Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d8RnEUE9cw801QKp9QAYsTOPqlA.roa
File: d8RnEUE9cw801QKp9QAYsTOPqlA.roa (raw, json)
Hash identifier: wgFKecJarLAzgTj7MdrRnem5wRB0ZWT/nPQkpmgncv4=
Subject key identifier: 77:C4:67:11:41:3D:73:0F:34:D5:02:A9:F5:00:18:B1:33:8F:AA:50
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190A6A5FE0AA121884E645EFFE940E91575
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d8RnEUE9cw801QKp9QAYsTOPqlA.roa
Signing time: Fri 12 Jul 2024 11:13:34 +0000
ROA not before: Fri 12 Jul 2024 11:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.221.120.0/22 maxlen: 24
45.66.229.0/24 maxlen: 24
45.81.241.0/24 maxlen: 24
45.81.242.0/24 maxlen: 24
45.144.152.0/24 maxlen: 24
45.144.153.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
45.151.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.42.32.0/23 maxlen: 24
193.149.2.0/24 maxlen: 24
193.149.3.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 06:40:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a6:a5:fe:0a:a1:21:88:4e:64:5e:ff:e9:40:e9:15:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 12 11:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77c46711413d730f34d502a9f50018b1338faa50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ff:62:a0:7b:5e:19:b2:ba:b6:18:a5:4a:ca:
b5:b5:ec:41:ea:30:8e:0d:79:e9:e1:4f:f0:b3:fd:
ea:58:7f:7e:9c:ff:54:07:2a:cf:f3:37:9a:1c:17:
6c:d8:e8:71:d8:6d:93:6b:ce:7d:bb:ca:73:c4:ea:
ab:f0:14:b4:70:62:b5:1f:f9:3d:63:d6:46:8a:f1:
9d:84:fc:d6:0c:da:f1:9b:78:a8:31:fe:55:24:00:
eb:d8:2c:92:93:f4:81:af:0b:e8:66:d3:75:1c:b7:
4f:f9:29:a0:36:c5:38:c7:00:5a:01:ac:1a:19:e1:
43:54:c3:15:e7:d3:60:2a:21:63:48:39:b4:ac:62:
2c:91:d1:20:87:f9:82:46:9f:e7:79:f8:80:1c:96:
ad:a0:c0:f6:3a:b8:70:bd:f8:2f:cf:8d:52:74:e4:
0a:54:c0:3c:9e:73:97:ab:b6:2b:e5:54:81:4c:af:
24:c6:03:7c:69:79:f8:ab:23:40:dc:64:3f:e7:60:
f9:93:08:00:6b:f9:c1:f0:ce:e9:e6:7b:2b:a6:81:
02:ef:9e:3f:3d:6a:66:90:5e:aa:84:9c:d4:d4:33:
e2:7f:d5:1e:8e:06:fa:1f:6a:53:5a:0c:60:8e:86:
e6:e7:22:8d:5a:7b:66:ff:60:1b:46:26:ed:a3:4b:
ac:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C4:67:11:41:3D:73:0F:34:D5:02:A9:F5:00:18:B1:33:8F:AA:50
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d8RnEUE9cw801QKp9QAYsTOPqlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
45.66.229.0/24
45.81.241.0-45.81.242.255
45.144.152.0-45.144.154.255
45.149.233.0/24
45.151.88.0/23
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
85.31.47.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
94.156.78.0/24
141.98.1.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.42.32.0/23
193.149.2.0/23
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c9:c6:13:ad:2e:3c:6b:9b:27:be:0c:87:60:61:ce:54:7f:
fa:70:5c:a8:74:21:c4:6c:7f:2a:1e:84:f6:67:4c:51:a0:f9:
41:8c:24:9b:25:90:c1:4a:42:b9:72:71:24:87:aa:39:84:c6:
f7:93:40:05:ca:d9:de:7c:15:05:39:ce:ac:8b:ba:f0:e2:e3:
06:fb:93:53:28:50:ef:93:f4:27:23:cb:b4:fd:6c:27:78:56:
35:2f:d5:d3:95:b3:2c:6d:86:f1:9c:d2:9c:ec:68:37:06:e0:
e8:a6:79:26:54:89:7d:33:de:65:76:be:24:33:7a:84:0f:e6:
d7:dd:f3:14:66:96:ac:34:5a:44:4b:c2:ce:60:2f:c1:f9:74:
b8:8c:b0:07:94:c1:e1:45:d4:df:96:a5:eb:ff:46:f3:a4:a6:
64:d0:58:ca:d5:fa:77:19:b5:b5:03:27:bc:5f:44:52:56:91:
01:3e:5d:40:c3:70:bb:18:67:dd:c9:7e:2e:40:bf:0e:08:95:
3f:d8:f1:b6:44:74:b8:48:c6:ae:72:9a:86:59:86:77:5d:f1:
9b:96:a5:f6:07:48:43:af:ec:f9:94:be:54:6e:17:0a:0f:d3:
21:24:3b:70:03:ae:15:4f:c0:c8:11:f9:e5:da:38:fc:f3:d3:
86:18:c2:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 07:39:20 2024 by rpki-client on console-fra.rpki-client.org