Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YI_o0eU2gXedN7FVPTB5yGPXYCg.roa
File: YI_o0eU2gXedN7FVPTB5yGPXYCg.roa (raw, json)
Hash identifier: ugtyMaLZwJi6HWVe8vxLKPo/aJQRtJKwfCjJxIlSjB0=
Subject key identifier: 60:8F:E8:D1:E5:36:81:77:9D:37:B1:55:3D:30:79:C8:63:D7:60:28
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190C5AEF1817B5B2CA8D3C91F28F62B75E2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YI_o0eU2gXedN7FVPTB5yGPXYCg.roa
Signing time: Thu 18 Jul 2024 11:51:34 +0000
ROA not before: Thu 18 Jul 2024 11:51:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.38.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
91.92.16.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.24.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.2.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.42.32.0/23 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 05:35:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c5:ae:f1:81:7b:5b:2c:a8:d3:c9:1f:28:f6:2b:75:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 18 11:51:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=608fe8d1e53681779d37b1553d3079c863d76028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:21:f8:0e:7f:66:05:b9:b8:bb:e8:73:03:72:
0a:6b:41:e0:5b:d2:df:77:ba:4b:f3:84:70:90:3f:
16:59:b4:0a:df:ba:8d:c1:47:74:41:55:0c:7b:e0:
08:f9:96:0a:f2:b8:2b:ea:6f:1a:3a:ff:51:70:aa:
b3:d8:52:69:f2:52:6a:16:40:93:79:e7:a8:55:a0:
d6:a6:d1:21:ac:e2:4e:8e:11:24:6a:45:5e:6e:04:
20:f1:0d:df:be:2d:4e:33:23:ef:9d:f3:c2:37:f7:
c5:e9:e1:16:34:5e:1d:37:a5:e1:48:d6:e7:6b:b6:
c6:23:6e:39:3e:fc:9c:bf:be:3d:14:12:30:04:42:
83:9a:dd:a3:f1:40:7d:84:c9:c5:1e:da:cd:74:be:
aa:49:a0:f3:c2:95:e7:2f:11:ea:84:25:88:b4:0f:
fd:fa:38:95:b3:a5:01:d8:e8:fa:18:36:d7:cf:25:
2a:8d:e2:97:c9:47:74:09:35:fa:a8:27:6b:7a:e2:
6c:60:30:be:bf:88:6c:fa:aa:f6:12:4b:06:ea:05:
a6:a3:cb:64:c7:7c:70:e9:65:77:57:39:48:c4:49:
ce:4c:9e:fb:9c:3f:e3:10:75:7c:14:4a:da:f1:65:
c5:62:53:3a:03:26:b3:4a:37:29:b5:55:de:57:b4:
1c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8F:E8:D1:E5:36:81:77:9D:37:B1:55:3D:30:79:C8:63:D7:60:28
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YI_o0eU2gXedN7FVPTB5yGPXYCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.154.0/24
45.151.89.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.121.38.0/24
87.121.45.0/24
87.121.221.0/24
91.92.16.0/24
92.119.196.0/23
93.123.24.0/24
94.154.160.0/22
94.156.2.0/24
94.156.11.0/24
141.98.1.0/24
