Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iXFmooGx2IQCqW0WG8HTuaNMhDE.roa
File: iXFmooGx2IQCqW0WG8HTuaNMhDE.roa (raw, json)
Hash identifier: o9aM0ii4NZfnZ/2e/fr/gLAeZtrP3b4BBM0kbA6flnw=
Subject key identifier: 89:71:66:A2:81:B1:D8:84:02:A9:6D:16:1B:C1:D3:B9:A3:4C:84:31
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018CF2F1D9EC2EB8F99C0056CADBA63A67B2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iXFmooGx2IQCqW0WG8HTuaNMhDE.roa
Signing time: Wed 10 Jan 2024 10:36:25 +0000
ROA not before: Wed 10 Jan 2024 10:36:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.218.84.0/22 maxlen: 24
147.78.101.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
185.226.173.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
37.139.129.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
31.13.211.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.252.176.0/24 maxlen: 24
45.84.89.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
185.216.84.0/22 maxlen: 24
45.88.90.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 11:24:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f2:f1:d9:ec:2e:b8:f9:9c:00:56:ca:db:a6:3a:67:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 10 10:36:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=897166a281b1d88402a96d161bc1d3b9a34c8431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:87:fc:bf:cf:73:e6:16:e3:59:b0:ab:97:e1:
92:b4:2e:b7:be:5e:2e:2d:84:c8:52:2d:91:a1:9e:
ad:d2:85:59:01:c2:d3:ae:17:f4:47:09:db:fd:57:
80:27:42:be:16:84:22:06:40:39:62:de:bb:4f:56:
1e:5b:93:75:e9:fc:9d:15:70:fe:e8:f5:e3:59:a7:
33:bd:fc:cd:7d:6d:a5:bc:ee:60:8c:f1:ed:61:4c:
cf:4d:d5:ba:16:50:68:0e:6d:87:c5:94:2f:c1:96:
3e:2d:3f:0e:ab:45:25:6e:23:38:5f:d9:98:f1:e3:
5b:6f:b3:9f:8a:f6:bd:ad:4c:c0:af:4a:45:e6:c3:
04:99:4d:6d:00:76:66:38:98:fb:69:0e:7b:5f:27:
d0:63:fb:59:d3:07:98:f4:06:ec:3e:8d:c9:89:59:
06:c2:5c:db:18:82:ed:f6:dd:cc:bd:10:9f:f8:8d:
d2:c4:da:10:a2:dc:cf:1b:63:6d:6d:d2:15:3e:06:
82:3f:a5:ba:ab:1b:8f:4e:e0:25:08:d9:a5:32:32:
43:36:7e:fd:d2:78:e1:d5:2f:2e:ec:af:54:f3:44:
14:a3:a8:a7:9e:9f:75:97:6c:0f:cf:ae:a2:89:d2:
b6:80:62:df:b9:3d:45:b3:f6:2e:4e:f9:9e:1c:dd:
5f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:71:66:A2:81:B1:D8:84:02:A9:6D:16:1B:C1:D3:B9:A3:4C:84:31
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iXFmooGx2IQCqW0WG8HTuaNMhDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.211.0/24
37.139.129.0/24
45.84.89.0/24
45.88.90.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.161.0-94.154.163.255
94.154.172.0/24
94.156.239.0/24
147.78.101.0-147.78.102.255
171.22.72.0/22
178.215.224.0/24
178.215.226.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.226.175.0/24
185.252.176.0/24
194.55.186.0/24
Signature Algorithm: sha256WithRSAEncryption
35:28:5a:15:f5:f8:4b:4d:32:84:44:8c:d2:dd:69:92:07:27:
0d:44:9c:bc:c0:f8:21:de:c7:6e:10:8c:57:96:07:5f:64:ad:
3f:9c:fa:bb:70:d8:cf:62:6b:4f:88:6c:42:3e:74:2f:38:b8:
0d:dc:df:e0:d7:6d:46:ce:24:1c:de:fc:30:ee:01:78:4d:8a:
a7:80:eb:7c:13:17:ad:c7:ec:21:66:30:f5:ab:ad:0c:af:49:
af:44:ce:0d:3c:c0:d1:65:46:f9:75:9c:c4:c7:ce:00:ae:ea:
2f:d7:43:6f:37:d3:ef:52:67:42:ff:95:ef:1f:64:e2:3d:c7:
12:d1:98:5a:c8:01:7d:39:e5:76:a5:40:c6:04:59:48:38:8b:
83:a2:73:67:b5:8d:e7:91:97:f2:5a:30:dc:7f:f3:ff:55:74:
33:bf:76:28:41:1e:69:65:74:f1:c4:8d:b1:d7:75:0c:f3:20:
29:f9:c2:3e:0b:c4:67:97:fb:7e:3b:8f:00:c8:88:08:3d:79:
b0:0b:40:fe:d6:16:e5:d0:b2:31:63:b6:1d:a9:9b:2d:75:68:
47:3a:0b:c2:94:7b:6c:2d:05:4d:61:9c:3b:75:be:29:6b:1a:
8f:0c:35:b7:91:cb:ca:07:a6:c6:d8:da:6c:e4:53:99:c0:7d:
01:67:92:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 16:51:18 2024 by rpki-client on console-ams.rpki-client.org