Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4qmFOWDTMSLsmPyUGVeQaqwXS8.roa
File: L4qmFOWDTMSLsmPyUGVeQaqwXS8.roa (raw, json)
Hash identifier: 6tsaFH86UuvYcsqVYMOvy3GM8xmJabJ8UkhTft7BdVI=
Subject key identifier: 2F:8A:A6:14:E5:83:4C:C4:8B:B2:63:F2:50:65:5E:41:AA:B0:5D:2F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0191DBE95ACD129D93B43464F0AF06370958
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4qmFOWDTMSLsmPyUGVeQaqwXS8.roa
Signing time: Tue 10 Sep 2024 12:29:49 +0000
ROA not before: Tue 10 Sep 2024 12:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.66.228.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.88.90.0/24 maxlen: 24
45.149.241.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.79.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 14:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:e9:5a:cd:12:9d:93:b4:34:64:f0:af:06:37:09:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 10 12:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f8aa614e5834cc48bb263f250655e41aab05d2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:0d:4d:00:4c:3c:78:80:9c:30:1f:89:76:
57:6a:17:97:2b:7b:1a:03:f4:4b:a3:e0:2b:8b:ef:
ba:f9:bc:4a:53:f7:85:ab:6c:05:57:f2:29:61:fc:
3f:90:17:cd:39:2c:91:6b:54:6f:4c:f7:6e:22:14:
0b:54:ad:0b:e0:84:99:66:3c:d8:30:c7:8b:3b:1d:
f8:f0:a2:ff:a2:cc:70:03:c6:15:95:31:b0:75:d6:
f1:1f:eb:1e:fa:19:82:88:72:33:6d:5f:10:35:1c:
88:bf:26:da:f7:f1:5d:87:df:16:ec:e6:b1:64:45:
7d:e8:9d:1f:3c:c5:53:38:e0:e8:2a:1a:42:20:a4:
07:81:bd:ea:b6:51:86:5d:20:f5:b7:6b:42:71:87:
68:7f:0e:76:83:6d:10:48:2b:54:32:3e:16:7b:f6:
7e:01:b5:04:e9:82:79:9a:fc:cc:43:dd:43:fc:29:
fd:75:c8:3b:28:52:c5:d5:f6:b7:5a:93:b6:d3:8c:
73:40:55:2b:c3:91:c1:31:72:61:ec:c2:5e:19:d7:
c6:06:12:d3:30:7e:28:b4:a7:0e:e1:f3:08:80:91:
97:dc:05:fc:59:27:7d:6e:cd:4f:2b:1e:6c:f4:52:
8c:78:77:37:a5:52:86:06:54:cb:89:08:ae:39:51:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8A:A6:14:E5:83:4C:C4:8B:B2:63:F2:50:65:5E:41:AA:B0:5D:2F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/L4qmFOWDTMSLsmPyUGVeQaqwXS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
45.88.88.0/24
45.88.90.0/24
45.149.241.0/24
45.151.89.0/24
45.151.91.0/24
80.76.51.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.79.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
185.216.84.0/22
185.218.84.0/22
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
22:be:68:e2:39:2c:14:1c:dd:f9:e7:c3:b2:ce:f4:1d:62:e5:
35:7d:5f:58:24:c8:68:61:b5:68:e6:bd:e3:b8:cb:03:6f:c6:
e3:24:62:57:2a:78:ad:57:5c:91:87:2c:d2:0b:96:a6:ae:a6:
0f:f8:0a:3f:ae:d7:fb:1d:ed:fa:db:b8:1a:1d:5f:fd:d0:07:
8d:aa:ac:92:43:16:9c:05:6b:54:c9:47:3c:6b:0a:b9:4c:33:
11:ce:37:98:d8:c9:34:1a:53:4a:ab:54:9c:d9:69:94:99:d7:
0a:48:54:c9:82:0f:8a:9f:65:5e:f8:0d:76:3a:7c:07:57:94:
82:7a:fb:6e:9e:af:22:ef:e4:62:c3:6e:d9:7e:a5:7a:d1:4f:
89:ee:c3:f4:49:f5:bd:77:fa:62:e3:9c:4d:81:a6:68:58:ca:
16:ca:f9:d4:78:31:bc:11:ef:66:08:c3:7d:94:83:cf:3b:62:
3b:cf:20:f5:2d:eb:fc:4a:c3:e5:be:d3:ea:55:20:d1:d5:13:
57:c5:03:f2:ce:5c:ad:ec:c1:ba:d6:bc:3f:93:6f:39:9f:0b:
f1:03:02:32:f6:3d:31:14:b0:7b:06:f3:73:e0:77:03:37:d6:
3b:5c:bf:b4:9e:63:21:d9:d1:6d:0f:5f:b7:2d:4c:21:7f:14:
81:e2:04:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 18:35:55 2024 by rpki-client on console-ams.rpki-client.org