Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SUmOLnEScbgaVTD4gGtfezVhcv8.roa
File: SUmOLnEScbgaVTD4gGtfezVhcv8.roa (raw, json)
Hash identifier: ve9yu+SwaBTLL9FX8IxAcgdNSb653Tz6ZsPjv+5nseM=
Subject key identifier: 49:49:8E:2E:71:12:71:B8:1A:55:30:F8:80:6B:5F:7B:35:61:72:FF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193179F63D77836590DEA1ACAD265660D69
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SUmOLnEScbgaVTD4gGtfezVhcv8.roa
Signing time: Sun 10 Nov 2024 19:49:01 +0000
ROA not before: Sun 10 Nov 2024 19:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 37.139.130.0/24 maxlen: 24
45.149.243.0/24 maxlen: 24
79.110.48.0/24 maxlen: 24
79.110.61.0/24 maxlen: 24
83.219.98.0/24 maxlen: 24
85.217.144.0/23 maxlen: 24
147.78.102.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
185.225.74.0/23 maxlen: 24
193.35.18.0/24 maxlen: 24
193.149.28.0/22 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 09:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:17:9f:63:d7:78:36:59:0d:ea:1a:ca:d2:65:66:0d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 10 19:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49498e2e711271b81a5530f8806b5f7b356172ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:db:f5:c9:d6:66:65:e7:a4:08:30:58:a1:05:
d0:cd:4e:07:e5:0e:45:48:a4:22:ea:7e:ea:4e:8d:
cd:b3:1d:38:4e:09:85:ee:b0:66:24:7b:76:33:c2:
5b:f2:64:b3:cc:37:66:1d:b3:e5:13:4e:41:ee:55:
2d:c2:0a:73:e8:6c:bf:8d:38:ff:27:c8:73:16:df:
a4:75:31:82:fb:17:8e:3a:a6:68:68:df:d7:3b:62:
ef:c1:35:1e:7f:aa:b5:ce:8e:f7:a9:12:9a:9c:8b:
95:a9:8c:6e:1a:1d:59:df:f2:e0:09:14:61:3f:80:
50:a6:22:b6:9a:4f:f0:71:55:04:94:cb:e7:5f:f9:
84:2a:f3:d2:3c:79:7a:45:c2:06:88:2b:a4:8c:05:
ec:0d:c8:7a:57:b6:44:38:b8:1d:5e:3e:4e:9a:b8:
02:ef:5a:98:57:5a:86:da:ed:74:50:86:14:51:30:
03:6b:23:26:e1:5a:27:ce:3b:e8:26:c3:d1:3c:7a:
ac:3e:a0:79:6f:e2:1e:c6:24:59:e2:25:c8:23:f5:
b8:ce:b9:5a:d8:e0:af:4e:bb:a9:6a:fc:55:98:87:
58:c7:11:50:ae:a5:aa:55:9c:f0:2c:ba:86:7d:9e:
c5:5c:9e:0a:1a:73:46:b7:0c:36:dd:5d:56:93:e5:
ae:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:49:8E:2E:71:12:71:B8:1A:55:30:F8:80:6B:5F:7B:35:61:72:FF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SUmOLnEScbgaVTD4gGtfezVhcv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.130.0/24
45.149.243.0/24
79.110.48.0/24
79.110.61.0/24
83.219.98.0/24
85.217.144.0/23
147.78.102.0/24
178.215.227.0/24
185.225.74.0/23
193.35.18.0/24
193.149.28.0/22
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:df:41:91:2a:0c:11:68:cf:b3:0d:f8:cb:03:bd:a4:3e:b7:
59:97:17:6e:93:ad:a5:4d:ea:77:f3:6c:07:02:b9:38:87:cc:
19:7b:9a:b0:1d:2c:f1:1d:52:bc:49:e5:0c:bf:b7:43:4f:7f:
93:e1:04:ee:4e:51:6c:5b:bf:de:d7:02:b0:cf:59:90:5b:a5:
dd:80:e2:2b:4f:37:5c:6b:2a:23:19:7b:25:31:50:44:85:12:
85:a1:b2:b6:28:71:01:6c:60:42:5b:32:cb:bd:03:0a:ba:f6:
28:68:bb:a2:16:fb:ca:af:7d:ab:5b:e6:da:cf:45:59:68:f2:
b6:02:b8:01:e1:8e:bc:46:15:6c:dc:92:e3:e8:d8:6f:0f:b8:
a0:e0:14:7d:73:90:c9:88:c6:9f:7a:26:15:82:ac:86:7c:b6:
b6:62:8c:a9:23:12:6f:69:18:31:f9:ca:7b:69:e1:73:b2:d0:
90:d3:ec:c8:27:df:1f:01:af:de:87:ff:7d:63:eb:41:f7:00:
9d:72:5c:ab:c0:ed:d3:c7:28:f6:6e:14:b4:76:f2:99:47:02:
91:7e:d5:aa:66:60:29:1b:16:45:16:69:a1:1b:71:49:27:11:
6e:f2:19:e1:c0:75:9c:51:9e:52:59:13:a5:2c:c4:d3:e0:1b:
b6:7e:a1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 13:32:29 2024 by rpki-client on console-ams.rpki-client.org