Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QezecOP5hVusbx9nkQBk9g4ArgI.roa
File: QezecOP5hVusbx9nkQBk9g4ArgI.roa (raw, json)
Hash identifier: X7p/mhx2dhulMJNMcS+cp+kKEef9IrvYtytepEVvQ68=
Subject key identifier: 41:EC:DE:70:E3:F9:85:5B:AC:6F:1F:67:91:00:64:F6:0E:00:AE:02
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01922E2C524BA650A1068D5543D6A82FAE4E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QezecOP5hVusbx9nkQBk9g4ArgI.roa
Signing time: Thu 26 Sep 2024 11:51:49 +0000
ROA not before: Thu 26 Sep 2024 11:51:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.9.156.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.139.106.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.222.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 18:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:2e:2c:52:4b:a6:50:a1:06:8d:55:43:d6:a8:2f:ae:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 26 11:51:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41ecde70e3f9855bac6f1f67910064f60e00ae02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ad:e1:b0:03:4b:dd:67:0b:47:ed:ec:bf:49:
d3:1e:cc:20:54:d8:97:43:80:93:16:e8:56:5b:4a:
aa:db:90:a7:df:7e:9b:8e:18:3e:58:fd:8f:a2:df:
30:97:b5:2e:d0:87:9b:ae:4f:52:2c:39:4c:66:bc:
7f:c9:10:2e:9e:b2:cd:45:c5:7c:b4:06:c1:51:12:
7c:31:f6:55:47:5c:a1:05:df:48:ac:4e:71:96:67:
d1:05:50:ef:cd:82:10:45:82:9c:02:32:e6:43:47:
d8:bf:10:25:90:e3:7d:4e:e5:b9:69:e6:9a:96:25:
d4:d6:6b:a0:b4:91:b7:85:1f:4e:61:cd:c3:d6:4f:
7b:5f:cf:83:09:70:3f:52:a5:a9:e5:79:33:34:86:
22:a2:19:e7:21:b0:eb:48:37:57:42:b4:20:87:28:
e2:b7:28:39:33:8e:9a:4d:34:51:2b:03:cb:86:e6:
5d:e3:a5:3f:4d:92:cc:fc:9c:7e:ea:0f:14:a1:66:
87:05:31:fd:52:34:50:bb:11:2a:45:48:dc:05:1e:
8b:43:15:ec:64:52:76:a9:8a:5b:07:c9:87:ee:3e:
93:85:ff:14:53:1a:4f:d6:8f:8e:f5:5a:ba:0a:c5:
a7:a9:da:3a:8a:7c:ea:7b:ff:9b:a2:50:9a:b5:fe:
f8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:EC:DE:70:E3:F9:85:5B:AC:6F:1F:67:91:00:64:F6:0E:00:AE:02
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QezecOP5hVusbx9nkQBk9g4ArgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/24
45.66.228.0/24
45.139.106.0/24
45.151.89.0/24
45.151.91.0/24
83.219.97.0/24
84.54.48.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
185.216.84.0/22
185.218.84.0/22
193.222.96.0/24
Signature Algorithm: sha256WithRSAEncryption
28:55:2b:55:6e:b6:4c:a9:3c:e7:3a:24:47:83:76:fb:32:37:
5f:3f:f7:19:3c:de:6b:7f:b3:a2:46:b4:21:63:2b:64:c8:8c:
a7:a3:87:d3:23:91:72:ce:ec:6b:02:01:9f:ad:76:26:8c:fc:
74:d4:09:34:8c:15:db:50:11:2d:3c:c6:45:d1:ad:2c:75:ea:
54:23:10:0d:68:bb:65:a8:19:62:08:f1:49:16:14:0e:98:0d:
20:5b:69:19:99:e7:7a:48:b2:dd:dc:a7:30:b6:8d:00:11:6c:
70:2c:78:8a:3d:03:52:2b:ef:2b:1d:71:79:63:b6:61:77:59:
33:5e:4c:20:06:87:80:52:2c:28:08:ad:56:cc:95:f8:cd:6f:
b6:22:56:66:78:0d:95:f2:5e:0c:03:58:91:5b:09:97:3e:ef:
a1:34:80:ca:86:9d:17:76:06:c4:fe:62:53:23:b1:b1:35:e0:
e7:63:71:e1:4f:17:4c:cb:44:d8:20:c1:65:bf:0b:91:5a:42:
40:9a:ea:b7:b7:3a:55:28:de:d0:a7:cd:81:5f:73:b5:59:57:
d3:af:61:32:b7:d1:c4:ba:65:35:76:20:40:03:ba:f9:84:24:
aa:61:69:41:f9:3a:a5:57:dd:09:c3:e2:90:a8:fb:4c:2e:ac:
38:c1:e2:06
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Sep 30 23:03:39 2024 by rpki-client on console-ams.rpki-client.org