Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rlWEYBIOJk1z-TeJHqGYFdNuX-4.roa
File: rlWEYBIOJk1z-TeJHqGYFdNuX-4.roa (raw, json)
Hash identifier: ZsWX6CgQ9bAA3yQAGRH68Flq6JAJM9NgGXIfX1EmsiU=
Subject key identifier: AE:55:84:60:12:0E:26:4D:73:F9:37:89:1E:A1:98:15:D3:6E:5F:EE
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EA8A60B0B14DAFD2143FDBC8AAC6F0619
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rlWEYBIOJk1z-TeJHqGYFdNuX-4.roa
Signing time: Thu 04 Apr 2024 10:27:17 +0000
ROA not before: Thu 04 Apr 2024 10:27:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 5.253.56.0/23 maxlen: 24
5.253.58.0/23 maxlen: 24
45.139.123.0/24 maxlen: 24
91.92.67.0/24 maxlen: 24
93.123.26.0/23 maxlen: 24
93.123.76.0/22 maxlen: 24
93.123.112.0/22 maxlen: 24
94.154.173.0/24 maxlen: 24
94.156.2.0/24 maxlen: 24
94.156.152.0/24 maxlen: 24
94.156.154.0/23 maxlen: 24
94.156.178.0/24 maxlen: 24
94.156.180.0/23 maxlen: 24
94.156.237.0/24 maxlen: 24
94.156.238.0/24 maxlen: 24
185.252.177.0/24 maxlen: 24
193.25.219.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
193.58.121.0/24 maxlen: 24
193.58.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 08:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a8:a6:0b:0b:14:da:fd:21:43:fd:bc:8a:ac:6f:06:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 4 10:27:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae558460120e264d73f937891ea19815d36e5fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:08:79:7e:e4:2f:64:31:d5:53:c3:c1:9e:68:
7f:22:0a:a0:5b:38:75:b3:92:77:f7:bd:56:8c:a2:
8d:72:4f:12:d1:c5:a5:8e:8a:8c:47:e6:fd:e8:7c:
b2:b0:ff:fe:91:aa:9e:46:d7:28:13:bb:00:3d:71:
cb:72:4c:d9:aa:5e:54:d9:1b:7d:b9:b0:a8:21:39:
3e:44:00:75:71:91:5f:ce:c3:2d:98:d8:d6:31:20:
38:66:71:0b:12:96:41:40:d5:62:17:91:59:46:db:
86:dd:58:72:32:c6:5a:37:f8:2a:e6:91:07:4f:e5:
e5:aa:82:3a:4a:58:a8:ee:4d:bc:26:89:50:e8:d2:
50:6f:30:34:95:f6:e4:c1:0d:3c:fc:29:01:9c:62:
76:58:96:c4:28:92:0b:6d:65:02:14:43:08:13:59:
0e:26:53:4a:ed:8f:16:b7:1d:fd:f0:c5:1d:28:4b:
59:51:ee:77:74:63:75:9f:ca:be:4b:3e:55:18:b3:
15:09:d8:ad:bf:14:3c:c9:6c:d7:fc:9f:e4:33:9a:
9a:f5:30:f0:a7:49:93:71:e5:ae:77:64:7e:d4:54:
a9:7f:b6:21:ff:93:7a:76:13:5c:a6:31:e2:10:bc:
31:30:04:02:b8:5f:56:6f:ba:0a:53:2e:68:8d:21:
71:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:55:84:60:12:0E:26:4D:73:F9:37:89:1E:A1:98:15:D3:6E:5F:EE
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/rlWEYBIOJk1z-TeJHqGYFdNuX-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.56.0/22
45.139.123.0/24
91.92.67.0/24
93.123.26.0/23
93.123.76.0/22
93.123.112.0/22
94.154.173.0/24
94.156.2.0/24
94.156.152.0/24
94.156.154.0/23
94.156.178.0/24
94.156.180.0/23
94.156.237.0-94.156.238.255
185.252.177.0/24
193.25.219.0/24
193.47.62.0/24
193.58.121.0/24
193.58.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:5b:2d:e9:c7:55:c7:a7:bf:0c:9f:6f:a2:6f:b6:8e:01:ff:
45:90:6f:90:bd:49:d2:0b:4e:36:82:4f:08:38:3b:9a:07:2c:
97:16:39:74:7f:11:0b:ac:39:fe:9b:29:d4:f9:9f:b8:66:2f:
b3:e8:8b:28:a4:b4:51:b2:de:aa:8a:99:9f:e1:a6:57:22:b7:
ee:01:ad:d1:22:35:c4:c0:61:15:b0:89:49:c8:e9:5b:ed:75:
bb:14:34:6e:e1:4f:f6:93:92:5d:23:44:45:10:4c:52:5e:f6:
df:1f:58:08:a5:87:ff:71:7f:c3:86:13:95:07:49:27:de:3f:
8c:54:13:94:9d:57:ce:2f:95:b6:82:e5:42:3a:ac:ea:8a:10:
fb:9a:4a:c1:11:57:4d:a5:03:a1:8e:a3:b5:60:88:1b:fe:76:
48:d7:75:a0:f2:58:94:66:07:fb:45:c1:f9:f0:fb:5d:a2:ac:
9d:95:2e:4f:aa:fa:78:5d:c9:b4:0b:09:ec:3f:f6:72:98:10:
c1:3c:1d:fb:2d:a6:c8:26:c7:10:9e:c0:a6:bb:b8:3f:d0:4b:
9f:65:50:b4:3a:af:0e:b1:3d:48:b1:93:04:43:09:63:57:a2:
fb:e1:48:20:56:3e:48:27:6f:fc:78:ad:95:35:56:57:ce:9f:
a6:50:2b:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:20 2024 by rpki-client on console-fra.rpki-client.org