Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/An3hXUpsT_ZR2-bOpV13WuV5hmA.roa
File: An3hXUpsT_ZR2-bOpV13WuV5hmA.roa (raw, json)
Hash identifier: lxVzI5pf6xOIQEOPTqci+PUynqQ3ErsfsidTC1SRlbg=
Subject key identifier: 02:7D:E1:5D:4A:6C:4F:F6:51:DB:E6:CE:A5:5D:77:5A:E5:79:86:60
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019173EA55F58658C0E08F54C671389F0EE9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/An3hXUpsT_ZR2-bOpV13WuV5hmA.roa
Signing time: Wed 21 Aug 2024 07:50:22 +0000
ROA not before: Wed 21 Aug 2024 07:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.88.90.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.69.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.35.18.0/24 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 05:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:73:ea:55:f5:86:58:c0:e0:8f:54:c6:71:38:9f:0e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 21 07:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=027de15d4a6c4ff651dbe6cea55d775ae5798660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d0:3a:8b:72:3c:2c:5a:5c:fe:56:5c:39:17:
72:25:b2:61:c8:09:d6:1a:6d:af:2e:a3:90:83:8f:
e6:92:bf:72:7e:ea:6e:aa:3a:a9:8a:fa:ac:25:b5:
ea:57:e0:a6:1a:f3:05:3a:ea:5b:ac:1d:b6:b5:2f:
31:69:09:28:90:38:5f:7b:aa:5c:55:86:b7:ee:0b:
bc:92:02:61:4a:27:4c:6f:11:3d:17:66:09:76:fc:
fc:21:9d:e5:6f:07:e0:fe:0b:60:e1:0e:b4:34:cb:
87:46:8c:5f:ad:c0:ee:b8:1b:99:4d:39:7e:91:c4:
ea:58:45:0a:45:c4:d5:70:08:46:3a:8b:16:af:fb:
52:b4:4c:2c:ae:03:3b:01:4b:47:8c:74:3c:ea:2d:
8a:03:a4:58:50:71:d9:ae:04:57:9c:73:10:80:cb:
0b:9c:32:1e:77:6a:62:e5:36:1f:20:29:5e:50:eb:
40:28:20:26:f3:ee:65:cc:d4:62:1f:4e:d3:45:bd:
68:e8:30:18:c6:c0:9d:00:5e:d4:2b:d2:8b:f5:af:
42:87:6c:64:c2:3f:cb:54:d8:2d:86:c9:4f:2b:d7:
73:1c:b1:4a:d0:2b:16:59:e7:9d:f5:f8:76:65:4c:
8b:4e:1a:10:6a:b7:d1:0d:f8:2d:12:2f:c2:35:1f:
31:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7D:E1:5D:4A:6C:4F:F6:51:DB:E6:CE:A5:5D:77:5A:E5:79:86:60
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/An3hXUpsT_ZR2-bOpV13WuV5hmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.144.154.0/24
45.151.89.0/24
80.76.51.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.69.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.102.0/23
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.35.18.0/24
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
89:5a:5b:64:00:d6:76:4c:fd:7a:4c:2e:c5:b4:bc:6b:5c:dc:
d7:12:a5:b1:db:2b:ca:a6:db:d8:56:da:2a:c7:c6:fa:d3:e5:
24:31:83:0b:91:66:07:f4:f9:69:10:54:56:78:eb:ac:e5:6e:
6a:c6:bc:ca:58:c9:0f:25:a6:d9:fc:05:5d:78:3d:71:e5:60:
2e:71:7f:4a:af:a5:90:d1:40:4c:49:94:e2:e0:92:b4:9c:32:
44:88:14:b5:ff:1f:c4:04:1f:da:2e:7a:a7:fd:8e:b6:3a:3a:
b9:8a:99:13:23:48:71:49:b7:a3:71:93:cf:04:79:8d:6a:e4:
da:44:b8:eb:d2:29:73:8a:02:db:65:42:81:0d:0f:72:f8:4f:
36:35:88:22:1a:8f:ff:f9:bd:c4:2d:cd:dc:82:a3:ac:b9:21:
e0:06:8e:fd:85:b8:86:05:6c:fb:fd:72:50:d3:3f:66:12:65:
f5:f9:56:f9:fd:bd:9f:76:ee:20:06:b1:6d:21:2d:c2:b0:1f:
22:fe:3f:f6:a4:03:58:6b:2d:df:dd:59:08:55:30:a8:fc:81:
fa:89:4b:bb:eb:44:b5:09:4c:6b:1f:35:ef:f0:4e:94:20:45:
5f:b1:66:1c:2e:af:39:4e:08:12:80:66:f5:93:68:9f:5a:3c:
1e:95:1d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 08:35:26 2024 by rpki-client on console-fra.rpki-client.org