Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6xwD9VbVB3CiPk54ltYT-jVMBaE.roa
File: 6xwD9VbVB3CiPk54ltYT-jVMBaE.roa (raw, json)
Hash identifier: 2inukNZ6NQRtf4PCRQYHjeD39HGRKbXS94tTqLgThjY=
Subject key identifier: EB:1C:03:F5:56:D5:07:70:A2:3E:4E:78:96:D6:13:FA:35:4C:05:A1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CB0FC5ECF931CFB11C4AB5178BCBE10FF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6xwD9VbVB3CiPk54ltYT-jVMBaE.roa
Signing time: Thu 28 Dec 2023 15:12:58 +0000
ROA not before: Thu 28 Dec 2023 15:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.218.84.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.252.176.0/24 maxlen: 24
147.78.101.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
185.226.172.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
185.216.84.0/22 maxlen: 24
45.88.90.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
92.249.48.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:fc:5e:cf:93:1c:fb:11:c4:ab:51:78:bc:be:10:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 28 15:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb1c03f556d50770a23e4e7896d613fa354c05a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ab:90:26:2d:ac:02:7a:a9:b4:d9:f6:52:f2:
7e:34:f9:78:bb:9b:d6:16:d2:ad:2c:5b:5e:82:2e:
aa:d6:aa:75:c7:e1:8f:11:ef:58:ab:30:1d:2e:49:
2d:0c:aa:94:15:a0:a5:19:23:44:36:cd:76:e2:8a:
d0:07:5d:a3:09:45:8a:b7:a5:76:49:d9:71:00:24:
ed:e8:8f:ff:30:d3:a0:ed:bd:ee:ae:01:90:a1:39:
37:c4:ec:64:42:23:81:d5:f3:90:b3:04:44:2b:9b:
ee:e2:03:69:37:36:21:57:b7:86:4f:1b:c6:e7:58:
9e:94:2a:b5:37:f3:3e:30:4d:9a:5d:b9:58:93:1d:
69:81:c6:24:90:c1:88:12:aa:76:aa:9e:93:6f:0a:
e6:0c:b3:16:0b:be:ff:ae:35:7e:87:c0:e1:0e:d3:
f2:44:f1:b1:9d:73:ba:5e:9f:31:b8:61:ec:90:16:
14:27:7a:07:8f:91:82:a9:d0:29:f1:eb:71:ee:9c:
ed:5c:0b:68:69:60:ed:80:f8:41:2e:b6:f4:2e:cf:
31:15:53:03:11:2a:a3:72:61:86:86:79:38:cd:28:
25:19:2e:48:07:fb:1f:e4:42:ab:92:1c:d0:31:f1:
ba:21:5c:4d:82:81:ca:4c:b3:79:40:c7:a6:fc:80:
8d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:1C:03:F5:56:D5:07:70:A2:3E:4E:78:96:D6:13:FA:35:4C:05:A1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/6xwD9VbVB3CiPk54ltYT-jVMBaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
92.249.48.0/24
94.154.161.0-94.154.163.255
94.154.172.0/24
94.156.239.0/24
147.78.101.0-147.78.102.255
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.172.0/24
185.226.175.0/24
185.252.176.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:c5:85:48:29:ec:1d:9b:3d:35:05:1e:e6:fe:7d:84:da:f1:
28:1f:a4:fa:8b:0f:cf:d3:2a:2d:ad:95:f0:59:2b:1f:1e:ab:
9b:f5:a9:44:c8:34:54:94:b0:ff:3f:ed:92:ad:3e:73:ac:a3:
4e:31:07:0a:86:aa:0e:2b:de:9b:99:d7:75:f1:7c:51:65:07:
46:a5:51:8a:39:6a:5d:78:07:c1:c2:58:62:36:cf:ab:dd:b6:
ff:03:f8:b2:7d:f3:85:5f:0d:c6:e4:9e:d8:f9:2e:fa:a5:ac:
e4:47:56:4b:b9:71:67:95:1f:45:73:2f:ae:51:50:90:b6:d3:
1d:3d:72:4e:8c:a3:b4:de:5e:bd:dc:ab:4b:d1:d5:8d:ea:af:
ba:ce:23:ac:aa:55:3b:9c:b1:73:23:ae:38:59:73:84:0b:ec:
44:2d:7b:ee:3a:e2:15:2b:44:08:1c:72:65:25:24:bc:ec:12:
e7:1a:76:fa:f9:8f:1f:4d:4d:a7:60:ba:81:cf:68:36:9d:29:
8b:19:10:94:e1:2d:24:7f:fb:e7:cf:82:5c:d2:ea:51:25:6e:
9a:6b:b4:29:8f:23:1c:84:97:49:75:31:d9:63:cf:fb:9b:76:
c1:00:1b:a6:6b:06:cb:a0:19:2d:68:c9:f4:53:30:cf:83:93:
72:15:93:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:59 2024 by rpki-client on console-fra.rpki-client.org