147.78.102.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.42.32.0/23
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:fb:9e:24:e2:53:12:96:ec:57:26:60:24:5c:70:99:d9:26:
17:33:be:31:b3:4b:da:58:73:93:70:dd:48:5b:f5:c6:d6:ea:
1e:27:75:6d:96:11:37:4f:93:42:0c:40:72:4b:d6:de:fc:17:
ad:f4:f5:fa:d2:a6:8b:7d:1f:66:d6:65:c8:70:82:22:38:3f:
be:a3:1a:52:c6:fd:7a:c7:ec:9c:ca:b7:68:2c:61:dc:bb:4a:
8c:43:ee:4c:31:70:4f:d8:79:ee:18:db:0b:57:78:eb:df:5a:
29:86:5e:1c:94:fe:9d:82:28:70:ac:2d:11:fa:8d:c6:89:cf:
81:05:92:9f:ed:13:7e:36:d8:10:1e:a2:f9:8a:9b:c8:de:6f:
bc:9b:cf:08:75:61:7b:88:da:99:d5:5b:95:3e:3b:c8:a5:24:
94:28:75:7d:84:fd:7d:32:ea:f8:4a:b2:ec:d6:b1:b2:78:f2:
81:30:cd:29:09:86:c2:03:da:1a:09:df:d8:09:d2:26:4a:67:
2f:1e:b7:65:f8:ae:92:ef:7b:ac:e7:37:55:58:dd:61:2d:de:
37:09:0b:f7:58:10:40:21:29:0e:0b:7f:9e:36:04:e2:a3:0e:
6d:ca:8a:b5:6a:83:4a:bd:88:72:e4:a4:5d:5e:81:53:2a:02:
94:cb:9e:33
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgISAZDFrvGBe1ssqNPJHyj2K3XiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNzE4MTE1MTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDhmZThkMWU1MzY4MTc3OWQzN2IxNTUzZDMwNzljODYzZDc2MDI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSH4Dn9mBbm4u+hzA3IKa0HgW9Lf
d7pL84RwkD8WWbQK37qNwUd0QVUMe+AI+ZYK8rgr6m8aOv9RcKqz2FJp8lJqFkCT
eeeoVaDWptEhrOJOjhEkakVebgQg8Q3fvi1OMyPvnfPCN/fF6eEWNF4dN6XhSNbn
a7bGI245Pvycv749FBIwBEKDmt2j8UB9hMnFHtrNdL6qSaDzwpXnLxHqhCWItA/9
+jiVs6UB2Oj6GDbXzyUqjeKXyUd0CTX6qCdreuJsYDC+v4hs+qr2EksG6gWmo8tk
x3xw6WV3VzlIxEnOTJ77nD/jEHV8FEra8WXFYlM6AyazSjcptVXeV7Qc7QIDAQAB
o4ICnjCCApowHQYDVR0OBBYEFGCP6NHlNoF3nTexVT0wechj12AoMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvWUlfbzBlVTJnWGVkTjdGVlBUQjV5R1BYWUNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGzBggrBgEFBQcBBwEB/wSBozCBoDCBnQQCAAEwgZYDBAAt
kJoDBAAtl1kDBABRoe4DBABT22EDBAFUFa4DBABUNjADBABVHy8DBABXeFcDBABX
eSYDBABXeS0DBABXed0DBABbXBADBAFcd8QDBABdexgDBAJemqADBABenAIDBABe
nAsDBACNYgEDBACTTmYDBAKrFkgDBACy1+ADBAK52FQDBAK52lQDBAHBKiADBADC
N+AwDQYJKoZIhvcNAQELBQADggEBAJ37niTiUxKW7FcmYCRccJnZJhczvjGzS9pY
c5Nw3Uhb9cbW6h4ndW2WETdPk0IMQHJL1t78F6309frSpot9H2bWZchwgiI4P76j
GlLG/XrH7JzKt2gsYdy7SoxD7kwxcE/Yee4Y2wtXeOvfWimGXhyU/p2CKHCsLRH6
jcaJz4EFkp/tE3422BAeovmKm8jeb7ybzwh1YXuI2pnVW5U+O8ilJJQodX2E/X0y
6vhKsuzWsbJ48oEwzSkJhsID2hoJ39gJ0iZKZy8et2X4rpLve6znN1VY3WEt3jcJ
C/dYEEAhKQ4Lf542BOKjDm3KirVqg0q9iHLkpF1egVMqApTLnjM=
-----END CERTIFICATE-----
Generated at Thu Jul 25 07:42:31 2024 by rpki-client on console-ams.rpki-client.org