Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dWBOOjNY3hL2IegrTgugljuMOtU.roa
File: dWBOOjNY3hL2IegrTgugljuMOtU.roa (raw, json)
Hash identifier: jVYlZhPfZI/bj1StjGH+MXGsAY8ZBRFx2pggC8eRuUg=
Subject key identifier: 75:60:4E:3A:33:58:DE:12:F6:21:E8:2B:4E:0B:A0:96:3B:8C:3A:D5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CC8DD07A2D92E73ECF538DEC188FFA9D4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dWBOOjNY3hL2IegrTgugljuMOtU.roa
Signing time: Tue 02 Jan 2024 06:29:37 +0000
ROA not before: Tue 02 Jan 2024 06:29:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.12.255.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
94.156.176.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
45.8.93.0/24 maxlen: 24
45.151.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dd:07:a2:d9:2e:73:ec:f5:38:de:c1:88:ff:a9:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 06:29:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75604e3a3358de12f621e82b4e0ba0963b8c3ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:02:0f:86:04:48:68:88:c9:20:bd:3d:a2:78:
86:23:8d:75:ba:f6:d1:ed:2d:2d:60:66:30:6b:ae:
75:bb:65:47:e3:55:bc:70:f1:74:ac:00:46:f2:cd:
e3:c2:a1:5e:aa:ca:95:53:16:bc:1e:06:e5:e5:82:
9a:bf:a7:26:5b:01:85:7e:cf:8b:6a:fc:6d:06:c2:
dd:48:2b:01:c6:a7:10:da:59:a3:d1:58:87:23:8a:
02:37:f8:b9:98:83:f2:33:fc:b8:e6:db:7f:35:93:
11:60:06:63:0a:cc:44:1d:6b:46:3a:03:2b:60:12:
82:54:e4:98:ea:0c:f7:f9:ac:48:9f:60:8a:8f:d6:
e9:05:e8:3f:f5:f4:f0:bc:d0:3b:0a:41:a0:62:b8:
b2:8c:3e:d4:2e:25:66:ac:d0:49:b5:d0:de:eb:ee:
d6:8a:ad:9e:3d:0a:57:f9:12:e4:01:cc:6c:89:80:
d5:a0:49:c0:b7:24:82:b3:e4:a9:cf:47:d5:56:8b:
64:3c:9e:fc:98:14:8b:30:8a:2d:5d:64:1d:b5:0b:
b8:2f:b8:0f:50:a5:51:33:37:bf:5d:94:82:be:fd:
b0:07:03:cf:c9:8c:a1:9e:ad:5f:c9:a8:79:e7:8e:
f1:da:8d:7b:f3:00:5c:c9:27:68:ff:e4:2b:05:4f:
6a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:60:4E:3A:33:58:DE:12:F6:21:E8:2B:4E:0B:A0:96:3B:8C:3A:D5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/dWBOOjNY3hL2IegrTgugljuMOtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
45.12.255.0/24
45.66.228.0/24
45.151.90.0/24
79.110.50.0/24
87.121.105.0/24
94.156.176.0/24
185.226.175.0/24
193.37.47.0/24
193.149.28.0/22
194.180.36.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
19:49:cd:54:18:00:0e:36:bd:4f:f2:b8:67:1a:a1:fd:5e:f1:
cc:67:cd:f1:ac:0f:26:7b:87:a2:dc:d8:92:f7:d9:d8:0b:ac:
80:f5:32:93:23:07:1e:15:8c:83:86:2f:05:2a:94:07:3f:ee:
b7:47:09:31:4c:83:c8:4f:85:89:77:bd:e4:ac:ef:b5:01:43:
9a:3e:42:54:95:93:9b:9a:7c:d3:70:5a:c0:44:b4:9d:9f:86:
80:a6:4b:7e:5c:b7:fe:aa:16:9e:1a:ac:14:ce:32:5c:41:03:
8a:6e:47:cc:61:66:b2:e2:77:76:f7:5b:0e:6e:e9:58:89:92:
42:73:40:08:06:81:3f:c1:14:3e:5c:8e:3b:64:ec:04:19:5f:
b9:2c:ff:fd:4b:e3:15:a4:59:a8:04:1d:92:73:b4:35:fb:d1:
c0:9c:cf:a3:62:bc:6d:c5:c7:ef:e7:16:30:bd:11:6b:16:27:
a1:98:26:a1:57:fe:3d:ae:cb:bb:e3:68:16:75:f9:3b:92:7e:
78:c6:4e:81:4f:25:74:fc:49:44:5c:f0:e7:cc:35:f9:19:92:
82:1f:1a:a8:68:59:40:b4:3c:d1:39:ad:63:75:e8:25:bf:d6:
7e:a9:9f:82:94:bb:e9:af:c5:b8:07:b9:00:20:df:e5:6d:68:
67:3d:9f:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 3 10:22:44 2024 by rpki-client on console-ams.rpki-client.org