Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n-qKr6iyOvX7fAP72YSMKnxbqUs.roa
File: n-qKr6iyOvX7fAP72YSMKnxbqUs.roa (raw, json)
Hash identifier: ykTLbfUXQZ+tFSzUUaaeXfXGqLFZujHGCM1Fb5Fmd4c=
Subject key identifier: 9F:EA:8A:AF:A8:B2:3A:F5:FB:7C:03:FB:D9:84:8C:2A:7C:5B:A9:4B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018AF992D440A373CD67832A2B343BDE9EE9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n-qKr6iyOvX7fAP72YSMKnxbqUs.roa
Signing time: Wed 04 Oct 2023 07:24:23 +0000
ROA not before: Wed 04 Oct 2023 07:24:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34577
IP address blocks: 93.123.40.0/21 maxlen: 21
87.120.178.0/23 maxlen: 23
87.120.180.0/22 maxlen: 22
87.120.184.0/22 maxlen: 22
93.123.67.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
93.123.66.0/24 maxlen: 24
87.120.190.0/23 maxlen: 23
87.121.84.0/22 maxlen: 22
87.121.88.0/23 maxlen: 23
87.120.158.0/23 maxlen: 23
87.120.45.119/32 maxlen: 32
94.156.112.0/20 maxlen: 20
37.60.141.0/24 maxlen: 24
87.121.48.0/22 maxlen: 22
87.120.0.0/22 maxlen: 22
93.123.96.0/22 maxlen: 22
93.123.100.0/23 maxlen: 23
87.120.12.0/24 maxlen: 24
87.120.14.0/23 maxlen: 23
87.120.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 04 Oct 2023 07:36:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:92:d4:40:a3:73:cd:67:83:2a:2b:34:3b:de:9e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 4 07:24:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fea8aafa8b23af5fb7c03fbd9848c2a7c5ba94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:7c:ef:c4:bc:52:ba:73:d8:5b:e8:7d:e6:9a:
7b:77:5e:cd:ec:b9:bf:d9:e8:be:13:47:eb:54:2a:
91:a7:cb:6d:36:d8:98:d5:6b:be:13:55:f6:99:d4:
29:f1:2c:cb:a7:50:e0:b6:62:a1:fe:13:69:00:65:
da:1d:3a:e2:09:af:f8:13:56:94:ab:2b:dd:5b:92:
93:4a:01:c1:77:c0:65:01:39:3a:37:e7:72:3d:22:
44:2c:6d:96:f8:d9:7c:5f:89:6c:2b:89:ea:ef:16:
9e:8b:ba:91:cf:ad:3e:0c:1c:a4:fe:75:b9:b4:4f:
3a:21:1e:95:ed:96:1c:44:c3:f8:71:f9:ee:b2:d8:
ec:f3:a5:18:d7:29:b7:7e:7f:29:1a:75:09:19:a2:
b1:77:e8:e5:58:7e:9a:45:2e:0a:2d:85:58:76:bb:
65:c3:c6:3a:13:d7:f9:67:a3:f6:7b:f0:d8:6e:53:
1a:29:b4:ab:8b:08:20:fc:d5:10:b6:5a:b1:90:ab:
de:9c:05:86:7a:8b:03:6d:dc:a7:b2:b9:7b:f1:f9:
90:da:5e:a2:52:01:4e:ec:f7:9c:90:62:13:fc:70:
f4:01:90:61:b8:40:12:9e:c1:3b:c0:27:e2:e1:14:
f9:a5:6c:d1:ea:2d:a2:4f:35:9a:4f:ef:d4:e8:9d:
d7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:EA:8A:AF:A8:B2:3A:F5:FB:7C:03:FB:D9:84:8C:2A:7C:5B:A9:4B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/n-qKr6iyOvX7fAP72YSMKnxbqUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.141.0/24
87.120.0.0/22
87.120.12.0/24
87.120.14.0/23
87.120.44.0/23
87.120.158.0/23
87.120.178.0-87.120.187.255
87.120.190.0/23
87.121.48.0/22
87.121.84.0-87.121.89.255
93.123.40.0/21
93.123.66.0/23
93.123.96.0-93.123.101.255
94.156.112.0/20
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
06:bb:34:d3:31:1d:bb:d0:a0:f5:09:8d:38:1c:ea:f8:3b:36:
d8:c0:75:6e:cf:9d:a8:61:a0:19:5b:c4:f1:e6:25:5d:55:41:
61:0b:c8:f3:46:b3:4c:3c:3e:65:2f:dc:b8:13:ec:a1:d1:59:
5a:16:9f:76:5f:f1:34:a8:ee:fb:dd:b8:bf:3f:74:19:22:d4:
05:e1:73:bc:1d:72:2e:2c:d7:a4:51:52:c4:3e:b8:ae:ce:c6:
56:2c:c8:65:2b:fc:3c:d1:3a:af:5a:3b:b2:ec:31:bd:7c:30:
5d:38:86:fa:2c:1b:02:7d:62:d8:c8:0e:ad:6e:35:37:60:97:
53:a9:fb:ab:0d:d4:23:24:56:93:0f:5f:72:99:13:de:41:6e:
0e:b1:1a:f2:1e:0d:7b:7c:ae:c5:b0:9e:d7:30:7a:ac:20:5f:
0e:86:21:3b:9c:c1:1e:7d:80:49:92:79:0f:48:85:fb:77:e5:
19:e5:8f:69:a1:17:1f:04:94:1c:ae:0d:6a:c1:fb:ce:7b:d4:
1a:14:92:d3:61:84:b2:e1:f2:cb:ac:b5:3d:92:4d:5e:29:5f:
42:f9:7c:24:9b:92:f9:c3:d2:f2:d5:1a:84:b4:3c:54:74:7d:
82:61:06:99:ae:f8:24:e3:36:49:f4:29:85:2c:c2:3b:5e:c3:
11:c0:92:41
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:18 2024 by rpki-client on console-fra.rpki-client.org