Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pVr1Vz1dXvVSV9tvoQUNgSM0QrA.roa
File: pVr1Vz1dXvVSV9tvoQUNgSM0QrA.roa (raw, json)
Hash identifier: 4nmNftTv69A7bVQFUF2SyE5QYpD7x1o9ZQ8t1aavyKs=
Subject key identifier: A5:5A:F5:57:3D:5D:5E:F5:52:57:DB:6F:A1:05:0D:81:23:34:42:B0
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192D7FAE61758E14403E164604CC514FC2E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pVr1Vz1dXvVSV9tvoQUNgSM0QrA.roa
Signing time: Tue 29 Oct 2024 11:13:17 +0000
ROA not before: Tue 29 Oct 2024 11:13:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.14.164.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
45.90.88.0/24 maxlen: 24
45.139.106.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
45.151.91.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.54.48.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.124.0/23 maxlen: 24
87.121.162.0/24 maxlen: 24
91.92.240.0/20 maxlen: 32
92.119.196.0/23 maxlen: 24
93.123.84.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
94.156.64.0/21 maxlen: 32
141.98.1.0/24 maxlen: 24
147.78.100.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.222.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 19:36:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d7:fa:e6:17:58:e1:44:03:e1:64:60:4c:c5:14:fc:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 29 11:13:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a55af5573d5d5ef55257db6fa1050d81233442b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:ff:76:95:7e:79:74:1e:1c:ee:4b:5b:9c:
bd:ee:e9:a0:85:a9:be:ca:26:ce:53:4f:a4:89:42:
5c:1a:d1:00:a7:e1:a6:80:23:96:03:fd:9d:2e:78:
c0:9a:a4:d9:89:ec:8e:b5:d9:a4:59:4b:cb:94:5e:
87:c1:79:bb:15:cb:ce:34:6d:5e:29:38:d9:8e:d8:
01:18:28:6f:57:a5:45:13:1f:f3:3f:47:34:4b:07:
91:90:79:d5:07:28:49:9e:f9:47:81:63:2d:ba:ce:
51:f2:dc:3b:14:a9:c7:08:9c:0b:de:68:14:e7:2f:
64:12:78:f9:59:5f:99:e9:96:68:ec:14:a8:76:3f:
1d:24:e2:1d:ce:0d:62:6a:80:e1:08:ec:78:8c:c9:
99:71:bb:6b:ea:73:b5:f6:b7:9c:5a:71:1f:e1:9a:
41:68:d8:fd:8c:ae:8a:31:4f:df:8b:92:d0:73:68:
65:4a:1c:ad:05:bf:38:ca:ec:72:f3:cf:83:39:c1:
b1:0f:6f:b6:b7:96:77:14:4a:23:7a:24:75:5d:0f:
36:4a:d6:56:6e:8d:f3:d2:45:6c:dc:61:60:2c:4c:
f2:8a:95:6c:a3:32:29:ff:a8:d2:a7:08:65:8d:6b:
b8:e5:79:69:46:c2:3b:33:9a:ce:ac:2c:e4:e9:a5:
92:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5A:F5:57:3D:5D:5E:F5:52:57:DB:6F:A1:05:0D:81:23:34:42:B0
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pVr1Vz1dXvVSV9tvoQUNgSM0QrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.164.0/24
45.66.228.0/24
45.90.88.0/24
45.139.106.0/24
45.141.158.0/24
45.151.89.0/24
45.151.91.0/24
83.219.97.0/24
84.54.48.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.124.0/23
87.121.162.0/24
91.92.240.0/20
92.119.196.0/23
93.123.84.0/24
94.154.160.0/22
94.156.11.0/24
94.156.64.0/21
141.98.1.0/24
147.78.100.0/24
171.22.72.0/22
185.216.84.0/22
185.218.84.0/22
193.222.96.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:33:38:8c:d4:61:00:4a:c9:7a:e6:a8:52:09:14:ec:5c:9b:
5c:51:12:4a:3f:3d:c7:f9:ab:e2:bd:1e:f7:9b:78:b3:93:6d:
52:90:d6:dc:b1:dd:8c:78:05:85:e0:6a:44:ef:c3:eb:80:70:
a2:37:a6:32:b1:a4:b0:30:69:66:b7:2e:a2:31:51:3b:e6:e2:
7c:1a:61:72:60:b4:64:3d:db:cb:60:54:88:2c:84:e6:0c:ae:
80:69:b6:25:06:06:de:b5:56:aa:4f:50:f9:5b:da:8a:e8:ae:
14:93:f1:61:fe:cf:e3:da:57:a2:12:d9:f6:b1:d5:32:3d:3d:
f4:60:e0:d7:8c:3b:bf:df:96:c7:25:ce:c2:6a:7e:e5:03:c5:
49:a4:0a:62:cf:7a:f7:23:a2:56:61:72:96:aa:62:55:f1:f3:
d0:66:26:5e:d6:5e:37:56:a3:2a:41:d7:16:06:06:0d:16:88:
37:f1:30:94:13:17:da:48:3d:ad:c2:99:39:0f:ea:7e:fe:07:
49:31:31:d8:41:64:53:96:92:79:b4:18:55:5a:d5:69:93:ce:
87:9c:0d:25:6d:d6:78:18:f6:d1:bc:20:33:5d:58:82:7f:58:
22:69:7a:ae:71:3e:db:b6:33:5c:ff:3d:05:ff:c4:42:93:c3:
59:52:e7:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 21:37:28 2024 by rpki-client on console-fra.rpki-client.org