Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Y4455-FV8jREBiOz57AS5Lt6xcM.roa
File: Y4455-FV8jREBiOz57AS5Lt6xcM.roa (raw, json)
Hash identifier: 27XrWA9vIWazDTOcDxKJDD9KBFAGwd2V12IiNMcxAY0=
Subject key identifier: 63:8E:39:E7:E1:55:F2:34:44:06:23:B3:E7:B0:12:E4:BB:7A:C5:C3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DCD5E0918AE3C902164C30985D5BDF507
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Y4455-FV8jREBiOz57AS5Lt6xcM.roa
Signing time: Wed 21 Feb 2024 20:31:48 +0000
ROA not before: Wed 21 Feb 2024 20:31:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1
IP address blocks: 45.66.229.0/24 maxlen: 24
84.21.173.0/24 maxlen: 24
87.120.32.0/24 maxlen: 24
87.120.34.0/24 maxlen: 24
87.120.35.0/24 maxlen: 24
87.120.64.0/23 maxlen: 24
87.120.89.0/24 maxlen: 24
87.120.220.0/23 maxlen: 24
87.121.56.0/24 maxlen: 24
87.121.57.0/24 maxlen: 24
87.121.100.0/24 maxlen: 24
87.121.101.0/24 maxlen: 24
88.218.76.0/22 maxlen: 24
94.103.126.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
194.59.30.0/24 maxlen: 24
194.169.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 13:04:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cd:5e:09:18:ae:3c:90:21:64:c3:09:85:d5:bd:f5:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 21 20:31:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=638e39e7e155f234440623b3e7b012e4bb7ac5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:a9:eb:cc:a0:8a:c7:44:3b:a7:90:e5:1f:
65:cb:7f:03:87:80:dd:e2:06:c7:47:97:1a:05:bc:
e0:8a:de:29:23:af:f2:10:e1:8a:13:5d:bf:03:0e:
b0:c9:aa:8d:63:38:7e:19:b2:02:35:46:14:92:fe:
9e:fd:b6:7d:b4:79:79:9f:a4:98:22:a0:a8:2f:8c:
da:a4:df:9e:dd:4f:18:e5:e1:e6:5c:91:3c:76:7f:
b3:05:b2:b0:18:ca:91:e6:cc:00:c6:41:6c:d0:c5:
8d:e2:9c:15:4a:ca:95:2c:9d:e8:af:56:85:b9:06:
a0:9c:15:59:35:f4:6b:fb:e6:95:c2:07:f5:1e:50:
c1:a5:e0:42:70:7b:cb:1f:5e:a2:f0:16:7c:2e:9e:
fb:b8:3d:7c:0e:0d:dd:91:e3:a2:52:2c:42:dd:ef:
43:b1:82:5e:22:de:d3:6d:be:90:7e:6a:7b:54:6e:
f1:23:f8:37:37:e5:8a:d0:a1:c7:6b:65:1b:88:5b:
bf:85:4c:0c:90:47:b1:6b:3f:e1:f1:57:2f:c9:0e:
e4:52:90:81:a3:7e:41:d3:b9:15:ba:4c:30:08:d6:
d5:51:a3:15:1d:7d:dc:86:62:88:b9:3d:df:14:44:
b6:22:11:1d:f0:9e:7e:85:a5:75:18:24:15:8e:85:
f9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8E:39:E7:E1:55:F2:34:44:06:23:B3:E7:B0:12:E4:BB:7A:C5:C3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Y4455-FV8jREBiOz57AS5Lt6xcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.229.0/24
84.21.173.0/24
87.120.32.0/24
87.120.34.0/23
87.120.64.0/23
87.120.89.0/24
87.120.220.0/23
87.121.56.0/23
87.121.100.0/23
88.218.76.0/22
94.103.126.0/24
94.156.78.0/24
194.59.30.0/24
194.169.174.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:4a:02:e6:52:c1:64:d0:5f:62:d5:cc:11:68:ea:4c:a3:6b:
68:32:af:a0:20:4a:26:8e:2d:a3:26:c7:f3:51:6e:82:3e:33:
ac:32:fd:b0:c3:3a:7c:88:9a:50:e6:b3:4c:fb:ec:12:2c:7e:
65:f0:8a:3b:7a:28:87:84:18:00:99:16:07:ab:0d:1f:12:ea:
a6:5b:2d:b9:af:86:d8:e9:99:de:ed:70:e2:b5:f0:b4:63:36:
bf:2e:49:70:91:11:1f:6c:f0:33:8f:18:e0:ee:d7:f3:ec:a1:
37:56:0f:4a:46:4a:0c:a6:8a:6c:0b:49:18:da:b7:45:ee:64:
8e:ef:7e:ff:2b:87:29:89:9b:81:93:7a:da:f2:f9:fa:29:16:
5b:c3:0c:b1:dc:5f:59:3c:a8:8c:be:db:2d:57:98:ce:69:6d:
dc:e4:00:63:64:7d:7d:ea:fe:32:e5:0a:ae:40:0f:aa:89:4a:
bb:7b:b9:57:3c:ba:4e:f6:89:d4:61:ef:41:09:ff:8f:8c:bc:
3a:56:75:e8:8c:e3:09:cd:83:71:ef:c6:1e:d2:9b:6f:d4:07:
e2:d6:7d:b5:de:fc:d0:a8:c4:5a:72:3c:ad:bc:d3:ff:fb:f4:
49:74:56:de:74:c8:58:59:59:1c:d8:e2:46:58:11:57:ee:29:
0c:41:cc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 4 17:26:15 2024 by rpki-client on console-ams.rpki-client.org