Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ilVkyjrpeuTS-g_jFIyeNPJQpvI.roa
File: ilVkyjrpeuTS-g_jFIyeNPJQpvI.roa (raw, json)
Hash identifier: URCJuHl5+K0RDG+oo+H3QpVhy+R6lOXxT1HNmLg22/0=
Subject key identifier: 8A:55:64:CA:3A:E9:7A:E4:D2:FA:0F:E3:14:8C:9E:34:F2:50:A6:F2
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019136A3B8E0CB4468AA1BECA6C8E1AC05C6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ilVkyjrpeuTS-g_jFIyeNPJQpvI.roa
Signing time: Fri 09 Aug 2024 10:16:24 +0000
ROA not before: Fri 09 Aug 2024 10:16:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.58.95.0/24 maxlen: 24
45.8.92.0/24 maxlen: 24
45.88.90.0/24 maxlen: 24
45.128.232.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.69.0/24 maxlen: 24
87.121.103.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.124.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.8.0/24 maxlen: 24
94.156.10.0/24 maxlen: 24
94.156.11.0/24 maxlen: 24
109.206.237.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.70.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.246.223.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
193.37.41.0/24 maxlen: 24
193.37.44.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 04:26:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:36:a3:b8:e0:cb:44:68:aa:1b:ec:a6:c8:e1:ac:05:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 9 10:16:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a5564ca3ae97ae4d2fa0fe3148c9e34f250a6f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a2:c0:2c:cc:62:3d:49:ec:33:63:95:6c:63:
c0:4a:0b:f5:b8:bf:43:a5:4d:d6:e6:d2:61:f3:a3:
e3:1c:65:f1:4b:cd:2e:af:2e:f9:50:81:83:ae:0d:
05:ee:19:dc:eb:aa:69:a0:a0:d1:74:c6:be:06:d2:
1d:50:1e:47:00:cd:cd:b1:72:7a:ac:4f:3c:45:60:
7c:78:78:68:a4:c9:14:34:72:9d:fb:85:fa:a7:8e:
50:b0:ae:fb:02:13:17:a1:f9:38:da:06:cf:8a:13:
e5:aa:be:f6:9d:d3:e5:2f:a9:89:77:75:7b:2f:47:
36:ce:74:83:ad:5d:a1:23:a1:34:b4:d5:57:f3:e0:
e3:c0:f8:3e:5b:32:dc:06:12:ed:33:e0:c4:df:ac:
d3:66:85:b4:d5:dd:4b:a1:75:4e:84:b8:07:05:f5:
cf:12:81:f5:71:cc:fa:60:99:cf:48:0c:56:13:ef:
80:0a:4c:dd:0e:eb:18:4b:16:ee:ab:0d:d4:b2:51:
45:e4:72:bc:bc:fe:b5:84:20:9c:42:02:4f:2d:cc:
13:27:54:ad:a5:60:22:fe:e1:92:62:0e:d8:d5:cf:
91:40:ae:9d:67:db:80:c1:f7:f8:2f:c3:1b:26:6b:
20:bf:39:0a:38:99:f2:1f:0a:0b:b7:f5:fb:fc:1a:
8f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:55:64:CA:3A:E9:7A:E4:D2:FA:0F:E3:14:8C:9E:34:F2:50:A6:F2
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ilVkyjrpeuTS-g_jFIyeNPJQpvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.95.0/24
45.8.92.0/24
45.88.90.0/24
45.128.232.0/24
45.144.154.0/24
45.151.89.0/24
80.76.51.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.69.0/24
87.121.103.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.124.0/23
94.154.160.0/22
94.156.8.0/24
94.156.10.0/23
109.206.237.0/24
141.98.1.0/24
147.78.102.0/23
171.22.72.0/22
178.215.224.0/24
185.216.70.0/24
185.216.84.0/22
185.218.84.0/22
185.246.223.0/24
193.35.18.0/24
193.37.41.0/24
193.37.44.0/24
193.222.96.0/24
194.48.251.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
27:89:76:71:8e:0d:60:b8:8c:24:2a:4b:b5:a4:ba:90:6f:d2:
3d:0e:8a:b0:ba:38:8e:b2:22:a7:f9:b8:47:2a:ec:32:ad:ce:
30:e1:ef:de:9e:77:0f:d7:f4:f1:b4:87:39:61:09:5f:3a:1b:
f3:fb:19:53:75:0a:9c:5b:7b:d5:58:3e:7d:ad:4f:64:7d:49:
1b:03:13:40:f4:82:8d:27:f1:93:9d:24:02:5e:60:72:cf:a8:
f3:35:21:10:5b:61:41:69:f6:41:04:73:5c:a7:89:e8:a7:8d:
e4:a4:87:d1:c4:14:13:71:3a:a0:db:e6:82:72:99:28:fd:1b:
cc:db:4d:75:be:91:63:61:77:12:6e:bc:5d:f9:23:ca:1a:3b:
c3:31:fa:8e:e1:26:f2:1e:2d:03:a5:54:a2:f2:7a:ae:93:ab:
b5:f6:1c:a1:b5:0a:fe:74:8a:9c:d0:a3:59:02:7f:0a:49:d6:
7f:50:f6:f2:79:7b:2e:d6:47:bd:53:c7:3f:1e:c1:23:ab:b2:
fb:7e:c8:69:bb:97:8a:ae:30:ac:44:ae:b3:80:28:7b:4c:ad:
fa:d4:54:77:e3:72:0a:03:2f:8b:14:19:d6:c8:46:0b:0d:08:
aa:b4:f5:9f:49:0c:f0:9d:6e:e3:e5:e2:bf:10:4b:5e:4a:8f:
2c:38:61:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 05:43:53 2024 by rpki-client on console-fra.rpki-client.org