Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oWuXfZsqHGxNsqe_ulnk2kFeky8.roa
File: oWuXfZsqHGxNsqe_ulnk2kFeky8.roa (raw, json)
Hash identifier: w349yVi94qqzUHt6Unv8zeEid6tNqXvunxTu02WzgV0=
Subject key identifier: A1:6B:97:7D:9B:2A:1C:6C:4D:B2:A7:BF:BA:59:E4:DA:41:5E:93:2F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0190A0E14095B5839998FE0E7D32BFA274D7
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oWuXfZsqHGxNsqe_ulnk2kFeky8.roa
Signing time: Thu 11 Jul 2024 08:20:35 +0000
ROA not before: Thu 11 Jul 2024 08:20:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399486
IP address blocks: 45.88.91.0/24 maxlen: 24
79.110.49.0/24 maxlen: 24
80.76.49.0/24 maxlen: 24
85.209.133.0/24 maxlen: 24
194.59.30.0/24 maxlen: 24
194.59.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 15:19:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a0:e1:40:95:b5:83:99:98:fe:0e:7d:32:bf:a2:74:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 11 08:20:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a16b977d9b2a1c6c4db2a7bfba59e4da415e932f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:5a:93:00:55:43:75:7c:6b:ec:95:aa:2c:
d4:a6:25:cd:cf:09:73:13:d4:b9:b7:3a:3e:21:d6:
e0:c0:aa:75:6c:6d:f8:df:fe:d9:05:af:13:21:df:
7d:85:f3:6d:9a:fb:9f:c2:25:4f:8e:a8:bf:80:54:
b8:ff:ac:e0:99:ef:c0:ea:b7:59:18:c8:f2:7e:91:
e8:78:0e:5a:05:e5:f6:9e:ce:6e:d5:11:ad:21:05:
3a:4b:fd:e3:9b:74:a2:99:91:0a:69:65:05:0f:db:
77:35:d2:dd:ba:05:e8:5b:9f:be:99:25:bc:e8:1e:
af:b3:aa:36:79:33:d7:ca:20:78:bd:5e:38:33:1c:
15:e8:3e:73:2d:54:83:7f:6f:a7:6f:08:72:63:4f:
1c:3c:5b:52:f8:e0:94:00:74:48:45:24:f2:54:b3:
b4:d2:4c:86:c0:c8:84:5d:c9:b5:8c:15:b8:e2:03:
44:b4:0b:6c:a3:81:1b:dc:0c:0e:1e:87:1d:37:5b:
7b:3a:b2:0c:ef:2c:af:ab:56:21:9e:22:1a:9d:44:
71:d9:ea:a0:81:94:34:c9:ba:8f:25:f6:40:81:0b:
8d:dc:17:95:3b:df:74:66:fe:3c:53:7a:b2:d8:2f:
74:d1:76:e2:71:3a:26:d8:fb:50:c5:93:6e:bc:45:
1e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6B:97:7D:9B:2A:1C:6C:4D:B2:A7:BF:BA:59:E4:DA:41:5E:93:2F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oWuXfZsqHGxNsqe_ulnk2kFeky8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.91.0/24
79.110.49.0/24
80.76.49.0/24
85.209.133.0/24
194.59.30.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:7b:f2:36:fd:1d:b2:e3:d3:24:3c:3e:03:69:6f:86:99:70:
8b:c8:94:cb:d0:c7:59:af:1b:ea:83:ec:3d:31:c3:5d:5e:8a:
85:8f:cf:73:3e:a3:24:3b:58:08:ba:c7:f2:ed:81:be:41:fc:
c0:e4:d7:c3:6c:8d:2a:f6:5e:45:c9:37:f3:36:50:01:b3:bf:
a2:e9:76:d7:35:13:66:a1:50:d7:de:a8:7d:69:e8:05:cb:ec:
57:5f:57:6c:9e:1f:ea:81:29:32:5f:9f:31:0b:dc:e6:d5:fe:
48:cd:91:13:52:31:8c:a9:29:63:20:1d:89:8f:79:9f:ba:9d:
8d:dc:b0:bc:b6:a7:27:70:e8:40:ab:ac:e6:56:51:49:8a:6f:
5f:8e:e9:fb:93:00:4f:a6:44:ee:e6:74:42:d3:e1:ce:c6:1e:
9f:84:9c:ac:d0:fd:77:f9:4d:70:b6:8d:48:eb:55:79:17:12:
33:e1:6a:eb:e2:fd:0a:54:e3:2f:c9:2d:29:73:54:5f:c7:72:
26:c4:08:36:12:48:1d:3a:51:e5:9c:ab:08:56:da:63:3f:f3:
c3:aa:ac:b4:21:a4:8e:f0:46:51:3f:2e:c9:9f:4a:3e:77:87:
0a:7a:6f:11:64:24:9e:03:dc:76:93:2d:71:53:41:00:8a:27:
b9:66:c5:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:50 2025 by rpki-client