Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d4GkYQ_Ju-XIB_TUlC_JPALIpEo.roa
File: d4GkYQ_Ju-XIB_TUlC_JPALIpEo.roa (raw, json)
Hash identifier: E6XO1sNpe44gHR8bE6PyUuKBz2eaJ8pVVXk0F2nqiQQ=
Subject key identifier: 77:81:A4:61:0F:C9:BB:E5:C8:07:F4:D4:94:2F:C9:3C:02:C8:A4:4A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E0E73EAE5221EFD6D21C07923DC3334FA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d4GkYQ_Ju-XIB_TUlC_JPALIpEo.roa
Signing time: Tue 05 Mar 2024 11:51:01 +0000
ROA not before: Tue 05 Mar 2024 11:51:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.151.89.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.239.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.226.173.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 13:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0e:73:ea:e5:22:1e:fd:6d:21:c0:79:23:dc:33:34:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 5 11:51:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7781a4610fc9bbe5c807f4d4942fc93c02c8a44a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b4:4d:d2:41:5d:fa:99:4b:9b:d8:fa:a2:37:
aa:c5:55:e5:0d:ec:3d:bf:96:c0:6d:16:87:64:50:
b7:f4:82:8e:30:0c:27:96:d6:ef:b8:d9:b9:eb:ab:
08:66:4f:00:a4:3a:74:01:2f:67:db:4c:93:fa:38:
e9:d4:61:cf:a0:f6:0d:55:50:f6:d1:18:20:a5:8e:
03:1f:39:f8:e3:22:30:26:1c:b8:76:c0:d4:6a:9b:
05:2b:24:40:88:ff:0c:12:94:23:ee:2a:be:0c:5f:
7e:46:bb:80:76:07:a3:41:60:3d:6e:bd:6f:ac:2b:
63:dc:86:cf:00:90:40:b5:17:80:f8:3d:ad:b9:c6:
b6:ef:de:1b:dc:0d:4d:ce:94:0b:18:80:20:6c:94:
4a:c6:05:e3:4b:c0:1a:c8:e1:6b:5b:1c:fe:8a:08:
9b:1a:d3:55:e0:42:d7:93:bc:98:15:ed:87:61:21:
54:af:cc:49:c9:07:4d:4c:76:e4:8a:d1:f8:4e:35:
18:61:27:78:58:ac:1a:ad:83:1a:77:97:58:df:11:
5c:f9:8a:23:60:af:20:1b:8d:e3:f7:82:a1:78:bc:
52:5e:19:fb:0b:94:1b:5a:ba:97:13:a2:3a:bb:d9:
db:e9:b1:e6:ba:49:6b:5e:30:35:2b:00:2f:24:de:
eb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:81:A4:61:0F:C9:BB:E5:C8:07:F4:D4:94:2F:C9:3C:02:C8:A4:4A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d4GkYQ_Ju-XIB_TUlC_JPALIpEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.239.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.252.176.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
24:b7:5a:3d:80:48:46:dc:1b:1b:b4:af:a9:08:fb:13:bb:a8:
05:18:31:d7:e1:d8:ad:44:8f:7a:a4:1d:e9:8a:71:ee:56:65:
92:e4:8c:85:d3:1f:8a:69:b5:96:66:81:b1:70:b8:f3:a4:17:
9d:6f:47:66:c4:1f:d0:f6:29:0c:d7:b1:52:1f:49:85:35:41:
de:ea:6c:89:48:c1:16:c0:54:f7:7c:4c:36:df:c1:53:70:9c:
8e:7c:88:bd:28:75:86:f0:c2:8d:9a:c2:9a:e3:10:1e:32:0b:
d8:69:61:3f:a6:86:6b:93:ec:40:90:68:c7:c3:3a:db:1b:97:
3a:e9:10:ce:8b:ae:4e:ed:ee:da:35:d6:9a:84:ce:c2:d3:b6:
87:04:f7:90:ee:d6:b2:cc:41:14:d2:f1:57:6c:00:f4:e2:ec:
bc:4b:77:98:14:dc:32:6b:ac:4f:fe:59:7f:d7:de:8d:ae:f2:
be:32:39:23:4a:41:63:03:30:97:47:48:b3:1c:81:09:f7:2a:
57:52:59:6a:1f:7c:14:8d:50:37:f4:5e:5e:38:f3:dc:a2:e5:
7e:98:4e:a5:ee:df:01:57:fc:3e:56:6f:ca:bd:98:56:1c:87:
2f:6b:c8:9d:a4:b2:c6:68:26:fc:cb:f8:dd:d5:b5:81:ab:26:
4b:97:6c:59
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgISAY4Oc+rlIh79bSHAeSPcMzT6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwMzA1MTE1MTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzgxYTQ2MTBmYzliYmU1YzgwN2Y0ZDQ5NDJmYzkzYzAyYzhhNDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLRN0kFd+plLm9j6ojeqxVXlDew9
v5bAbRaHZFC39IKOMAwnltbvuNm566sIZk8ApDp0AS9n20yT+jjp1GHPoPYNVVD2
0RggpY4DHzn44yIwJhy4dsDUapsFKyRAiP8MEpQj7iq+DF9+RruAdgejQWA9br1v
rCtj3IbPAJBAtReA+D2tuca2794b3A1NzpQLGIAgbJRKxgXjS8AayOFrWxz+igib
GtNV4ELXk7yYFe2HYSFUr8xJyQdNTHbkitH4TjUYYSd4WKwarYMad5dY3xFc+Yoj
YK8gG43j94KheLxSXhn7C5QbWrqXE6I6u9nb6bHmuklrXjA1KwAvJN7rNQIDAQAB
o4ICaTCCAmUwHQYDVR0OBBYEFHeBpGEPybvlyAf01JQvyTwCyKRKMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvZDRHa1lRX0p1LVhJQl9UVWxDX0pQQUxJcEVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH8GCCsGAQUFBwEHAQH/BHAwbjBsBAIAATBmAwQALZdZAwQA
V3hXAwQAV3ktAwQAV3ndAwQBXHfEAwQCXpqgAwQAXpzvAwQAk05mAwQAqxYRAwQC
qxZIAwQAstfgAwQAstfsAwQCudhUAwQCudpUAwQAueKtAwQAufywAwQAwjfgMA0G
CSqGSIb3DQEBCwUAA4IBAQAkt1o9gEhG3BsbtK+pCPsTu6gFGDHX4ditRI96pB3p
inHuVmWS5IyF0x+KabWWZoGxcLjzpBedb0dmxB/Q9ikM17FSH0mFNUHe6myJSMEW
wFT3fEw238FTcJyOfIi9KHWG8MKNmsKa4xAeMgvYaWE/poZrk+xAkGjHwzrbG5c6
6RDOi65O7e7aNdaahM7C07aHBPeQ7tayzEEU0vFXbAD04uy8S3eYFNwya6xP/ll/
196NrvK+MjkjSkFjAzCXR0izHIEJ9ypXUllqH3wUjVA39F5eOPPcouV+mE6l7t8B
V/w+Vm/KvZhWHIcva8idpLLGaCb8y/jd1bWBqyZLl2xZ
-----END CERTIFICATE-----
Generated at Tue Mar 5 17:53:05 2024 by rpki-client on console-ams.rpki-client.org