Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pyw775DWjGOFq_Ghc0GPuEYIvHQ.roa
File: pyw775DWjGOFq_Ghc0GPuEYIvHQ.roa (raw, json)
Hash identifier: lVkonA/AHyhu3+ObPtmUXdnP+nn3PdvmbjyPIVg32MI=
Subject key identifier: A7:2C:3B:EF:90:D6:8C:63:85:AB:F1:A1:73:41:8F:B8:46:08:BC:74
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01919905D9C79BC54E938AFD5BA30DCE6C10
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pyw775DWjGOFq_Ghc0GPuEYIvHQ.roa
Signing time: Wed 28 Aug 2024 12:46:23 +0000
ROA not before: Wed 28 Aug 2024 12:46:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.88.90.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
81.161.238.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
84.54.48.0/24 maxlen: 24
85.31.47.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.120.93.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
93.123.39.0/24 maxlen: 24
94.103.125.0/24 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.37.41.0/24 maxlen: 24
193.222.96.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 08:38:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:05:d9:c7:9b:c5:4e:93:8a:fd:5b:a3:0d:ce:6c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 28 12:46:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a72c3bef90d68c6385abf1a173418fb84608bc74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d8:7f:c7:74:41:79:3d:e4:6c:95:91:39:13:
b3:76:d7:e8:51:d9:db:07:2a:2c:52:29:eb:01:10:
e9:4b:19:2b:33:49:3b:81:4c:95:92:13:9c:f6:65:
cb:e8:e9:db:72:4a:cf:f0:16:12:fd:07:82:4d:71:
e6:23:c4:4a:d6:e0:52:44:39:c0:3e:fb:21:0b:77:
95:73:0e:6e:43:91:e8:4b:2d:df:6d:d6:f5:76:f3:
38:cd:81:74:c0:61:6e:70:ea:27:84:3a:11:2e:c4:
e9:b4:b0:73:1b:8f:6a:f3:76:a7:6a:32:7b:64:43:
24:1a:88:e3:b4:4b:20:31:61:46:fa:16:fb:34:cc:
9c:3c:9f:f1:9f:89:d6:70:cc:6b:94:55:e3:8e:29:
4f:4e:8b:76:50:45:e2:ad:b9:03:d4:17:27:10:1a:
90:53:bf:ab:75:15:d2:38:e9:36:07:06:a3:07:fe:
4e:2f:5d:4c:5c:f5:93:19:9a:d2:f9:07:e6:50:6b:
0e:01:29:1e:94:c2:c8:55:4a:72:70:27:ea:1a:03:
6e:36:1d:ad:ad:d9:9e:bc:56:3f:17:00:68:2e:3f:
29:7c:e9:84:0c:ad:86:1d:3e:58:9b:25:34:e3:b5:
4b:8f:6c:e2:d2:62:16:0e:56:a8:bd:3f:09:6f:9f:
2a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2C:3B:EF:90:D6:8C:63:85:AB:F1:A1:73:41:8F:B8:46:08:BC:74
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pyw775DWjGOFq_Ghc0GPuEYIvHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.144.154.0/24
45.151.89.0/24
80.76.51.0/24
81.161.238.0/24
83.219.97.0/24
84.21.174.0/23
84.54.48.0/24
85.31.47.0/24
87.120.87.0/24
87.120.93.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
93.123.39.0/24
94.103.125.0/24
94.154.160.0/22
94.156.11.0/24
141.98.1.0/24
147.78.103.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.37.41.0/24
193.222.96.0/24
194.48.251.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:34:e1:2f:41:2c:0e:32:97:c9:28:cb:7e:36:a5:66:34:35:
da:5b:2e:c6:02:bc:d0:11:ca:4d:47:b5:c7:bb:2c:66:bc:a0:
27:ba:ed:fc:b3:37:d4:be:36:38:54:ab:fe:6f:9d:ef:50:8a:
1f:a3:f0:d0:6e:30:a5:a5:8a:1a:65:55:e7:0b:91:a8:11:7f:
b0:17:ef:1a:a1:98:23:fe:6d:d4:9b:7b:dd:b8:19:d8:c5:12:
cc:85:a9:08:80:92:b4:8e:b4:6b:1f:0d:4b:35:3f:7a:80:26:
0d:8a:a5:9b:8e:de:ce:d8:25:2d:78:b9:5b:05:8d:97:b8:ac:
3a:88:cf:84:66:e3:8a:7d:00:29:07:23:96:62:2f:84:37:13:
d1:d4:be:17:14:91:96:84:19:bc:08:a7:0f:a5:70:73:74:5c:
38:39:e8:55:98:9c:e2:e1:ff:05:18:44:28:88:0a:65:22:28:
36:c3:a9:53:ad:c5:70:1a:3b:77:c2:4f:39:c8:b0:78:e8:95:
49:a4:93:2d:73:2f:c6:31:e2:98:ac:da:22:95:a4:e1:25:f9:
e3:aa:b3:50:3d:b8:e9:be:58:d6:17:ae:ac:08:d8:fe:bc:f0:
b0:88:63:b0:2b:c0:c4:6e:b4:2f:cf:64:ea:39:4e:f0:f2:ae:
b1:0c:8f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 10:00:51 2024 by rpki-client on console-fra.rpki-client.org