Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/c_H7bkqDz91P82GCLnqoBTP5eXM.roa
File: c_H7bkqDz91P82GCLnqoBTP5eXM.roa (raw, json)
Hash identifier: l7d+zA/LZhmR6CivvnNg9IQj1fSr45lU5Jbj6FqszOw=
Subject key identifier: 73:F1:FB:6E:4A:83:CF:DD:4F:F3:61:82:2E:7A:A8:05:33:F9:79:73
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192B93873103D0F1206CEF1777A2D8D2B2F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/c_H7bkqDz91P82GCLnqoBTP5eXM.roa
Signing time: Wed 23 Oct 2024 11:52:17 +0000
ROA not before: Wed 23 Oct 2024 11:52:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 5.253.56.0/23 maxlen: 24
45.139.123.0/24 maxlen: 24
91.92.67.0/24 maxlen: 24
93.123.76.0/22 maxlen: 24
94.154.173.0/24 maxlen: 24
94.156.152.0/24 maxlen: 24
94.156.154.0/23 maxlen: 24
94.156.178.0/24 maxlen: 24
94.156.180.0/23 maxlen: 24
94.156.237.0/24 maxlen: 24
185.252.177.0/24 maxlen: 24
193.25.219.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 11:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b9:38:73:10:3d:0f:12:06:ce:f1:77:7a:2d:8d:2b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 23 11:52:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73f1fb6e4a83cfdd4ff361822e7aa80533f97973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4b:c6:82:cb:c0:96:f1:43:e2:4b:9f:64:84:
26:18:59:fb:7c:1d:e8:7a:0f:7b:ad:c0:59:d6:49:
0c:c9:d5:c4:18:73:9b:20:64:91:59:e8:44:db:a3:
20:73:8b:b9:58:d4:a0:a8:37:43:35:2c:c6:53:5e:
03:4d:be:85:3b:9b:8a:61:21:7a:e1:32:f8:85:6c:
f0:1e:b1:6d:07:35:fe:b8:eb:fc:a9:35:3e:af:85:
ea:9f:67:31:90:49:80:a4:eb:96:e0:a3:b9:b0:e3:
24:e2:80:ff:65:a6:f5:1f:8c:10:e6:01:52:21:10:
ee:11:e0:df:54:1e:01:5a:70:af:2d:5c:43:60:05:
a4:9a:cd:69:b1:3f:ba:b6:10:33:91:0f:c7:eb:3a:
4d:58:9d:87:ec:94:f1:66:a1:2c:13:84:f1:d6:a9:
3b:67:6b:dc:60:a8:0c:08:2f:e3:7e:4d:86:eb:25:
ad:b3:ce:d5:73:ec:9e:64:e1:a6:d6:93:a7:78:72:
49:72:d2:90:55:e8:8c:71:a0:9f:e5:81:19:52:4e:
aa:bb:a6:c5:75:90:1d:35:9f:ad:17:21:51:29:ad:
8e:5a:18:c4:b2:ed:1c:10:33:1f:9b:ee:ab:d3:44:
e4:2f:84:92:da:50:62:57:e6:76:89:ab:42:e9:dc:
0c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F1:FB:6E:4A:83:CF:DD:4F:F3:61:82:2E:7A:A8:05:33:F9:79:73
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/c_H7bkqDz91P82GCLnqoBTP5eXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.56.0/23
45.139.123.0/24
91.92.67.0/24
93.123.76.0/22
94.154.173.0/24
94.156.152.0/24
94.156.154.0/23
94.156.178.0/24
94.156.180.0/23
94.156.237.0/24
185.252.177.0/24
193.25.219.0/24
193.47.62.0/24
193.58.121.0/24
193.58.123.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e4:c3:30:87:fb:27:34:e0:5b:c8:35:46:6d:cf:89:3a:af:
2b:7b:77:08:43:d1:0e:2d:af:73:91:1a:fe:91:85:b7:f2:e2:
f3:93:d0:28:44:f1:dd:c4:09:43:39:e5:69:72:86:08:2f:64:
94:ff:06:62:a6:13:18:fa:07:44:7d:ae:0f:b3:5f:a5:b1:db:
0f:fb:05:44:84:ea:39:07:79:d1:c3:0f:bf:ef:ee:3f:25:38:
40:fd:f6:ad:b2:fe:5d:51:35:88:8e:59:dd:b2:1c:06:fa:67:
d3:35:4f:3c:28:85:32:02:3c:cf:89:d7:4e:0e:dc:f6:d8:d9:
58:17:11:15:8c:3f:4b:09:3a:e0:3c:a0:ca:8e:fd:d0:45:bc:
be:42:16:26:b1:67:1a:12:b0:ef:e0:6a:62:a3:d8:e2:af:ed:
6b:82:fa:03:55:e7:4c:fe:fd:f4:10:55:8e:ea:fe:40:6d:64:
3b:99:7d:17:ee:44:c2:15:a5:8c:6d:69:29:da:93:bb:77:9c:
0f:2e:95:de:62:f8:61:27:15:9a:53:de:c2:3b:92:7e:ed:b0:
3a:93:ea:9c:90:5f:8b:42:31:04:bb:ee:79:95:b0:bf:33:52:
50:5a:72:f1:2c:5d:b1:af:ce:09:92:f3:05:b8:51:de:4f:12:
57:9e:ce:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 6 15:16:07 2024 by rpki-client on console-fra.rpki-client.org