Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/My1ciKNbIQoRepfsTOVt1ujhooc.roa
File: My1ciKNbIQoRepfsTOVt1ujhooc.roa (raw, json)
Hash identifier: Lgo1/IZ11jyGBfbCpWU40SxhelSUrBrIlG3CFaLLtfU=
Subject key identifier: 33:2D:5C:88:A3:5B:21:0A:11:7A:97:EC:4C:E5:6D:D6:E8:E1:A2:87
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193297540BA61541EE9A2D018CEABB332C0
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/My1ciKNbIQoRepfsTOVt1ujhooc.roa
Signing time: Thu 14 Nov 2024 06:56:10 +0000
ROA not before: Thu 14 Nov 2024 06:56:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 45.84.88.0/24 maxlen: 24
45.89.244.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
45.149.235.0/24 maxlen: 24
83.143.113.0/24 maxlen: 24
85.208.139.0/24 maxlen: 24
87.120.36.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
87.121.218.0/24 maxlen: 24
94.125.100.0/24 maxlen: 24
94.125.101.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.218.137.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
193.8.185.0/24 maxlen: 24
193.168.196.0/24 maxlen: 24
193.168.197.0/24 maxlen: 24
193.168.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 20:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:29:75:40:ba:61:54:1e:e9:a2:d0:18:ce:ab:b3:32:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 14 06:56:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=332d5c88a35b210a117a97ec4ce56dd6e8e1a287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:95:12:b7:59:79:f5:19:75:23:7f:61:4f:ba:
49:a8:3c:d2:0c:04:39:2e:4e:f2:20:e0:3e:17:ee:
da:44:25:8b:2c:a8:94:a2:e5:4e:91:d7:94:24:54:
51:b7:9c:d8:48:8c:86:96:b7:55:35:f8:9e:a1:87:
36:b2:da:23:84:ed:19:99:26:d3:f3:c3:5b:af:13:
e8:fe:1e:0a:53:4e:a7:1f:f1:d6:29:6f:52:b4:ca:
32:87:68:b6:3d:28:0e:d2:22:46:90:51:3d:3c:35:
bc:43:2a:a7:84:18:15:4e:a2:20:ad:26:f7:83:33:
63:2c:4e:29:33:d7:e3:f2:38:86:6e:36:f0:ce:d0:
f6:57:ca:be:4a:5e:0e:f6:fb:f2:49:be:9b:a5:bf:
bc:ff:4d:78:12:d1:7a:29:80:4f:54:9a:31:56:4c:
20:c5:09:f8:7d:97:33:0f:39:70:f6:d4:17:91:24:
88:0f:f3:13:32:c4:1e:68:5f:75:2d:01:34:a9:84:
59:ba:fa:f9:55:80:11:41:5d:d8:c4:6a:fe:0e:4d:
f4:70:42:bb:0e:be:b7:f4:98:d2:93:2b:73:d1:49:
af:a2:7f:c4:98:19:53:72:ff:46:10:02:ed:a0:a8:
6b:8a:e5:78:a1:80:24:6c:8f:e1:a2:a9:9b:b9:8b:
49:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2D:5C:88:A3:5B:21:0A:11:7A:97:EC:4C:E5:6D:D6:E8:E1:A2:87
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/My1ciKNbIQoRepfsTOVt1ujhooc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.88.0/24
45.89.244.0/24
45.91.193.0/24
45.149.235.0/24
83.143.113.0/24
