Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/di-bib_YwdPr8g5D-dqT1xd21dw.roa
File: di-bib_YwdPr8g5D-dqT1xd21dw.roa (raw, json)
Hash identifier: UM6FGsMgQ8HaU1HBlVGAg3UF3+CKZl00lWtTChkzCVw=
Subject key identifier: 76:2F:9B:89:BF:D8:C1:D3:EB:F2:0E:43:F9:DA:93:D7:17:76:D5:DC
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01905DAB84C934259D67C703B28B6DCEF116
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/di-bib_YwdPr8g5D-dqT1xd21dw.roa
Signing time: Fri 28 Jun 2024 07:07:19 +0000
ROA not before: Fri 28 Jun 2024 07:07:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 37.221.120.0/22 maxlen: 24
45.12.255.0/24 maxlen: 24
45.66.229.0/24 maxlen: 24
45.81.241.0/24 maxlen: 24
45.81.242.0/24 maxlen: 24
45.88.64.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.144.152.0/24 maxlen: 24
45.144.153.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
45.149.243.0/24 maxlen: 24
45.151.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
87.120.33.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
95.214.25.0/24 maxlen: 24
95.214.26.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.31.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.42.32.0/23 maxlen: 24
193.149.2.0/24 maxlen: 24
193.149.3.0/24 maxlen: 24
194.48.248.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 10:39:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5d:ab:84:c9:34:25:9d:67:c7:03:b2:8b:6d:ce:f1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 28 07:07:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=762f9b89bfd8c1d3ebf20e43f9da93d71776d5dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c9:8a:bd:a9:e9:50:41:95:98:24:9a:db:97:
1b:cf:2b:25:e2:36:59:0c:d5:22:c5:48:99:0c:66:
ed:99:6c:ff:d9:c6:e1:5c:77:a9:73:d7:4c:31:01:
95:06:9c:65:82:ad:1d:6f:28:3c:8d:58:98:46:c6:
92:a3:27:b5:03:18:c6:b4:3a:54:92:83:f4:37:2e:
a5:4f:48:a6:c8:f9:74:e4:98:c6:33:7b:94:75:03:
71:51:ea:a1:44:c8:52:a7:9a:54:de:b9:95:ab:d5:
6c:85:50:60:6c:90:15:9e:1c:e9:8a:62:89:42:79:
74:65:3d:74:9c:95:9c:f0:38:59:fd:77:f7:18:8b:
13:9b:0e:c4:fd:f3:96:bf:33:fa:d7:f7:cb:9f:4a:
34:2f:32:19:0b:61:58:b5:69:7a:c5:8a:39:b0:fc:
30:24:00:36:49:14:ca:2a:ed:43:3b:1a:e9:e4:d1:
5e:6a:fc:9b:da:c7:6d:ef:90:11:01:ba:0f:5e:20:
b9:b2:1a:50:a5:15:d9:20:4f:45:68:2b:5b:0c:72:
b8:b4:4b:c3:50:b7:0a:48:8c:24:21:96:1e:e0:a0:
b0:0f:5b:51:65:cd:81:9e:03:f5:45:a8:a9:9a:a9:
96:3b:ac:aa:db:75:f1:5c:87:b8:ab:d6:9c:a4:b2:
25:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2F:9B:89:BF:D8:C1:D3:EB:F2:0E:43:F9:DA:93:D7:17:76:D5:DC
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/di-bib_YwdPr8g5D-dqT1xd21dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.120.0/22
45.12.255.0/24
45.66.229.0/24
45.81.241.0-45.81.242.255
45.88.64.0/24
45.88.88.0/24
45.144.152.0-45.144.154.255
45.149.233.0/24
45.149.243.0/24
45.151.88.0/23
83.219.97.0/24
84.21.174.0/23
87.120.33.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
94.156.78.0/24
95.214.25.0-95.214.26.255
141.98.1.0/24
147.78.102.0/24
171.22.17.0/24
171.22.31.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.42.32.0/23
193.149.2.0/23
194.48.248.0/24
194.55.224.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
06:43:71:24:43:f3:bd:00:20:41:a1:d5:eb:7f:52:bf:66:f2:
e6:52:7d:c9:65:28:23:c1:f3:ed:f7:93:a8:70:cc:88:90:c5:
be:59:70:60:dd:35:1a:54:aa:22:03:b3:14:d7:83:ec:f6:5a:
ef:a8:f1:2e:63:9a:4a:23:a1:6c:81:29:c9:3a:91:ac:0b:08:
05:6e:f0:88:81:37:45:96:5c:6a:fa:65:27:9a:32:23:63:d3:
79:57:ce:89:a4:a6:88:44:49:bf:e4:cf:99:d0:ef:66:aa:bf:
d4:f1:4c:59:e2:4f:9f:c9:c0:73:bd:ba:85:95:7d:8e:22:52:
b5:ff:b9:5f:10:2d:a4:af:ed:5e:61:7d:68:a0:66:91:c0:55:
77:81:cf:fd:8d:00:73:3c:3b:0e:ad:a1:23:93:6b:5c:c6:e5:
74:6b:da:06:40:41:d9:05:3b:e7:35:63:88:cd:0d:db:4e:6b:
69:d6:be:d4:34:36:4a:fa:08:84:02:ba:66:ea:53:a0:85:11:
36:2e:e7:fe:38:96:70:54:03:59:74:95:4b:cd:b5:4d:9c:2e:
7e:98:b7:ce:7e:0e:af:e7:41:0a:a1:6a:5e:6b:b7:67:d5:b9:
48:09:59:0f:50:d2:86:dd:a5:eb:4e:07:ec:ee:f9:e8:c8:ec:
a1:fb:c8:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 15:48:40 2024 by rpki-client on console-ams.rpki-client.org