Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8HsedQ1C-hDxWAmcqk1pGGLQ1eU.roa
File: 8HsedQ1C-hDxWAmcqk1pGGLQ1eU.roa (raw, json)
Hash identifier: 82/gXmnBA73J8lalitvz9Wm1lChSJQti4urryzGX+Kc=
Subject key identifier: F0:7B:1E:75:0D:42:FA:10:F1:58:09:9C:AA:4D:69:18:62:D0:D5:E5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192DC0E9B4B50CFD0AB5B9CDA7F254FD82E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8HsedQ1C-hDxWAmcqk1pGGLQ1eU.roa
Signing time: Wed 30 Oct 2024 06:13:17 +0000
ROA not before: Wed 30 Oct 2024 06:13:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 5.253.59.0/24 maxlen: 24
45.84.88.0/24 maxlen: 24
45.89.244.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
45.95.1.0/24 maxlen: 24
45.95.3.0/24 maxlen: 24
45.149.235.0/24 maxlen: 24
83.143.113.0/24 maxlen: 24
85.208.139.0/24 maxlen: 24
87.120.36.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
87.121.217.0/24 maxlen: 24
87.121.218.0/24 maxlen: 24
93.123.31.0/24 maxlen: 24
94.125.100.0/24 maxlen: 24
94.125.101.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.218.137.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
193.8.185.0/24 maxlen: 24
193.168.196.0/24 maxlen: 24
193.168.197.0/24 maxlen: 24
193.168.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 14:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:0e:9b:4b:50:cf:d0:ab:5b:9c:da:7f:25:4f:d8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 30 06:13:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f07b1e750d42fa10f158099caa4d691862d0d5e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b0:c5:91:f7:e7:92:1a:e9:f2:30:5a:c9:a3:
ca:6d:22:4d:3c:66:36:57:47:07:40:15:1e:27:76:
c4:53:cc:5b:5a:98:e9:70:8c:db:33:5d:59:5a:e7:
65:63:4a:32:b9:93:8d:10:16:04:d0:2e:e7:0d:26:
bf:a3:72:a1:a9:07:30:66:c5:94:e0:04:eb:0f:e3:
dc:87:08:07:f7:9f:a8:0e:ac:c8:84:35:c7:27:0f:
59:72:c6:ee:d2:9d:27:7b:ef:a5:72:e6:e4:fc:35:
30:90:40:4b:44:67:3a:e2:e2:90:c1:d7:bb:32:85:
00:24:7e:38:bf:2c:31:c9:26:87:8a:03:89:bc:8a:
15:51:51:f9:f6:68:5b:85:7d:97:bd:b8:63:9f:10:
9e:84:1f:ce:88:c6:67:52:26:40:55:4f:cd:38:c3:
65:77:f2:20:4a:eb:0d:c5:ff:4b:b7:1a:96:74:43:
e9:c0:0c:d3:0e:f5:38:fa:d3:97:11:26:b5:da:0c:
fe:55:e5:c9:2c:d8:82:46:28:56:3b:82:0c:90:7b:
74:a9:6d:54:4e:2b:6f:df:c5:9e:1a:6e:db:5a:6b:
ba:a8:90:9c:e8:24:00:3d:69:ec:d2:0f:53:0f:89:
cb:b7:f7:64:b9:06:f1:ac:1a:12:d2:91:e1:bb:8c:
2a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7B:1E:75:0D:42:FA:10:F1:58:09:9C:AA:4D:69:18:62:D0:D5:E5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/8HsedQ1C-hDxWAmcqk1pGGLQ1eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.59.0/24
45.84.88.0/24
45.89.244.0/24
45.91.193.0/24
45.95.1.0/24
45.95.3.0/24
45.149.235.0/24
83.143.113.0/24
85.208.139.0/24
87.120.36.0/24
87.120.88.0/24
87.121.98.0/24
87.121.217.0-87.121.218.255
93.123.31.0/24
94.125.100.0/23
109.206.236.0/24
109.206.242.0/24
185.218.137.0/24
185.246.222.0/24
193.8.185.0/24
193.168.196.0/23
193.168.199.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b6:6d:f7:46:2a:2c:e7:ea:9c:bf:e6:0a:fa:e6:0b:9b:a5:
21:1a:81:c2:33:80:14:93:5e:59:a5:a4:dd:60:e9:14:b7:57:
b0:44:53:03:13:4b:d9:a2:aa:31:6e:47:1f:1d:1e:4e:64:2c:
4f:c7:73:81:71:31:dc:6c:11:74:43:22:d6:30:82:1d:55:48:
6c:0a:00:cd:d7:73:1d:f8:22:38:92:7f:17:6f:ea:60:a8:2c:
55:4f:08:6f:b7:f7:24:d2:4d:c2:89:1b:d9:ac:07:c1:55:0f:
20:0d:75:a8:3d:13:50:56:c2:92:f3:4b:ed:89:aa:f0:7a:17:
09:3f:5a:cb:13:e9:c2:26:61:7d:4d:d9:15:6e:2f:83:35:57:
76:ba:53:bf:be:63:af:95:14:e7:07:45:7d:42:fc:53:64:ba:
11:a2:f3:1e:9c:5e:40:1d:27:42:22:a9:97:5b:8b:d1:e7:43:
09:b7:15:e9:c4:c3:7e:74:79:99:69:60:d6:6b:47:64:9c:ef:
5b:f8:26:59:4a:b1:11:f9:88:40:84:9d:47:57:11:f2:85:49:
5b:1f:43:c5:58:a4:fa:84:93:ca:ca:54:7c:11:eb:0f:5d:27:
60:15:d8:40:3e:a2:b3:70:51:83:7b:7c:73:20:82:c5:df:d5:
ce:4c:e6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 16:45:47 2024 by rpki-client on console-ams.rpki-client.org