Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PTRNkkuYSMp8n-cUweapSpqvRJk.roa
File: PTRNkkuYSMp8n-cUweapSpqvRJk.roa (raw, json)
Hash identifier: TOX+MezIt2EqipAf3U/Gt8o++W8OR00lJNsWb2hT7H8=
Subject key identifier: 3D:34:4D:92:4B:98:48:CA:7C:9F:E7:14:C1:E6:A9:4A:9A:AF:44:99
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01909138D3B7EDB988EFB9D9066C75655F63
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PTRNkkuYSMp8n-cUweapSpqvRJk.roa
Signing time: Mon 08 Jul 2024 07:22:18 +0000
ROA not before: Mon 08 Jul 2024 07:22:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.221.120.0/22 maxlen: 24
45.66.229.0/24 maxlen: 24
45.81.241.0/24 maxlen: 24
45.81.242.0/24 maxlen: 24
45.144.152.0/24 maxlen: 24
45.144.153.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
45.151.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.90.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.222.161.0/24 maxlen: 24
193.42.32.0/23 maxlen: 24
193.149.2.0/24 maxlen: 24
193.149.3.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
194.55.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 08:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:38:d3:b7:ed:b9:88:ef:b9:d9:06:6c:75:65:5f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 8 07:22:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d344d924b9848ca7c9fe714c1e6a94a9aaf4499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a5:8e:bd:be:f1:4e:82:0a:d6:81:d6:9d:ea:
f3:a0:7b:ce:66:25:4d:b3:a9:7d:33:a8:e2:df:dd:
7c:7c:44:96:36:f7:af:8d:13:d6:e8:a5:ac:05:7e:
f7:8d:6c:24:82:07:63:fe:62:fd:51:cb:9b:1b:93:
3f:0f:33:3a:04:e6:40:b3:09:63:a2:28:ce:62:62:
ce:68:77:98:19:44:75:d7:c4:d9:93:8c:49:94:25:
cb:d3:29:63:32:d9:4c:4a:28:c2:00:18:a5:f8:f6:
7d:5e:3d:6f:b9:8e:fe:56:98:2c:e8:05:cb:ff:d3:
0f:f9:9d:8d:84:75:10:09:ab:d9:69:d5:47:dc:51:
15:65:ac:d1:8a:8d:26:bd:c5:55:42:e5:3b:4b:c9:
e4:b3:02:e2:23:4d:91:1e:e7:a4:ac:b1:24:bd:7d:
76:7f:34:2e:81:34:c5:ea:b0:51:43:67:94:69:99:
05:ca:58:3b:3d:a7:bb:41:23:f4:9f:86:76:59:bc:
ee:be:fd:07:2b:6a:d7:64:c6:7d:9e:ec:13:3f:7f:
07:5c:83:aa:da:d5:9b:47:84:eb:01:18:07:8b:fb:
0d:d8:94:03:dc:f9:de:56:27:e2:d5:c1:6a:f7:7d:
98:95:79:af:19:02:0c:06:44:c1:8c:b7:57:b9:c1:
2c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:34:4D:92:4B:98:48:CA:7C:9F:E7:14:C1:E6:A9:4A:9A:AF:44:99
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PTRNkkuYSMp8n-cUweapSpqvRJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
45.66.229.0/24
45.81.241.0-45.81.242.255
45.144.152.0-45.144.154.255
45.149.233.0/24
45.151.88.0-45.151.90.255
83.219.97.0/24
84.21.174.0/23
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
94.156.78.0/24
141.98.1.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
185.222.161.0/24
193.42.32.0/23
193.149.2.0/23
194.55.224.0/23
Signature Algorithm: sha256WithRSAEncryption
47:3a:61:46:2b:4d:6d:dd:71:1c:5e:9f:84:f1:18:f0:10:6f:
b4:0e:4c:3c:3f:3c:06:3b:40:47:5c:80:37:3e:fe:93:b5:99:
eb:72:35:22:63:ed:2c:ce:5e:19:e1:b3:41:d5:91:1b:9f:c6:
5d:ea:40:ff:0f:0f:6c:12:8a:cc:16:44:42:75:89:d0:8c:7f:
24:6a:52:20:9f:70:d9:8e:e9:7f:72:27:3b:e1:05:2d:9e:46:
7d:a7:18:12:a7:74:9e:b5:7f:83:7b:87:10:bb:87:02:7b:f5:
43:74:f7:78:df:8c:6d:71:cb:db:88:d7:d3:d2:d7:5f:06:86:
7c:56:31:9f:b6:2f:fb:9d:1e:e7:15:0a:90:8a:bd:4b:2b:50:
4f:70:49:5d:7a:2a:a8:92:3a:69:cc:95:3d:1f:99:e2:8b:9e:
1e:0c:05:a0:ea:b7:52:93:73:62:50:12:46:19:16:9f:35:79:
45:2f:68:23:3b:85:57:1b:f7:b2:c6:2a:30:c5:0f:93:a6:b4:
0c:1f:e7:cd:03:cf:f0:af:28:4d:2f:25:58:5a:4e:83:b7:d7:
40:2c:2f:81:63:1e:db:83:76:41:e9:f8:38:ee:1f:9e:69:c4:
df:dc:44:ab:31:5e:be:21:0d:64:1a:21:f2:1a:10:19:38:21:
0b:bd:d4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 10:02:27 2024 by rpki-client on console-fra.rpki-client.org