Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OOXodFDO-syqhjSl6MyQKV7D7Ic.roa
File: OOXodFDO-syqhjSl6MyQKV7D7Ic.roa (raw, json)
Hash identifier: sqs/xn0Eo/HcfpbzMRZIrX8GHUJmRAkhRsq6bsPCBQU=
Subject key identifier: 38:E5:E8:74:50:CE:FA:CC:AA:86:34:A5:E8:CC:90:29:5E:C3:EC:87
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FCED9256AA8C51A1E4296813CC70A3883
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OOXodFDO-syqhjSl6MyQKV7D7Ic.roa
Signing time: Fri 31 May 2024 13:31:28 +0000
ROA not before: Fri 31 May 2024 13:31:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.221.120.0/22 maxlen: 24
45.9.157.0/24 maxlen: 24
45.81.241.0/24 maxlen: 24
45.81.242.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.144.152.0/24 maxlen: 24
45.144.153.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
45.151.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.86.0/23 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
95.214.25.0/24 maxlen: 24
95.214.26.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.246.223.0/24 maxlen: 24
193.42.32.0/23 maxlen: 24
193.149.2.0/24 maxlen: 24
193.149.3.0/24 maxlen: 24
194.48.248.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 08:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:d9:25:6a:a8:c5:1a:1e:42:96:81:3c:c7:0a:38:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 31 13:31:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38e5e87450cefaccaa8634a5e8cc90295ec3ec87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d9:a2:c1:65:1a:34:98:cb:2e:b7:a2:83:a3:
2f:b6:65:b4:37:dc:1e:7b:f7:96:99:2e:43:a4:06:
12:85:7c:40:a2:37:57:ca:54:de:c4:ba:23:36:53:
d6:e1:39:c3:ce:c6:75:8f:45:55:0e:37:5a:fc:17:
20:29:3c:71:7f:bf:e0:90:fa:f7:8d:f6:72:c8:fc:
42:9f:fd:3a:cb:12:4a:b9:55:a8:88:03:4a:c6:2a:
a5:f7:ce:83:24:c7:07:15:f7:f3:84:c7:11:0b:ed:
cf:ba:c3:5e:83:78:e6:93:dd:97:70:74:11:27:28:
77:17:44:07:3c:85:38:b4:05:77:92:f0:70:87:af:
f7:2b:db:4f:51:c2:0f:fb:8c:af:f3:96:c7:c1:b1:
31:6a:a3:13:ee:60:87:11:98:e9:a9:6e:a5:6a:93:
e5:47:42:4a:32:93:0a:b9:b6:d0:09:b0:69:73:1f:
6c:80:8e:28:59:31:43:f8:0b:ad:76:25:43:5d:08:
0d:ed:32:30:fe:ed:70:3b:cc:b5:c1:ab:63:b8:b9:
38:fd:d6:c3:98:9e:ea:c5:e2:c1:bd:83:81:4f:9b:
67:dd:d4:b7:8f:43:9c:53:8f:e5:61:6b:ce:b4:16:
30:0e:33:d9:bf:c9:c1:51:c4:da:bb:1a:1b:84:11:
3e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E5:E8:74:50:CE:FA:CC:AA:86:34:A5:E8:CC:90:29:5E:C3:EC:87
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/OOXodFDO-syqhjSl6MyQKV7D7Ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
45.9.157.0/24
45.81.241.0-45.81.242.255
45.88.88.0/24
45.144.152.0-45.144.154.255
45.149.233.0/24
45.151.88.0/23
83.219.97.0/24
84.21.174.0/23
87.120.87.0/24
87.120.166.0/24
87.121.45.0/24
87.121.86.0/23
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
95.214.25.0-95.214.26.255
141.98.1.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
185.246.223.0/24
193.42.32.0/23
193.149.2.0/23
194.48.248.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
01:8e:dd:c5:c7:cb:88:fc:73:cf:2e:62:7d:bc:cd:7e:c7:ee:
e5:81:4f:67:cd:ad:ba:67:67:b0:cb:32:77:8a:ef:7f:68:c9:
02:98:af:54:be:0f:be:e0:a9:6d:9b:03:2e:a9:4d:4d:25:4c:
79:f9:70:36:22:0a:e2:75:b3:78:34:fe:c0:67:10:e1:40:fa:
2f:95:18:7c:14:37:3b:12:2d:52:10:67:3e:12:ab:9f:e8:6d:
30:ed:40:8b:57:31:8c:c9:e8:57:ed:31:77:f4:71:f7:6d:02:
26:45:c3:ee:7c:ac:aa:c9:f4:02:06:d8:72:18:b8:26:6f:95:
68:50:c4:04:f6:67:78:8d:45:e8:ff:c7:b8:da:66:d0:10:fa:
aa:97:6f:e4:7b:c3:a3:cb:be:bd:d2:b0:f6:08:41:04:32:1e:
5f:78:95:69:90:ce:3f:a7:20:dd:b6:a1:00:d0:7c:e1:98:97:
a9:bf:90:94:3f:66:cb:64:0c:91:bd:0d:7a:8b:e5:2a:32:17:
97:12:7e:a2:83:07:df:69:bd:a3:0c:d9:ad:2e:3a:87:c5:a9:
6e:20:44:fa:85:09:aa:3a:d1:94:a2:b8:4b:d3:96:8b:e9:8c:
a7:12:b0:47:58:b3:40:b7:43:69:e5:ae:f2:86:80:84:c4:31:
5f:85:ab:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:06 2024 by rpki-client on console-fra.rpki-client.org