Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/aO14Nn4Ypd2OWLnJIR0lXHHsnoQ.roa
File: aO14Nn4Ypd2OWLnJIR0lXHHsnoQ.roa (raw, json)
Hash identifier: Y5np8R9MXL0JtP/gSl3j8c8bT/Gge5rtTVHLjXqLmX8=
Subject key identifier: 68:ED:78:36:7E:18:A5:DD:8E:58:B9:C9:21:1D:25:5C:71:EC:9E:84
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0191B305BB3CC2416A853857AF3F21E15858
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/aO14Nn4Ypd2OWLnJIR0lXHHsnoQ.roa
Signing time: Mon 02 Sep 2024 13:56:22 +0000
ROA not before: Mon 02 Sep 2024 13:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.88.90.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.241.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 11:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b3:05:bb:3c:c2:41:6a:85:38:57:af:3f:21:e1:58:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 2 13:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68ed78367e18a5dd8e58b9c9211d255c71ec9e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:51:47:a6:8c:45:0e:8d:e4:c2:65:db:07:e5:
a9:5d:9a:ba:64:11:fe:5a:6f:97:98:04:81:45:d7:
96:7e:d3:88:5b:7e:6f:3d:88:fa:c2:6f:2e:11:00:
76:f4:93:0e:3e:ee:34:74:5d:12:1d:69:31:46:54:
14:4b:70:b4:42:8e:83:57:03:fe:6e:4b:4e:4d:68:
27:0a:87:30:78:0a:94:5c:40:31:c9:01:0d:41:08:
bd:b3:4c:4c:3e:ce:73:c1:e3:27:63:11:6e:ed:b2:
d5:1d:96:24:83:6c:ca:58:95:5a:f6:8c:0f:c2:5c:
ae:63:e5:c9:0a:5c:db:0e:e5:bb:70:d3:fa:56:b9:
c8:c0:4a:c4:82:d0:3e:ed:fd:18:e8:13:a8:2d:95:
70:37:fa:be:07:6c:a8:31:f0:22:11:30:8e:d6:40:
43:44:04:a8:43:57:dc:2a:77:7b:98:ef:04:d3:36:
1d:47:32:62:f6:12:1f:e1:be:c4:36:cf:ff:36:4d:
c5:41:f2:4b:c8:fc:04:3c:e5:24:df:16:14:b5:86:
74:e6:2c:24:7e:0b:0f:48:70:13:5b:a4:30:3d:11:
98:cd:6d:c1:dc:e9:d6:f8:05:b1:05:6a:ce:bc:94:
6a:84:fc:53:3a:d5:f3:37:d2:87:d4:0a:e8:ae:d9:
c2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:ED:78:36:7E:18:A5:DD:8E:58:B9:C9:21:1D:25:5C:71:EC:9E:84
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/aO14Nn4Ypd2OWLnJIR0lXHHsnoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.144.154.0/24
45.149.241.0/24
45.151.89.0/24
45.151.91.0/24
80.76.51.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
23:de:b4:d6:c6:6d:31:81:3c:0d:e5:1e:62:8b:bd:65:db:38:
f8:04:5e:55:17:63:0e:2f:44:7b:ec:24:1a:52:c9:04:70:13:
8a:b5:4f:3e:8b:25:a6:eb:3e:e4:4e:94:ea:fd:91:af:22:8a:
7b:dd:44:fd:ca:32:f0:78:85:ff:00:20:84:04:25:a5:05:b9:
97:0c:ce:b2:13:4d:78:2b:68:87:3b:06:14:74:b9:77:b6:75:
1e:c9:72:20:b1:79:29:e8:31:57:ee:56:54:f8:56:2a:42:af:
7c:a2:e0:fd:da:ea:e6:1d:8d:71:2b:b7:d7:95:85:0e:10:79:
90:75:cc:7c:65:e3:16:aa:09:85:df:6a:10:4d:ba:6d:62:3b:
a3:af:07:f6:a6:3f:7a:20:34:1f:e2:bb:68:57:ce:13:8d:ca:
de:45:77:3c:f7:d6:57:8b:2f:79:22:3e:dd:90:8e:fd:34:14:
b0:be:82:ef:42:85:c7:13:dd:76:61:e6:03:d3:70:0b:94:f9:
85:c0:82:2d:e9:bc:60:a0:04:c9:ad:ef:bd:cd:b5:6d:ff:0c:
57:24:20:cd:5c:9c:62:c8:d2:bf:dc:2b:61:ba:5e:d7:2f:df:
08:6b:29:3c:a9:20:d2:34:31:94:9d:ed:ef:47:b2:b9:9e:4a:
30:01:f7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 13:04:12 2024 by rpki-client on console-fra.rpki-client.org