d:8a:ed:05:b3:8e:85:f3:3a:07:d1:
e8:6c:40:73:95:d2:f2:60:6f:82:7e:ee:fe:80:eb:
a5:ba:ad:ae:6e:63:7e:04:c2:5c:3c:9a:5d:2c:65:
e8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:54:48:B7:22:5A:90:0F:69:8A:BB:96:4B:E6:81:CD:79:0F:EE:5A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/11RItyJakA9piruWS-aBzXkP7lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.229.0/24
84.21.173.0/24
87.120.32.0/24
87.120.34.0/23
87.120.64.0/23
87.120.89.0/24
87.120.220.0/23
87.121.56.0/23
87.121.100.0/23
88.218.76.0/22
94.103.126.0/24
94.156.78.0/24
194.59.30.0/24
194.169.174.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:88:7d:ea:79:31:4b:86:4e:44:d7:87:78:ef:45:b6:cf:39:
d1:b6:42:44:65:42:14:33:23:1b:b9:5e:f4:eb:ff:9b:59:10:
89:30:fc:48:28:1b:43:5c:7c:db:3f:6f:83:b1:e2:cc:fe:e9:
b4:b4:c6:8a:c5:04:de:35:3b:62:72:66:c9:3c:c0:04:94:21:
e3:de:3f:c0:55:8b:ff:6f:d5:21:1e:3d:ef:67:7c:0c:a0:74:
14:13:1b:16:07:b2:31:66:41:16:ae:a9:5d:f9:67:83:97:a2:
c6:86:90:b3:ba:e6:ea:2d:ef:85:9d:cc:68:b1:7b:fc:5c:65:
db:45:92:8a:0b:fd:f8:11:65:1f:51:b2:2e:89:81:ea:e7:98:
47:89:7f:10:33:2e:d1:49:af:89:2f:36:7e:b4:b1:8e:5f:76:
8e:70:54:a9:5d:09:9f:f2:9e:ca:e4:9c:72:be:49:80:e6:2b:
76:23:df:d3:45:c5:ab:1a:58:73:d4:8c:3f:61:b9:41:57:e6:
a3:44:eb:2f:d2:87:0f:5c:39:d6:9a:3a:f7:78:e1:85:4a:80:
61:41:6c:b4:ce:f0:45:b2:dc:0a:bd:30:ea:a2:81:1c:20:f7:
a5:48:25:37:21:93:94:b0:3c:39:37:3c:4b:1e:1c:c6:1e:b4:
fd:3f:fc:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 23 10:53:00 2023 by rpki-client on console-ams.rpki-client.org