Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q1kkNjE2BhJ4XbZz75z75Vf8HDw.roa
File: q1kkNjE2BhJ4XbZz75z75Vf8HDw.roa (raw, json)
Hash identifier: 0Hmh5IS/wgmS/uKSGwWtVEe9r7SV4Ofi1iWNgtVsohI=
Subject key identifier: AB:59:24:36:31:36:06:12:78:5D:B6:73:EF:9C:FB:E5:57:FC:1C:3C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01905DAB853D10C332333D6B6066B224EEB2
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q1kkNjE2BhJ4XbZz75z75Vf8HDw.roa
Signing time: Fri 28 Jun 2024 07:07:20 +0000
ROA not before: Fri 28 Jun 2024 07:07:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.66.228.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 17:52:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5d:ab:85:3d:10:c3:32:33:3d:6b:60:66:b2:24:ee:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 28 07:07:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab59243631360612785db673ef9cfbe557fc1c3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:37:1b:01:32:1c:f7:47:b5:6e:fc:49:07:
40:01:85:da:43:df:c3:0a:80:c9:7b:d6:57:94:7f:
4a:d8:7f:16:eb:1f:a2:a7:cf:54:b4:33:72:35:96:
53:86:80:e4:8c:dd:94:94:55:49:a4:f1:71:01:d6:
83:83:71:d5:4b:fe:fe:60:1e:b8:be:74:ea:12:94:
41:ea:e3:cf:ab:33:70:c4:a0:51:63:6b:aa:dc:d6:
3f:79:d7:08:0a:64:44:6b:b0:53:e5:93:f0:97:ba:
85:21:9b:91:99:d9:50:56:83:f0:87:d1:01:05:84:
8d:3b:10:4a:01:b3:bd:30:b4:8d:9e:46:3c:3a:49:
82:7f:f9:7d:aa:d5:ac:d0:07:a6:7c:92:1f:34:93:
7f:c8:e7:83:7e:d9:63:2d:1e:71:f2:50:70:18:91:
da:21:14:84:61:80:4c:c3:b6:4f:a4:e0:8c:7b:78:
00:c6:a9:c2:71:f1:2f:30:da:9a:2a:c4:d0:7a:ff:
d9:7b:84:fb:fe:d2:d4:63:a6:fa:35:bf:e0:7e:58:
a1:73:a3:1e:ec:b3:d2:71:21:a4:c3:2e:1d:d9:d5:
c5:29:e3:24:6f:8c:77:40:46:9b:fb:d7:ec:9d:21:
1b:73:39:71:6f:df:b1:4d:a6:a9:5e:40:37:8e:88:
c4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:59:24:36:31:36:06:12:78:5D:B6:73:EF:9C:FB:E5:57:FC:1C:3C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/q1kkNjE2BhJ4XbZz75z75Vf8HDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
141.98.5.0/24
178.215.238.0/24
193.149.28.0/22
194.180.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:30:6e:0e:84:5c:bc:7b:ce:85:3d:a7:c3:d0:be:83:64:27:
e0:89:2d:72:42:69:01:41:c9:36:5f:b3:fc:44:ef:32:92:2e:
19:07:3e:04:35:85:d0:dd:17:f2:cd:dd:b2:97:0f:24:7b:3d:
a2:e2:30:05:b3:2f:36:49:6e:e8:6d:20:87:1b:87:e4:fe:fd:
ab:15:5a:11:ff:b9:25:70:e7:3e:c0:39:91:89:c1:2e:3f:f8:
54:04:8e:d1:4b:b3:8a:c6:81:9f:29:7e:73:da:c7:1a:98:30:
79:56:2b:76:af:88:0a:35:53:cc:9a:a8:fe:23:0a:c7:cd:4c:
dd:46:06:7a:69:15:6c:2e:b6:ff:62:56:eb:b2:84:90:36:0d:
52:5b:b7:83:76:f5:82:56:2f:3a:8f:78:bd:83:a9:0c:e3:eb:
09:73:6f:60:bd:9e:99:f0:c1:ad:f3:ba:82:b7:38:be:d7:8d:
53:ab:01:42:7d:87:eb:26:3f:f5:31:76:83:d6:df:85:a8:34:
07:ec:d8:ef:35:48:38:76:96:4e:05:a5:57:5b:4a:d3:33:af:
4d:df:5e:12:dd:74:ec:8d:bf:29:ab:b3:2f:4b:eb:78:bf:ff:
7f:dc:4f:7c:9d:65:2d:44:42:6d:69:4a:6a:19:6a:58:99:0f:
d3:dc:2a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 21:42:11 2024 by rpki-client on console-fra.rpki-client.org