Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FGShZyK-TlBKnRJm00XQuRSjEY4.roa
File: FGShZyK-TlBKnRJm00XQuRSjEY4.roa (raw, json)
Hash identifier: ZtHdqMErLDrdxx5J/VKN1Q0NvTTP3yjiF1JIzSHc+6s=
Subject key identifier: 14:64:A1:67:22:BE:4E:50:4A:9D:12:66:D3:45:D0:B9:14:A3:11:8E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01914C73265C8FD75F9270C20EC4AE084644
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FGShZyK-TlBKnRJm00XQuRSjEY4.roa
Signing time: Tue 13 Aug 2024 15:55:00 +0000
ROA not before: Tue 13 Aug 2024 15:55:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.88.90.0/24 maxlen: 24
45.128.232.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.69.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.8.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
109.206.237.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.70.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.246.223.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
193.37.41.0/24 maxlen: 24
193.37.44.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 10:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4c:73:26:5c:8f:d7:5f:92:70:c2:0e:c4:ae:08:46:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 13 15:55:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1464a16722be4e504a9d1266d345d0b914a3118e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:73:21:c8:41:93:f1:bb:a6:74:b6:b7:57:f0:
49:fd:4d:fe:bf:fb:dd:c7:47:75:ab:62:8a:cc:fd:
54:b1:72:a3:5f:b0:0c:ad:9b:35:8e:43:c8:a0:3a:
18:53:1f:3e:05:16:3e:cd:57:d1:35:73:ad:a5:11:
3f:9d:84:4f:90:f9:c7:68:ba:a7:64:43:d4:01:1c:
64:42:e5:47:d3:75:92:63:c1:d7:c2:a6:7f:6f:5e:
2e:41:b1:20:27:06:94:47:65:41:a2:a9:90:cb:81:
84:53:55:10:3a:c8:47:c4:53:69:d4:f1:ca:93:0e:
e6:68:22:e4:39:a4:6c:24:ab:6e:88:72:1b:01:19:
53:a0:7b:35:11:24:6f:01:1c:72:04:bc:9d:20:7c:
13:d7:cd:ec:56:e7:c0:10:75:ed:eb:0f:af:b6:ab:
ea:29:f5:53:dc:ad:aa:5f:0f:07:59:d9:92:91:17:
6e:71:c4:24:d9:e4:d1:87:06:d2:ba:66:9c:49:b9:
6f:76:92:78:3e:8e:a2:90:58:b0:69:13:64:49:25:
39:9d:8d:e2:2d:22:2b:f8:aa:c0:43:5c:99:96:19:
87:5a:0b:7c:56:76:4c:3a:c4:e1:d6:de:6d:d4:d7:
38:be:5c:e9:7a:49:86:39:1e:4c:c7:65:15:f2:82:
e9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:64:A1:67:22:BE:4E:50:4A:9D:12:66:D3:45:D0:B9:14:A3:11:8E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FGShZyK-TlBKnRJm00XQuRSjEY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.128.232.0/24
45.144.154.0/24
45.151.89.0/24
80.76.51.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.69.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.8.0/24
94.156.10.0/23
109.206.237.0/24
141.98.1.0/24
147.78.102.0/23
171.22.72.0/22
178.215.224.0/24
185.216.70.0/24
185.216.84.0/22
185.218.84.0/22
185.246.223.0/24
193.35.18.0/24
193.37.41.0/24
193.37.44.0/24
193.222.96.0/24
194.48.251.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a6:ec:98:c5:00:c0:73:5b:00:eb:fe:ba:67:27:61:c6:5a:
b5:5e:8d:0e:5b:f1:aa:0b:2a:fe:56:43:cd:53:cc:98:ea:1e:
f0:4c:d2:3a:dd:f0:ac:9e:74:47:1a:a6:30:0d:07:80:c9:a8:
ef:6e:0a:1a:4a:26:5d:28:e8:be:d3:e3:9d:d3:51:9b:18:ef:
9d:e7:a3:bb:ff:14:15:7f:fd:09:42:ef:91:02:7d:4f:4f:92:
47:58:31:b9:eb:4e:e5:e1:6c:00:ae:70:8f:c4:aa:e9:ab:e2:
c0:44:47:40:ba:3a:f9:70:cb:0e:f7:fc:43:3b:8f:fd:98:1e:
50:8a:10:d8:30:80:1d:4c:b3:a8:5d:55:13:75:23:ab:3d:f6:
95:a6:ae:ee:36:b0:18:b2:27:6a:a0:ce:c1:24:d4:d8:70:44:
0f:2c:9e:3e:38:85:79:69:40:d9:21:6d:c7:fb:e3:2a:52:8b:
77:ed:cb:63:25:c2:20:ae:bf:84:d5:03:c2:8d:b5:3a:68:ae:
da:8a:69:b1:86:07:bc:61:23:cc:2c:c5:67:f1:0c:84:02:a0:
fb:36:fb:20:a8:4c:ce:30:1a:01:1e:13:f7:96:fb:a0:00:45:
6c:b5:fc:40:75:35:b0:a4:75:d1:bb:f1:42:df:8a:de:df:e6:
95:2d:c2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 15:15:12 2024 by rpki-client on console-ams.rpki-client.org