Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DW7NMpQtNFWlb8EP4oE5sRFT3eY.roa
File: DW7NMpQtNFWlb8EP4oE5sRFT3eY.roa (raw, json)
Hash identifier: iYE1e1EQK9cVBei4t7a7xRTw68HB/mYbr2wUaxsPY14=
Subject key identifier: 0D:6E:CD:32:94:2D:34:55:A5:6F:C1:0F:E2:81:39:B1:11:53:DD:E6
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0186EF246FF6EF2C335C283ED69832113DF3
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DW7NMpQtNFWlb8EP4oE5sRFT3eY.roa
Signing time: Fri 17 Mar 2023 10:36:27 +0000
ROA not before: Fri 17 Mar 2023 10:36:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213200
IP address blocks: 85.209.132.0/24 maxlen: 24
45.91.192.0/24 maxlen: 24
176.125.255.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Mar 2023 14:28:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:24:6f:f6:ef:2c:33:5c:28:3e:d6:98:32:11:3d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 17 10:36:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d6ecd32942d3455a56fc10fe28139b11153dde6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:64:86:49:33:d4:20:9e:7b:50:40:84:49:8e:
44:f5:47:31:39:a5:23:2d:c9:08:08:96:74:85:2a:
b1:dd:cf:5d:5b:c5:e4:6c:6f:9b:b0:04:17:73:3d:
19:46:c8:49:d6:66:14:83:6d:89:5e:ad:f9:c3:9c:
20:dc:3f:a4:17:74:bd:3a:56:fd:ab:8b:f8:af:7b:
47:bf:94:9e:ec:ba:f1:d5:25:67:07:e1:73:75:46:
43:28:38:e5:1a:5b:d4:2b:6d:c3:11:0b:13:65:0f:
2c:95:70:8c:46:7e:ba:88:4f:ad:0c:91:09:be:9f:
37:7e:f7:7b:a0:45:f2:db:f0:4d:1f:a7:8e:43:0e:
ed:94:a5:2a:da:55:d7:74:fa:15:2f:fd:8c:3e:c3:
44:a4:52:92:c4:e2:39:91:28:28:f5:42:db:a9:1e:
d8:ed:22:4a:20:7d:f2:ed:67:bc:dd:9f:97:2b:c6:
d4:16:0f:82:eb:6b:67:c1:bd:f7:56:8e:ab:52:68:
fb:c4:90:65:a8:e1:53:d1:50:2e:dc:d5:19:9c:86:
96:c5:87:6c:39:5b:92:6e:d4:c4:a6:7b:6a:23:50:
c4:22:92:02:15:ca:b4:09:6d:88:be:d4:68:39:66:
ad:62:59:fb:dd:0c:ea:fa:03:fc:cc:43:35:19:b7:
3b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6E:CD:32:94:2D:34:55:A5:6F:C1:0F:E2:81:39:B1:11:53:DD:E6
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DW7NMpQtNFWlb8EP4oE5sRFT3eY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.192.0/24
85.209.132.0/24
176.125.255.0/24
185.246.223.0/24
Signature Algorithm: sha256WithRSAEncryption
62:2e:99:d5:96:ce:ad:2c:be:bd:91:e1:51:c5:e3:08:1f:44:
ff:74:55:57:d5:74:2a:e3:cd:3a:92:45:e3:11:b1:4a:e3:f7:
bb:45:dc:7e:03:e8:82:2b:b8:bd:c7:f6:56:3a:a2:1c:34:12:
27:72:2e:ce:ea:9c:5d:4c:71:85:a7:dd:6f:83:e6:a7:e4:da:
b8:b5:64:9e:bc:25:ec:8b:69:31:5d:3c:35:a2:56:e5:94:cb:
6d:ed:3e:f3:c5:86:16:2c:3e:99:1b:65:19:86:fc:95:2e:8f:
df:52:66:84:ee:48:77:fe:ef:7c:00:a1:9f:78:ff:7d:40:ff:
71:a7:c6:0e:c8:4a:d4:01:1d:af:65:86:14:84:1c:21:fb:cd:
7f:df:b6:ad:3b:a8:51:b7:b1:e5:23:66:32:68:8a:75:53:e1:
32:e6:94:41:29:04:31:6f:34:13:87:2e:84:80:b3:ef:f2:ae:
66:77:88:ed:06:03:34:78:f4:d5:b7:e7:3c:40:15:aa:d8:d0:
de:0b:96:39:2c:c2:ab:33:22:24:04:9d:39:51:f1:f8:6f:b1:
0b:ef:c5:3f:95:8f:90:ec:88:53:26:54:62:69:af:e9:1f:40:
89:53:f4:4d:95:94:c3:55:13:d4:81:50:d6:c5:88:b2:76:1d:
c1:64:37:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:27 2024 by rpki-client on console-ams.rpki-client.org