Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cBzwIt13B_Ycy0rTNVWQwo1OiK8.roa
File: cBzwIt13B_Ycy0rTNVWQwo1OiK8.roa (raw, json)
Hash identifier: mGmO3p9cBFBdT8UF7uOv75Nl4OsDdJ2nsYoOyjh8a5U=
Subject key identifier: 70:1C:F0:22:DD:77:07:F6:1C:CB:4A:D3:35:55:90:C2:8D:4E:88:AF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019227D601182FE251417DB004ECE50B6B97
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cBzwIt13B_Ycy0rTNVWQwo1OiK8.roa
Signing time: Wed 25 Sep 2024 06:19:49 +0000
ROA not before: Wed 25 Sep 2024 06:19:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.9.156.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.133.251.0/24 maxlen: 24
45.139.106.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.84.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.246.223.0/24 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 12:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:27:d6:01:18:2f:e2:51:41:7d:b0:04:ec:e5:0b:6b:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Sep 25 06:19:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=701cf022dd7707f61ccb4ad3355590c28d4e88af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:18:6e:08:68:71:65:b4:e7:48:52:6f:f2:5c:
a2:17:05:0f:ba:18:ff:45:5a:8c:fc:4b:ed:a1:ca:
b1:20:52:d3:3a:56:80:ef:00:eb:12:b2:22:9e:2d:
81:36:67:f9:12:ec:ab:70:f8:6e:95:04:b9:75:8c:
bf:7a:a1:36:21:ea:b1:55:0e:40:a4:43:44:80:72:
3b:4b:e0:fd:08:8e:81:34:75:f7:48:f8:d1:28:c9:
8f:eb:0e:69:8d:8a:ad:b8:6a:2c:8c:e5:af:e0:30:
22:2f:98:46:9e:fc:6b:79:79:81:07:3f:d0:67:49:
d9:7f:27:d7:67:24:c0:d0:84:6b:08:cb:e2:2b:2b:
a8:ea:68:69:2a:c4:2e:6f:88:3a:b9:b5:9a:79:f9:
21:da:21:ae:ee:2f:85:83:2a:62:19:51:da:fa:77:
70:8b:e5:c7:ee:e7:ba:00:4d:85:8d:67:cd:ec:27:
10:28:3d:68:72:ce:c1:f1:c5:ee:28:d6:d1:6c:37:
16:45:2f:86:f7:0b:9a:3e:cb:ef:73:b4:61:5a:e2:
e9:be:52:28:a5:01:88:08:db:26:6a:10:1f:63:03:
fc:82:ce:ec:33:70:c0:a4:d1:16:26:76:2b:fe:98:
e4:a1:89:7d:f7:3a:25:3a:27:cd:c8:b8:ea:54:81:
66:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1C:F0:22:DD:77:07:F6:1C:CB:4A:D3:35:55:90:C2:8D:4E:88:AF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/cBzwIt13B_Ycy0rTNVWQwo1OiK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/24
45.66.228.0/24
45.133.251.0/24
45.139.106.0/24
45.151.89.0/24
45.151.91.0/24
83.219.97.0/24
84.54.48.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
92.119.196.0/23
93.123.84.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
185.216.84.0/22
185.218.84.0/22
185.246.223.0/24
193.37.41.0/24
193.222.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:17:bc:c2:db:8a:7f:b0:59:e0:c1:f3:49:27:09:6f:80:6a:
0d:bb:f2:5d:58:d3:85:76:db:11:a4:d0:fc:a8:0d:22:a2:bc:
06:2f:d5:33:2b:93:91:77:c3:23:d2:58:b6:6e:b5:22:39:02:
92:f8:29:2b:66:23:8d:c8:e2:e5:4f:c3:b7:da:1d:0e:ad:e1:
8a:20:d2:24:ee:b7:db:1e:fd:38:f7:b4:3a:61:4a:b5:c8:ec:
13:67:00:c7:af:5a:64:15:1e:ab:0e:dc:c0:3b:ad:de:da:d2:
b3:6e:4a:fb:1b:ae:7c:23:58:82:76:2d:e3:7f:da:d3:c6:7b:
e3:d0:9d:df:8a:3f:d3:84:b0:92:0c:18:f6:7a:b2:07:f1:65:
5e:32:33:c1:05:d2:34:e4:7c:00:44:88:5e:01:82:b1:d1:24:
57:94:b2:98:46:9d:99:24:39:d4:80:69:2a:63:cd:99:41:e4:
3b:9a:b4:7f:42:c2:d4:e8:58:8e:f3:87:15:a3:27:b0:43:a3:
a9:b5:92:06:9c:bc:77:4d:4d:2f:fc:f2:8a:3e:6b:64:6d:7a:
4a:95:40:66:d2:1a:19:3a:95:5b:25:39:7f:d5:b8:e2:ed:ab:
64:6c:5c:59:82:65:37:f0:6e:e2:9d:35:6a:f9:b3:88:52:5d:
ae:4f:4e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 15:26:30 2024 by rpki-client on console-fra.rpki-client.org