Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jYYVJ4l30YI_4oVoEStwtM_TyOk.roa
File: jYYVJ4l30YI_4oVoEStwtM_TyOk.roa (raw, json)
Hash identifier: ONoLAjM6g0Ebj385PHJO194uyBYcIBunZ8qOHaf5pjk=
Subject key identifier: 8D:86:15:27:89:77:D1:82:3F:E2:85:68:11:2B:70:B4:CF:D3:C8:E9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EA7B7831A881924F2E606EEE2D8527E24
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jYYVJ4l30YI_4oVoEStwtM_TyOk.roa
Signing time: Thu 04 Apr 2024 06:06:45 +0000
ROA not before: Thu 04 Apr 2024 06:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.8.93.0/24 maxlen: 24
45.12.255.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
82.115.211.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.25.216.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
212.87.207.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 04:55:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a7:b7:83:1a:88:19:24:f2:e6:06:ee:e2:d8:52:7e:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 4 06:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d8615278977d1823fe28568112b70b4cfd3c8e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d4:22:2f:48:05:9b:ba:0c:d0:76:0f:3a:14:
73:56:30:80:6b:ec:fc:50:1a:12:63:b2:35:8b:3e:
c5:3f:9b:41:46:ab:d7:19:07:86:41:6e:d3:91:2c:
a3:68:fe:54:6b:e8:16:40:1d:f6:76:61:42:6f:c4:
7c:0c:74:69:2a:41:37:94:ff:30:12:f9:0c:39:bb:
b4:db:b6:b4:75:c1:45:b7:62:1e:c7:53:5f:9e:a3:
60:57:9f:f2:58:75:48:30:ec:e9:4b:5f:91:02:7e:
50:7b:17:24:07:5f:91:f0:e7:c3:61:ef:4d:ba:a6:
b7:3e:d1:a3:fc:fd:3a:42:5a:f3:24:5e:76:ef:44:
76:7a:cb:99:9c:54:35:82:75:a1:a0:19:76:f6:35:
be:14:de:4b:3f:e8:52:0e:d6:ad:73:a9:03:57:87:
56:20:b1:76:b6:ac:d0:be:79:3d:11:91:52:bd:2e:
5e:2b:51:d9:34:20:80:bd:27:e1:d0:60:55:fb:7e:
02:12:3d:20:72:c9:be:02:7e:f5:ed:ad:2d:02:eb:
e7:fd:f2:c7:ac:6a:b8:8a:79:79:5d:f1:44:13:b1:
d0:ca:c8:c4:2e:87:78:62:99:55:26:15:c3:b6:12:
08:b0:eb:b5:b4:6b:b4:7a:ac:9d:7c:50:ff:65:70:
e2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:86:15:27:89:77:D1:82:3F:E2:85:68:11:2B:70:B4:CF:D3:C8:E9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/jYYVJ4l30YI_4oVoEStwtM_TyOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
45.12.255.0/24
45.66.228.0/24
82.115.211.0/24
87.121.105.0/24
141.98.5.0/24
178.215.238.0/24
193.25.216.0/24
193.37.47.0/24
193.149.28.0/22
194.180.36.0/24
212.87.207.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5d:1b:37:bd:f4:d7:ed:72:d3:8a:8b:a4:e9:36:99:8f:f6:
25:6e:a3:e6:c5:7e:50:d7:da:9c:14:da:d3:f9:b5:b7:4d:b7:
91:75:58:42:5c:76:b6:e0:9f:a3:ec:35:6c:7f:d8:86:f9:ee:
92:74:97:51:58:90:9a:2d:13:a3:d4:8c:eb:07:62:ba:ce:19:
79:5d:c0:b1:e7:17:1e:ff:ea:1d:7a:6b:49:6d:f1:59:d7:93:
9b:cf:b1:e3:85:ce:cf:40:e4:32:f8:dd:22:99:14:7c:aa:07:
31:04:1f:0b:f4:88:33:cf:4c:08:38:1f:67:10:3c:eb:ce:6c:
60:fd:a1:ed:11:14:dd:ab:0a:16:5a:ab:80:a4:da:b0:6c:b2:
6a:9c:51:ba:f8:69:82:78:b9:08:86:2b:fd:c6:c1:d7:c4:15:
4d:dc:a6:14:ba:f0:36:c0:75:18:f4:6e:78:78:50:36:7a:16:
68:41:70:96:aa:9b:c5:9d:b6:0d:4d:fa:42:a6:ab:9d:75:39:
1d:2b:b9:5a:65:4d:91:00:e1:18:4d:f1:43:00:ee:07:e4:c9:
0c:44:28:1c:f1:f8:c5:c9:a1:93:40:c8:e0:f1:a1:6d:ce:57:
8c:d3:d9:33:e3:4a:dc:f5:70:49:0e:a3:0d:ed:b9:f1:a0:b0:
c0:b4:28:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:17 2024 by rpki-client on console-fra.rpki-client.org