Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7O0d1a1b4H8-XGOdA8b0Fgabfmg.roa
File: 7O0d1a1b4H8-XGOdA8b0Fgabfmg.roa (raw, json)
Hash identifier: +mLWETb/SA19FvF1QKipBfGNWi+JzRXu5dCSeDkF1E4=
Subject key identifier: EC:ED:1D:D5:AD:5B:E0:7F:3E:5C:63:9D:03:C6:F4:16:06:9B:7E:68
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E14CECEB3DCFA093578FF11721123C23A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7O0d1a1b4H8-XGOdA8b0Fgabfmg.roa
Signing time: Wed 06 Mar 2024 17:28:01 +0000
ROA not before: Wed 06 Mar 2024 17:28:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.151.89.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.44.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.239.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.226.173.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 05:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:14:ce:ce:b3:dc:fa:09:35:78:ff:11:72:11:23:c2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 6 17:28:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eced1dd5ad5be07f3e5c639d03c6f416069b7e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:72:0a:38:a5:08:aa:c7:91:2f:b3:f8:f7:8f:
1b:24:55:ea:61:48:ed:1d:f6:be:5a:e2:c1:2b:9b:
d6:37:ee:1b:4b:45:87:30:d1:15:7f:ab:bf:60:08:
b7:b6:3b:cc:b1:9f:ed:a8:62:c8:4b:8d:7a:ff:8e:
e2:38:02:0e:2e:61:ab:31:d8:d3:f1:3b:a4:5c:55:
29:0f:36:c3:82:9a:88:97:3a:a1:6a:31:98:65:ae:
24:26:d5:70:4d:3d:2e:34:49:e6:56:48:62:95:bf:
80:30:6a:c4:8a:96:a3:d6:53:41:e6:70:e4:ab:37:
d7:5c:89:18:af:ac:03:09:fa:11:69:06:31:d8:73:
a2:b3:5d:4d:ad:a3:97:f3:8f:38:8d:68:29:18:bc:
b6:1a:7e:69:3d:ca:c8:de:95:44:51:a2:f0:f4:6f:
4b:d8:1d:b2:96:e2:d8:80:22:13:d1:fe:15:f1:8b:
3a:14:84:61:74:75:c0:47:ab:af:59:07:fc:15:cd:
01:16:d1:f4:f9:48:3a:f3:f1:b2:c4:54:6d:ca:dd:
79:f3:8b:fd:83:43:bc:2a:df:59:f8:e1:3c:77:ea:
95:db:77:6e:b5:11:47:f3:4d:6e:af:95:45:34:2c:
c6:e2:9f:e3:94:c5:3e:e3:47:97:90:fb:de:1b:35:
4b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:ED:1D:D5:AD:5B:E0:7F:3E:5C:63:9D:03:C6:F4:16:06:9B:7E:68
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/7O0d1a1b4H8-XGOdA8b0Fgabfmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.89.0/24
87.120.87.0/24
87.121.44.0/23
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.239.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.252.176.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
28:29:13:3a:06:72:f7:2b:f1:36:ce:22:ff:92:d5:af:65:39:
6a:2a:ea:c5:b1:fc:f1:00:41:5a:5d:e3:9d:7a:fe:06:42:55:
24:76:59:97:bf:fe:db:0a:23:63:64:43:cd:ee:83:7a:4e:68:
d5:9e:90:a4:c0:77:a2:98:66:9f:1d:3d:b7:45:41:6f:e8:44:
d5:a2:78:3b:47:c3:3d:81:2d:2f:d5:f1:70:a5:99:41:1c:10:
42:02:c3:18:a1:09:bd:a8:95:1f:ea:06:c2:27:af:6c:d3:d4:
ca:1d:cd:af:fe:6c:96:01:9b:0b:4f:bb:34:16:96:28:28:2b:
a4:53:67:cf:4a:57:42:5d:d1:e3:f2:cb:e3:b6:8c:c7:55:2a:
64:19:34:32:e5:82:8a:09:34:ce:7e:81:74:6a:a5:de:2b:5b:
55:d4:0f:bd:13:de:cb:66:0e:4c:a7:f2:58:91:2f:1c:e6:c8:
c2:59:82:c7:9a:fc:5d:2e:87:95:f4:eb:61:7b:3e:d7:fa:41:
75:33:ae:66:59:bb:23:02:58:89:02:42:d3:47:6b:d6:99:1b:
f1:f6:09:38:e4:34:41:78:62:48:52:df:8b:2e:24:a9:9f:f5:
41:4f:0d:16:32:4c:14:c0:46:9e:f5:e4:85:85:a7:df:96:82:
d8:88:79:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 08:39:54 2024 by rpki-client on console-ams.rpki-client.org