Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/D_3BytqFw0CHue5dECP8gvvIGPA.roa
File: D_3BytqFw0CHue5dECP8gvvIGPA.roa (raw, json)
Hash identifier: T0ShCETwGlK+LSkENzyaXw/+em7HxjNPQ01o2zbLnvc=
Subject key identifier: 0F:FD:C1:CA:DA:85:C3:40:87:B9:EE:5D:10:23:FC:82:FB:C8:18:F0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01916B52537968A292773AC41A4970E95520
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/D_3BytqFw0CHue5dECP8gvvIGPA.roa
Signing time: Mon 19 Aug 2024 15:47:22 +0000
ROA not before: Mon 19 Aug 2024 15:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.88.90.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.230.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.69.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
109.206.237.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.35.18.0/24 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 07:49:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6b:52:53:79:68:a2:92:77:3a:c4:1a:49:70:e9:55:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 19 15:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ffdc1cada85c34087b9ee5d1023fc82fbc818f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cc:54:5a:6f:70:15:be:ca:82:ae:31:9a:9a:
96:bb:12:3d:41:e6:6b:d7:3a:66:92:fe:35:19:91:
9e:c8:55:07:81:43:66:4b:81:05:95:15:41:3f:af:
f1:46:35:94:7c:d2:fe:35:42:b5:bf:3c:da:8b:5c:
3b:17:6c:ba:e1:1d:14:af:7a:d4:26:fd:95:c0:db:
35:a8:4f:71:74:7f:d2:ae:c4:a9:99:18:62:a1:67:
e1:1f:0f:ee:b3:5f:b1:09:64:2e:b9:e4:c1:4d:7c:
cd:18:c3:d6:6d:43:6e:3d:00:86:ab:e8:51:8c:e3:
93:b6:56:b0:72:c4:cf:2e:24:4b:01:1e:ba:dc:fc:
67:7b:28:dc:1d:96:45:b1:7e:8f:af:1f:8c:f4:30:
46:86:21:c7:4d:88:23:3c:58:ee:28:5e:1b:5e:cd:
c2:5d:71:62:34:11:34:cf:ee:e2:79:b5:ce:52:86:
09:b0:fe:57:55:31:96:02:6e:78:10:d2:f4:ba:42:
17:22:d6:12:b2:20:7b:d7:25:84:7c:88:cf:96:0b:
76:79:b3:a5:00:b1:bb:30:e6:5f:19:4e:27:5c:df:
9a:c0:f1:e6:27:6e:4a:3f:a0:3e:45:dc:69:28:69:
32:69:25:5d:08:69:29:02:c8:98:ab:f4:17:6d:67:
e7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FD:C1:CA:DA:85:C3:40:87:B9:EE:5D:10:23:FC:82:FB:C8:18:F0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/D_3BytqFw0CHue5dECP8gvvIGPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.144.154.0/24
45.151.89.0/24
80.76.51.0/24
81.161.230.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.69.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
109.206.237.0/24
141.98.1.0/24
147.78.102.0/23
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.35.18.0/24
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
87:02:8b:f7:1e:9c:70:16:89:04:42:c2:b6:bd:2f:bd:ec:45:
f5:a8:85:97:3d:52:20:3c:a2:ef:02:bb:91:ff:f2:57:a3:88:
f6:91:42:84:e5:1e:aa:02:b2:b4:0c:e7:5f:c2:06:63:bd:90:
cb:8b:78:aa:97:9c:6c:b0:5b:d5:53:94:e4:4b:02:4a:c5:6f:
ca:10:64:85:3b:e0:a2:b9:0c:1d:e1:a8:36:c0:95:24:3e:c1:
4c:ae:37:5a:e5:c1:69:b5:76:02:5d:20:42:13:b0:2a:24:48:
69:3f:fd:49:06:ce:a0:c8:c0:8e:19:46:a4:09:87:22:c9:3b:
c5:ba:32:fc:31:8b:35:2d:19:5d:e3:ee:97:5f:5b:13:51:b9:
c3:48:99:5c:1c:fd:00:ad:ef:af:ef:1f:86:02:ab:de:90:43:
62:91:82:d3:7a:30:2d:5b:71:3e:35:85:44:d4:5e:2b:15:e0:
2c:a3:82:a4:0c:24:1c:fb:be:82:07:f6:3d:57:d4:2f:a5:9d:
4e:46:75:0d:08:26:6b:01:bb:6a:95:a5:b0:79:35:c2:ff:4c:
c8:6d:ce:f8:4b:87:f8:fe:2f:6b:95:16:be:b6:1c:7f:19:b4:
c5:49:3b:1a:a3:a4:71:95:91:9b:99:d5:34:9f:ea:f8:89:38:
f2:c8:d4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 09:45:54 2024 by rpki-client on console-ams.rpki-client.org