Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/R_ZmUL41WOjPXAFjpP-sxUmO_34.roa
File: R_ZmUL41WOjPXAFjpP-sxUmO_34.roa (raw, json)
Hash identifier: L1IX7AvfGGM/GIZ7GKMuOxNokiRGeSy1dTg3SyMLX4c=
Subject key identifier: 47:F6:66:50:BE:35:58:E8:CF:5C:01:63:A4:FF:AC:C5:49:8E:FF:7E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F2A14E486F5F3519ECC218275906ED706
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/R_ZmUL41WOjPXAFjpP-sxUmO_34.roa
Signing time: Mon 29 Apr 2024 13:39:23 +0000
ROA not before: Mon 29 Apr 2024 13:39:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.9.156.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.166.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.86.0/23 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
95.214.25.0/24 maxlen: 24
95.214.26.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.246.223.0/24 maxlen: 24
193.42.32.0/23 maxlen: 24
194.48.248.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 05:42:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:14:e4:86:f5:f3:51:9e:cc:21:82:75:90:6e:d7:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 29 13:39:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47f66650be3558e8cf5c0163a4ffacc5498eff7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:da:b2:45:19:a0:e0:c6:27:7f:68:59:11:de:
7f:1e:d2:3d:68:ba:af:6a:11:a8:48:53:87:58:99:
72:69:74:91:24:3b:42:63:de:1a:89:25:df:db:23:
43:77:ae:46:a5:fb:d5:6e:79:16:99:60:83:4f:1d:
84:bd:cb:00:7b:73:35:1b:03:49:35:50:be:70:ba:
8c:10:4b:71:e3:71:c7:be:25:a1:68:39:5d:77:ae:
a7:ba:08:11:29:a2:fa:80:ff:78:fb:c0:ea:45:bf:
32:35:2f:b3:05:05:32:61:84:79:f1:43:65:be:64:
8f:62:58:f3:7a:46:d6:b4:c9:ba:49:51:c9:1f:03:
0f:28:86:1a:a0:ab:d4:7a:be:92:7b:99:0a:00:e5:
d9:ab:8f:82:b3:8c:40:90:cb:97:16:7b:35:86:3f:
fa:31:b7:7a:b2:5e:53:ed:0b:d9:98:68:5f:84:62:
f8:b2:71:1b:ba:77:66:51:b6:ec:2f:63:7b:58:64:
14:af:1d:78:28:1b:b5:64:1b:d0:37:c7:9c:31:bf:
a8:9f:e6:63:2d:ab:1d:66:15:43:44:aa:bc:13:9d:
7e:f8:ce:88:db:f3:a4:0c:89:e9:18:13:d6:2c:16:
15:5f:08:e3:62:38:63:59:21:98:b0:3a:3b:49:48:
7b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:F6:66:50:BE:35:58:E8:CF:5C:01:63:A4:FF:AC:C5:49:8E:FF:7E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/R_ZmUL41WOjPXAFjpP-sxUmO_34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/24
45.88.88.0/24
45.151.89.0/24
83.219.97.0/24
84.21.174.0/23
87.120.87.0/24
87.120.166.0/24
87.121.45.0/24
87.121.86.0/23
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
95.214.25.0-95.214.26.255
147.78.102.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
185.246.223.0/24
193.42.32.0/23
194.48.248.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
72:2b:de:8a:57:30:0d:ff:39:c0:ea:20:b7:23:5f:79:be:8e:
ca:e7:7a:c6:3a:ce:47:7b:48:d1:18:90:0c:88:22:b0:45:1b:
21:67:42:7c:33:0c:24:29:5f:81:bb:16:be:ba:6d:7f:15:eb:
f5:34:4a:b8:9e:b5:58:23:93:ea:0c:9f:5f:18:a6:74:01:3c:
4c:62:c4:af:81:61:17:6e:f5:5d:a1:da:be:a1:51:55:b2:e2:
f2:da:5d:4c:63:9f:56:84:58:e4:00:2a:62:86:a4:88:93:20:
48:c4:7a:f3:f5:8e:65:0e:6a:27:3e:f2:da:6c:bf:d1:2b:1a:
33:0c:5a:4c:f9:4a:c6:d3:13:33:08:69:0c:fb:1c:7f:62:98:
44:16:94:2f:4b:8b:6a:1b:bb:1f:2f:44:2f:c8:71:23:dc:c7:
3d:d2:73:e4:da:ec:95:c9:bb:75:7a:3d:e7:8c:9f:c1:c2:0e:
3c:5e:c9:f4:d4:c2:e8:cd:4d:dc:3b:98:cf:05:d4:ee:1b:ec:
85:d4:52:3c:b5:bd:7d:f6:42:e8:73:fb:fd:27:ae:c5:f8:f5:
37:d3:fd:d0:73:ef:65:80:6c:8a:e8:23:50:2b:5b:17:80:a0:
ee:b6:c3:ac:51:7d:a6:c5:d8:d3:9a:9d:15:ee:3e:ee:c1:50:
0b:58:75:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:33 2024 by rpki-client on console-ams.rpki-client.org