Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/njS8_MPMS7UApqTfubEqIJmAQg4.roa
File: njS8_MPMS7UApqTfubEqIJmAQg4.roa (raw, json)
Hash identifier: GCzXSZ5jn2RUij3Uf2zU/rfZAoBq0iWYNbzGkqDkCbc=
Subject key identifier: 9E:34:BC:FC:C3:CC:4B:B5:00:A6:A4:DF:B9:B1:2A:20:99:80:42:0E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192DDBD93DBE4AA77EC60CBDFCF7451917A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/njS8_MPMS7UApqTfubEqIJmAQg4.roa
Signing time: Wed 30 Oct 2024 14:04:01 +0000
ROA not before: Wed 30 Oct 2024 14:04:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 45.84.88.0/24 maxlen: 24
45.89.244.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
45.95.1.0/24 maxlen: 24
45.95.3.0/24 maxlen: 24
45.149.235.0/24 maxlen: 24
83.143.113.0/24 maxlen: 24
85.208.139.0/24 maxlen: 24
87.120.36.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
87.121.217.0/24 maxlen: 24
87.121.218.0/24 maxlen: 24
93.123.31.0/24 maxlen: 24
94.125.100.0/24 maxlen: 24
94.125.101.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.218.137.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
193.8.185.0/24 maxlen: 24
193.168.196.0/24 maxlen: 24
193.168.197.0/24 maxlen: 24
193.168.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 17:45:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dd:bd:93:db:e4:aa:77:ec:60:cb:df:cf:74:51:91:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 30 14:04:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e34bcfcc3cc4bb500a6a4dfb9b12a209980420e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:f1:6e:21:b2:3f:ca:84:51:58:7f:83:60:
bc:5e:6a:2f:92:a6:ef:5d:84:fe:45:9c:4f:d8:3d:
6f:c5:b3:96:08:c1:14:76:6f:4f:24:e7:a1:33:ad:
88:b9:ac:de:51:18:e1:46:6a:f1:23:ca:78:69:3e:
68:40:41:8c:d7:6f:e3:a1:5f:95:ed:b2:df:fd:45:
e4:b6:41:1f:a6:ee:a4:d9:46:9d:bd:44:5f:48:d3:
5f:cb:31:0f:c6:59:33:a4:ab:62:eb:02:e9:45:7f:
ba:8b:07:c2:f6:80:4e:d7:6b:0e:42:1f:35:c4:e7:
a2:d0:1c:81:23:d1:0b:5f:99:08:94:7e:8e:af:37:
2c:d4:a2:87:9f:1b:ac:31:6a:5c:5a:d9:5a:62:55:
0b:cc:7a:08:78:d3:09:07:82:fb:2a:d4:d1:2a:a9:
70:81:11:ea:27:1f:ba:03:1c:fc:a5:e1:a3:87:d4:
96:8f:b6:b9:c6:87:cb:e6:22:47:a4:99:7c:cd:e7:
b8:71:fb:44:92:d3:6b:14:b9:6a:c6:9e:9d:13:4f:
be:fe:b8:3a:80:ce:f1:a9:a7:ca:7f:0f:df:8a:3f:
cd:e8:7b:31:03:87:5c:92:21:75:bf:cd:86:b2:73:
d2:80:66:f3:1e:55:c9:78:05:96:56:2a:97:ac:2c:
6f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:34:BC:FC:C3:CC:4B:B5:00:A6:A4:DF:B9:B1:2A:20:99:80:42:0E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/njS8_MPMS7UApqTfubEqIJmAQg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.88.0/24
45.89.244.0/24
45.91.193.0/24
45.95.1.0/24
45.95.3.0/24