85.208.139.0/24
87.120.36.0/24
87.120.88.0/24
87.121.98.0/24
87.121.218.0/24
94.125.100.0/23
109.206.236.0/24
109.206.242.0/24
185.218.137.0/24
185.246.222.0/24
193.8.185.0/24
193.168.196.0/23
193.168.199.0/24
Signature Algorithm: sha256WithRSAEncryption
70:2d:ff:fb:ab:68:26:f1:fc:12:b0:4a:28:8f:a2:6d:38:56:
94:37:b1:28:5e:1d:c2:8b:05:da:60:35:92:87:b4:fe:d8:e0:
5c:db:a4:de:96:c8:34:a7:ac:17:b8:9c:25:77:92:06:f6:bf:
89:0f:6b:29:9f:51:77:09:58:70:db:ce:9d:d4:2d:08:dc:43:
04:1f:31:7c:62:72:2c:a9:9b:85:2a:0c:e0:7e:7f:e1:59:d2:
dd:f8:49:1b:31:63:de:4f:03:65:15:0f:0b:66:ad:91:bc:4c:
71:d1:0a:5b:7e:47:71:10:3a:67:95:65:35:e2:85:6c:73:ab:
2f:bf:14:f5:c4:cf:8e:49:d3:80:e2:9c:22:ca:25:1d:c9:77:
0b:77:db:fd:a6:f0:71:06:85:74:f0:01:98:da:f9:80:92:a2:
42:ac:49:b4:1f:49:58:1f:6f:72:3e:83:65:64:77:fd:ad:99:
fa:bd:8e:1e:1b:e7:5d:15:76:59:38:00:57:3e:91:b9:3b:c5:
b2:e6:8d:db:d6:2f:1c:05:b4:75:1a:fa:b6:37:51:a0:19:88:
b3:c4:69:4c:09:4d:e9:e6:32:5e:c8:c8:cc:b9:50:8c:66:2c:
0a:67:9a:c8:33:33:c9:4d:76:6a:33:ff:ff:b6:d0:99:b3:ed:
98:68:d1:b9
-----BEGIN CERTIFICATE-----
MIIFZDCCBEygAwIBAgISAZMpdUC6YVQe6aLQGM6rszLAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQxMTE0MDY1NjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzJkNWM4OGEzNWIyMTBhMTE3YTk3ZWM0Y2U1NmRkNmU4ZTFhMjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZUSt1l59Rl1I39hT7pJqDzSDAQ5
Lk7yIOA+F+7aRCWLLKiUouVOkdeUJFRRt5zYSIyGlrdVNfieoYc2stojhO0ZmSbT
88NbrxPo/h4KU06nH/HWKW9StMoyh2i2PSgO0iJGkFE9PDW8QyqnhBgVTqIgrSb3
gzNjLE4pM9fj8jiGbjbwztD2V8q+Sl4O9vvySb6bpb+8/014EtF6KYBPVJoxVkwg
xQn4fZczDzlw9tQXkSSID/MTMsQeaF91LQE0qYRZuvr5VYARQV3YxGr+Dk30cEK7
Dr639JjSkytz0Umvon/EmBlTcv9GEALtoKhriuV4oYAkbI/hoqmbuYtJzQIDAQAB
o4ICcDCCAmwwHQYDVR0OBBYEFDMtXIijWyEKEXqX7Ezlbdbo4aKHMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvTXkxY2lLTmJJUW9SZXBmc1RPVnQxdWpob29jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGFBggrBgEFBQcBBwEB/wR2MHQwcgQCAAEwbAMEAC1UWAME
AC1Z9AMEAC1bwQMEAC2V6wMEAFOPcQMEAFXQiwMEAFd4JAMEAFd4WAMEAFd5YgME
AFd52gMEAV59ZAMEAG3O7AMEAG3O8gMEALnaiQMEALn23gMEAMEIuQMEAcGoxAME
AMGoxzANBgkqhkiG9w0BAQsFAAOCAQEAcC3/+6toJvH8ErBKKI+ibThWlDexKF4d
wosF2mA1koe0/tjgXNuk3pbINKesF7icJXeSBva/iQ9rKZ9RdwlYcNvOndQtCNxD
BB8xfGJyLKmbhSoM4H5/4VnS3fhJGzFj3k8DZRUPC2atkbxMcdEKW35HcRA6Z5Vl
NeKFbHOrL78U9cTPjknTgOKcIsolHcl3C3fb/abwcQaFdPABmNr5gJKiQqxJtB9J
WB9vcj6DZWR3/a2Z+r2OHhvnXRV2WTgAVz6RuTvFsuaN29YvHAW0dRr6tjdRoBmI
s8RpTAlN6eYyXsjIzLlQjGYsCmeayDMzyU12ajP//7bQmbPtmGjRuQ==
-----END CERTIFICATE-----
Generated at Thu Nov 14 23:48:16 2024 by rpki-client on console-ams.rpki-client.org