Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Teq6nH-p-eIcYL5mGayy1YHQR4.roa
File: 3Teq6nH-p-eIcYL5mGayy1YHQR4.roa (raw, json)
Hash identifier: VyVKtXMEm41qQSJx65JoIF5jqQDSq5m8juPv/A2Wt/8=
Subject key identifier: DD:37:AA:EA:71:FE:A7:E7:88:71:82:F9:98:66:B2:CB:56:07:41:1E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E1778DF983E3E21E7DFFBA320112EEE14
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Teq6nH-p-eIcYL5mGayy1YHQR4.roa
Signing time: Thu 07 Mar 2024 05:53:01 +0000
ROA not before: Thu 07 Mar 2024 05:53:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.151.89.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.44.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.239.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.226.173.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 12:40:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:17:78:df:98:3e:3e:21:e7:df:fb:a3:20:11:2e:ee:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 7 05:53:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd37aaea71fea7e7887182f99866b2cb5607411e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:96:66:bc:43:00:42:1d:78:ed:82:e8:17:
6a:39:e0:6f:50:a5:b2:a2:00:20:ec:ab:21:7a:eb:
cd:c2:a5:80:6f:75:bb:8b:62:6b:15:8c:0c:91:7e:
51:b7:7a:c0:b7:c5:0a:60:48:a5:a9:72:7c:4a:6c:
75:40:6f:69:8d:45:fa:4a:eb:42:46:1b:bc:73:21:
ef:b4:ca:a9:05:96:71:a7:c8:ca:bb:d3:ea:62:17:
58:dc:1a:eb:17:e8:4c:7c:e6:3b:b7:f5:e0:5e:ef:
c8:c6:61:2a:f1:c4:e6:62:95:b4:02:2d:96:fe:c4:
5d:f2:8e:70:d5:95:34:dc:e1:3b:d2:c4:d7:f8:00:
23:c8:94:8d:66:f1:f8:bd:b2:36:7c:ef:56:bb:17:
0c:91:02:af:e9:e5:aa:01:cf:56:74:dc:bb:f8:e2:
61:dd:42:b4:df:6d:6d:23:d6:8c:6b:8e:c4:1d:fa:
8a:d3:e5:c8:39:27:f2:2d:31:ec:8d:78:78:ca:9c:
3d:1e:93:f8:db:2f:35:1a:fe:c1:b7:d6:76:a6:b0:
2d:9a:f5:e7:89:6f:a0:47:87:de:f5:79:2e:e6:1d:
02:90:58:20:2b:6e:ab:29:f7:c0:22:fd:ed:ab:33:
1e:33:c1:52:f0:91:15:80:79:2d:5e:eb:4b:53:96:
b5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:37:AA:EA:71:FE:A7:E7:88:71:82:F9:98:66:B2:CB:56:07:41:1E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Teq6nH-p-eIcYL5mGayy1YHQR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.89.0/24
87.120.87.0/24
87.121.44.0/23
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.239.0/24
147.78.102.0/24
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.252.176.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
44:1d:4f:03:25:7d:1f:0c:de:da:b2:99:80:f0:8c:e3:e8:a0:
a4:74:c1:ae:5c:b8:83:90:8f:8c:17:33:c1:be:d8:99:c8:09:
92:a6:8b:f6:c4:e9:43:c7:fc:e2:b6:40:0a:29:52:3a:6d:59:
5b:21:d2:a6:dd:f4:d9:ed:18:35:51:23:7d:f3:af:44:ef:82:
e0:d9:ee:fb:5e:15:9d:08:46:43:aa:10:82:80:95:f6:b0:de:
13:91:59:b3:89:e1:d6:96:a9:bf:b8:b3:33:c7:65:79:8d:b8:
e6:2c:d2:b2:f0:80:cf:a4:88:c3:35:ae:c1:68:a3:e9:ef:f8:
1e:b6:b2:3d:cf:d1:27:c6:4a:e0:41:a1:96:d7:89:86:ca:67:
ad:e4:a7:7c:24:78:63:96:c9:62:c8:68:1d:da:5d:43:c8:5a:
1e:08:3f:e2:f6:a9:4f:3c:91:bf:7a:f2:8d:6c:b7:27:97:e2:
fd:5c:f4:6c:d7:a6:f5:30:ce:52:1e:85:7c:bc:76:86:42:4b:
26:3b:ab:8f:53:10:91:70:5b:0f:27:e6:14:69:55:38:d7:0f:
a3:75:70:cf:6e:08:0c:14:e3:0b:42:22:d8:46:33:52:f7:84:
6f:6a:35:d0:85:9e:73:ac:8d:a1:7f:a2:0a:e4:c1:a3:d7:14:
64:4f:00:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 17:09:50 2024 by rpki-client on console-ams.rpki-client.org