45.149.235.0/24
83.143.113.0/24
85.208.139.0/24
87.120.36.0/24
87.120.88.0/24
87.121.98.0/24
87.121.217.0-87.121.218.255
93.123.31.0/24
94.125.100.0/23
109.206.236.0/24
109.206.242.0/24
185.218.137.0/24
185.246.222.0/24
193.8.185.0/24
193.168.196.0/23
193.168.199.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:3a:d7:1f:29:46:4c:40:6e:0e:4b:33:42:7e:19:72:e0:97:
84:26:22:c7:f3:04:ab:25:62:c9:b7:c7:92:c4:7f:79:a1:e6:
91:1c:d6:73:a3:a6:a9:44:12:dd:76:ef:5f:8d:5d:bf:b8:41:
fb:bf:91:69:9c:33:be:d1:84:60:f4:93:a0:43:98:84:04:22:
eb:c0:53:db:46:db:f2:42:a6:46:3b:b0:ed:d6:74:7a:93:88:
14:f2:bd:9d:f5:fd:5c:b4:4d:8c:9a:1d:63:68:a7:2c:fa:02:
98:cf:75:4e:e9:d3:fb:ee:c6:9b:36:17:47:3e:12:2d:67:54:
22:83:57:a6:38:84:6a:3d:ee:56:05:19:54:2f:59:a0:96:64:
f2:5b:d0:09:1a:c6:0e:3c:9e:95:f7:42:b1:c9:29:31:bd:1d:
11:ff:fb:cc:ea:db:ed:1a:bd:20:c3:4e:c2:08:bf:85:c9:f6:
7e:e5:d6:05:52:cb:2d:a2:17:4c:8d:8a:56:7c:d7:12:33:99:
c6:e1:75:d5:b3:26:e6:cc:58:c1:21:a3:29:30:80:02:c9:96:
0d:9b:ce:f1:ea:9b:4f:d4:ff:70:63:9c:82:2a:6d:23:83:04:
9e:0a:59:81:11:50:88:66:54:27:0d:8e:65:fa:e7:02:3e:d6:
19:b0:54:f3
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgISAZLdvZPb5Kp37GDL3890UZF6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQxMDMwMTQwNDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTM0YmNmY2MzY2M0YmI1MDBhNmE0ZGZiOWIxMmEyMDk5ODA0MjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNTxbiGyP8qEUVh/g2C8Xmovkqbv
XYT+RZxP2D1vxbOWCMEUdm9PJOehM62IuazeURjhRmrxI8p4aT5oQEGM12/joV+V
7bLf/UXktkEfpu6k2UadvURfSNNfyzEPxlkzpKti6wLpRX+6iwfC9oBO12sOQh81
xOei0ByBI9ELX5kIlH6Orzcs1KKHnxusMWpcWtlaYlULzHoIeNMJB4L7KtTRKqlw
gRHqJx+6Axz8peGjh9SWj7a5xofL5iJHpJl8zee4cftEktNrFLlqxp6dE0++/rg6
gM7xqafKfw/fij/N6HsxA4dckiF1v82GsnPSgGbzHlXJeAWWViqXrCxvFwIDAQAB
o4ICjjCCAoowHQYDVR0OBBYEFJ40vPzDzEu1AKak37mxKiCZgEIOMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvbmpTOF9NUE1TN1VBcHFUZnViRXFJSm1BUWc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGjBggrBgEFBQcBBwEB/wSBkzCBkDCBjQQCAAEwgYYDBAAt
VFgDBAAtWfQDBAAtW8EDBAAtXwEDBAAtXwMDBAAtlesDBABTj3EDBABV0IsDBABX
eCQDBABXeFgDBABXeWIwDAMEAFd52QMEAFd52gMEAF17HwMEAV59ZAMEAG3O7AME
AG3O8gMEALnaiQMEALn23gMEAMEIuQMEAcGoxAMEAMGoxzANBgkqhkiG9w0BAQsF
AAOCAQEAOjrXHylGTEBuDkszQn4ZcuCXhCYix/MEqyViybfHksR/eaHmkRzWc6Om
qUQS3XbvX41dv7hB+7+RaZwzvtGEYPSToEOYhAQi68BT20bb8kKmRjuw7dZ0epOI
FPK9nfX9XLRNjJodY2inLPoCmM91TunT++7GmzYXRz4SLWdUIoNXpjiEaj3uVgUZ
VC9ZoJZk8lvQCRrGDjyelfdCsckpMb0dEf/7zOrb7Rq9IMNOwgi/hcn2fuXWBVLL
LaIXTI2KVnzXEjOZxuF11bMm5sxYwSGjKTCAAsmWDZvO8eqbT9T/cGOcgiptI4ME
ngpZgRFQiGZUJw2OZfrnAj7WGbBU8w==
-----END CERTIFICATE-----
Generated at Wed Oct 30 19:53:35 2024 by rpki-client on console-fra.rpki-client.org