Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Kz1DX-TtlYlnPwQuFNQMiIe9d4.roa
File: 1Kz1DX-TtlYlnPwQuFNQMiIe9d4.roa (raw, json)
Hash identifier: UQoNdoAbC3udZDTRlSEwDxw5HWYENXUtxzz7LHr38wU=
Subject key identifier: D4:AC:F5:0D:7F:93:B6:56:25:9C:FC:10:B8:53:50:32:22:1E:F5:DE
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0191DB0479B94C795EFF9C0145BEDFB2CB53
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Kz1DX-TtlYlnPwQuFNQMiIe9d4.roa
Signing time: Tue 10 Sep 2024 08:19:49 +0000
ROA not before: Tue 10 Sep 2024 08:19:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.66.228.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.88.90.0/24 maxlen: 24
45.149.241.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 12:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:04:79:b9:4c:79:5e:ff:9c:01:45:be:df:b2:cb:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 10 08:19:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4acf50d7f93b656259cfc10b8535032221ef5de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ca:21:09:2e:d1:7d:7b:02:e6:54:1c:54:d0:
93:c2:b1:f5:79:a0:89:c3:e7:3f:9c:d8:fd:fa:b4:
33:35:23:1d:1d:c5:a0:2b:30:b5:d9:c4:66:7c:ab:
2d:67:c3:c1:cb:b3:67:50:af:4a:68:c3:1e:35:7a:
e6:ac:51:e3:18:6f:80:e0:b2:1f:d6:98:bc:b7:a5:
8f:b6:8c:2c:f8:3d:af:bc:44:56:ac:7e:79:ba:cc:
e5:e1:73:9a:09:8d:f8:83:d8:81:1d:1f:38:6a:56:
ce:73:ea:e2:fa:cf:b7:18:31:cc:92:1a:e5:95:3b:
2a:03:91:aa:d8:75:18:4c:a3:f9:19:62:55:79:17:
aa:40:1d:a2:78:0c:37:67:33:7f:72:d6:98:00:4d:
e1:81:79:2b:67:7b:80:6e:58:48:df:cf:eb:35:52:
04:79:96:0c:1b:64:fa:30:55:78:cd:45:90:64:d8:
78:3f:6d:36:8e:85:4f:0f:46:af:4c:9d:f2:b2:4c:
e7:49:90:f8:1f:56:71:ed:60:26:55:91:80:aa:4a:
b3:23:7a:36:8d:47:60:73:bc:2f:fd:3f:39:3a:b8:
1b:46:96:c4:e6:21:5a:f6:65:85:7f:42:69:02:ee:
b0:30:1b:c3:b3:8e:b0:44:7b:a5:e7:b0:49:25:52:
fd:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AC:F5:0D:7F:93:B6:56:25:9C:FC:10:B8:53:50:32:22:1E:F5:DE
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1Kz1DX-TtlYlnPwQuFNQMiIe9d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
45.88.88.0/24
45.88.90.0/24
45.149.241.0/24
45.151.89.0/24
45.151.91.0/24
80.76.51.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
185.216.84.0/22
185.218.84.0/22
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1a:31:4c:33:cd:2d:46:61:79:05:0e:2f:b0:c5:69:93:0c:
08:31:54:f0:d0:27:46:13:02:be:1c:cd:21:23:13:f8:19:53:
05:f6:4d:33:55:1d:c7:c5:ce:3d:d0:ca:41:0a:61:ef:11:f1:
9d:21:af:d1:31:59:96:13:8d:af:14:97:24:a5:d4:65:19:d8:
42:8e:4a:c5:ca:9a:ff:e8:b1:2b:a1:68:1f:3c:48:fe:b7:11:
4c:df:64:64:73:a3:74:20:5c:8b:5d:50:c2:01:4d:65:2c:7d:
c2:a6:b3:fb:54:1f:2d:08:e2:c8:60:04:a3:e3:a4:9c:bf:b3:
f6:0e:54:91:4e:3c:b3:8c:04:f6:0c:74:4f:d5:56:0e:98:84:
6a:51:86:63:80:be:98:20:47:ea:89:69:2a:8b:82:5d:26:18:
b2:df:f7:ed:9d:d0:9e:ff:6c:40:d8:9b:ed:c7:8d:12:f3:1c:
cc:6b:46:82:63:5a:1e:30:64:2b:73:24:1f:bf:5b:40:1c:a1:
cf:97:9f:94:18:40:0b:63:be:6c:69:09:40:b3:88:e3:b9:c9:
18:58:f8:32:57:6a:34:73:f1:e0:d4:fd:e9:b4:7a:36:fa:9b:
90:c8:0b:75:17:98:03:bc:74:58:bc:14:98:36:40:ab:7e:7c:
27:d5:33:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 16:43:58 2024 by rpki-client on console-ams.rpki-client.org