Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/egvR7O7n1ngEB8nQ-H_orsxssE8.roa
File: egvR7O7n1ngEB8nQ-H_orsxssE8.roa (raw, json)
Hash identifier: ew396v0uIDN7dSPEZ3NlgCeNrmo2kJ75tfkh8DUH6oY=
Subject key identifier: 7A:0B:D1:EC:EE:E7:D6:78:04:07:C9:D0:F8:7F:E8:AE:CC:6C:B0:4F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B80C2914544591B7573297FDDD4452A34
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/egvR7O7n1ngEB8nQ-H_orsxssE8.roa
Signing time: Mon 30 Oct 2023 13:25:16 +0000
ROA not before: Mon 30 Oct 2023 13:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 394711
IP address blocks: 45.66.231.0/24 maxlen: 24
94.156.64.0/24 maxlen: 24
94.156.64.0/21 maxlen: 24
94.156.68.0/24 maxlen: 24
94.156.65.0/24 maxlen: 24
94.156.69.0/24 maxlen: 24
94.156.66.0/24 maxlen: 24
94.156.70.0/24 maxlen: 24
94.156.67.0/24 maxlen: 24
94.156.71.0/24 maxlen: 24
91.92.240.0/24 maxlen: 24
91.92.244.0/24 maxlen: 24
91.92.240.0/20 maxlen: 24
91.92.245.0/24 maxlen: 24
91.92.241.0/24 maxlen: 24
91.92.246.0/24 maxlen: 24
91.92.242.0/24 maxlen: 24
91.92.243.0/24 maxlen: 24
91.92.252.0/24 maxlen: 24
91.92.248.0/24 maxlen: 24
91.92.253.0/24 maxlen: 24
91.92.249.0/24 maxlen: 24
91.92.250.0/24 maxlen: 24
91.92.251.0/24 maxlen: 24
91.92.247.0/24 maxlen: 24
91.92.254.0/24 maxlen: 24
91.92.255.0/24 maxlen: 24
45.89.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:c2:91:45:44:59:1b:75:73:29:7f:dd:d4:45:2a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 30 13:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a0bd1eceee7d6780407c9d0f87fe8aecc6cb04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8d:af:b5:ac:60:52:e6:71:79:62:fd:09:1f:
74:8a:1e:70:58:cf:f1:36:57:41:d6:20:93:cc:27:
b2:8f:82:b9:5f:36:32:6a:54:82:68:ee:a1:b7:fe:
8a:31:5c:81:90:bf:55:6b:0e:ee:fc:15:78:13:ae:
e3:7a:92:b3:d7:21:73:8b:9e:cf:00:68:3e:45:6b:
1b:8d:29:38:b9:38:b6:3e:c4:23:d0:70:7a:62:dd:
49:d2:17:83:00:b7:0b:14:56:2d:db:c0:ec:4b:d0:
13:9a:5c:fa:bb:60:ba:99:e7:86:da:8e:36:a1:d2:
9e:a3:19:87:c1:5e:29:37:c3:ec:1c:b5:14:bd:56:
bc:6a:4d:7d:9c:18:2f:89:d1:89:58:d8:b9:96:d9:
8a:ff:76:e9:bf:6c:18:00:f8:bb:20:d9:0d:cf:bc:
45:e1:2b:c7:88:eb:75:87:8d:b3:a8:c3:72:69:66:
b4:fc:dd:50:97:b5:cc:bd:b9:c0:15:9a:f2:5f:a9:
2c:96:92:ff:c1:a7:91:e7:f9:97:59:8c:a4:46:ee:
04:0e:30:b0:76:11:3c:51:32:52:f7:50:c8:37:7e:
a1:5d:e4:3b:04:65:88:39:e1:0b:35:7c:fc:a4:4f:
89:0f:66:d6:c7:e5:8e:d4:be:0f:93:c5:a5:11:f9:
5a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0B:D1:EC:EE:E7:D6:78:04:07:C9:D0:F8:7F:E8:AE:CC:6C:B0:4F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/egvR7O7n1ngEB8nQ-H_orsxssE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.231.0/24
45.89.247.0/24
91.92.240.0/20
94.156.64.0/21
Signature Algorithm: sha256WithRSAEncryption
17:04:39:ce:69:5a:9d:02:ad:77:9d:b2:30:66:05:ce:13:60:
18:b2:80:49:59:02:1d:c8:d3:0d:fe:66:a5:7a:d5:ac:a8:db:
36:9b:eb:36:9c:85:7e:23:67:ae:24:39:4f:df:38:16:97:65:
7f:94:3f:68:f8:6a:38:a4:ea:b0:6a:59:83:a0:19:ca:48:8c:
27:a0:d7:a3:37:cc:64:d2:4c:ae:54:d1:6f:02:cd:44:61:d5:
45:f2:9f:50:15:8e:99:57:b3:5f:01:3a:53:7c:71:76:9b:d7:
33:3e:cc:5f:94:39:58:8e:ba:c4:c0:47:49:61:de:e8:34:c9:
dc:05:56:0f:a6:22:c5:1a:5e:0a:a0:d4:fe:fa:be:36:fa:65:
87:a3:8e:b0:f3:45:c1:7c:8c:69:46:f1:b7:3f:de:87:99:ae:
10:d1:01:15:7b:91:e0:0b:2a:e2:14:09:c9:78:5e:73:4f:6b:
c4:4d:7b:67:7c:1a:6c:b2:e3:1a:13:f9:f9:0f:f3:cf:6d:0b:
56:2a:31:a1:9b:e2:12:97:7e:8a:55:8a:80:ed:b1:8d:93:1f:
27:eb:c4:12:02:c9:6a:1c:40:df:90:07:30:06:e3:e2:75:89:
4f:df:9a:00:3a:0b:16:3c:6f:bf:61:17:0a:1a:86:4a:f7:8a:
4f:67:e0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:12 2024 by rpki-client on console-ams.rpki-client.org