Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M8HW5UyPbxXv0CeSjinjS59MBHM.roa
File: M8HW5UyPbxXv0CeSjinjS59MBHM.roa (raw, json)
Hash identifier: 0SVbN1Z1tOkrrGIL4TJOBf87WqiEpv5kCJPCY8q5L08=
Subject key identifier: 33:C1:D6:E5:4C:8F:6F:15:EF:D0:27:92:8E:29:E3:4B:9F:4C:04:73
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190DAEC5423D047853684F690B8987827EB
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M8HW5UyPbxXv0CeSjinjS59MBHM.roa
Signing time: Mon 22 Jul 2024 14:50:39 +0000
ROA not before: Mon 22 Jul 2024 14:50:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34577
IP address blocks: 37.60.141.0/24 maxlen: 24
87.120.0.0/22 maxlen: 22
87.120.12.0/24 maxlen: 24
87.120.14.0/23 maxlen: 23
87.120.44.0/23 maxlen: 23
87.120.45.119/32 maxlen: 32
87.120.178.0/23 maxlen: 23
87.120.180.0/22 maxlen: 22
87.120.184.0/22 maxlen: 22
87.120.190.0/23 maxlen: 23
87.121.48.0/22 maxlen: 22
87.121.88.0/23 maxlen: 23
93.123.40.0/22 maxlen: 22
93.123.44.0/24 maxlen: 24
93.123.47.0/24 maxlen: 24
93.123.66.0/24 maxlen: 24
93.123.67.0/24 maxlen: 24
93.123.96.0/22 maxlen: 22
94.156.123.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 08:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:ec:54:23:d0:47:85:36:84:f6:90:b8:98:78:27:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 22 14:50:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33c1d6e54c8f6f15efd027928e29e34b9f4c0473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:85:55:5c:11:73:9e:1c:ee:ff:b9:ec:ed:f0:
8f:e7:f8:a4:3e:d6:ee:c0:04:37:97:ae:08:66:79:
cf:2e:98:96:dc:2a:36:54:be:31:41:93:7d:61:96:
b8:d0:a8:eb:d5:af:b2:0a:3c:5c:1d:ce:bb:62:d0:
a0:ce:bd:e6:45:81:6d:40:88:87:95:d7:19:c0:fc:
56:16:2c:3d:b6:6a:d2:38:4f:46:bd:ec:ad:0b:3f:
73:da:f9:23:b0:25:7f:d7:cf:7a:82:15:23:18:08:
56:80:20:fc:68:b2:c6:31:1e:15:aa:5e:16:a9:63:
f6:48:e1:7d:32:ef:27:e3:83:f0:c5:8a:82:1d:cd:
c0:04:2c:02:d1:76:dd:e1:3c:93:17:e7:d9:6c:2c:
5d:c4:70:6f:73:01:1f:1f:11:b0:e6:cf:4a:2e:e5:
3b:c8:5d:94:c8:8e:26:72:ab:b9:0d:86:81:e9:87:
48:0b:fd:f8:33:80:dc:28:96:57:df:9f:58:74:76:
63:e3:ba:ba:fc:75:39:96:fe:c6:e5:33:61:b9:73:
95:a5:cc:5f:68:b7:67:8d:f8:7e:d6:3c:03:ce:e7:
d4:61:0e:10:ed:0d:44:e9:d1:eb:61:6d:58:4f:04:
43:0c:36:2a:f8:a9:ab:98:f0:7a:33:eb:d7:f2:33:
c7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:C1:D6:E5:4C:8F:6F:15:EF:D0:27:92:8E:29:E3:4B:9F:4C:04:73
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M8HW5UyPbxXv0CeSjinjS59MBHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.141.0/24
87.120.0.0/22
87.120.12.0/24
87.120.14.0/23
87.120.44.0/23
87.120.178.0-87.120.187.255
87.120.190.0/23
87.121.48.0/22
87.121.88.0/23
93.123.40.0-93.123.44.255
93.123.47.0/24
93.123.66.0/23
93.123.96.0/22
94.156.123.0/24
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
60:8a:07:bd:a7:d3:ab:ca:91:a9:bb:ba:b4:ae:32:02:79:e8:
19:aa:7c:09:d3:58:15:ac:c9:8d:b6:31:9d:95:df:47:dc:7f:
72:89:95:18:c8:12:de:5c:ef:9d:5a:81:d4:1c:78:f9:f4:f7:
eb:20:45:64:ff:5c:4e:3b:15:72:a6:9b:55:3a:fd:8c:d1:56:
f0:c6:c8:79:e8:42:8b:83:e1:75:d7:ce:a9:e6:77:62:0a:f3:
84:b2:1d:3a:01:16:23:ef:60:7b:02:4f:b5:55:12:05:43:d8:
4a:e5:84:c5:6f:86:7a:b6:4b:46:4f:df:42:4d:2f:ff:2c:a3:
b9:81:c2:79:e1:7f:db:6d:00:54:24:ef:64:1b:3b:97:9c:19:
27:e5:4c:51:b7:2b:1f:c3:53:9d:52:e4:53:19:45:43:f3:eb:
6f:04:18:23:ac:bc:e0:7d:84:a9:bf:be:a4:70:7e:fd:10:a8:
12:9c:10:60:fb:17:be:44:c2:94:15:d7:0f:1a:ea:0e:00:44:
ab:1a:d1:50:55:a1:fa:1f:b6:34:b6:47:16:68:5f:4a:74:3a:
16:45:34:c5:2e:c8:da:a5:49:3d:57:0c:0c:81:92:b7:5b:94:
1f:09:dd:e2:cf:3f:51:11:5b:81:80:4b:2b:59:f0:fa:61:cc:
31:cc:46:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 10:43:37 2024 by rpki-client on console-fra.rpki-client.org