Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/u7BoGiEf-t26N2HpGrJZbjzOBCE.roa
File: u7BoGiEf-t26N2HpGrJZbjzOBCE.roa (raw, json)
Hash identifier: 5PO53uIwzjWjcNWLixO8o8mtbY0Jzt1SzfzTnjm+q/4=
Subject key identifier: BB:B0:68:1A:21:1F:FA:DD:BA:37:61:E9:1A:B2:59:6E:3C:CE:04:21
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018F8541FDA1302A41159A065400478E65C5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/u7BoGiEf-t26N2HpGrJZbjzOBCE.roa
Signing time: Fri 17 May 2024 06:34:05 +0000
ROA not before: Fri 17 May 2024 06:34:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2.59.252.0/24 maxlen: 24
37.221.120.0/22 maxlen: 24
45.9.157.0/24 maxlen: 24
45.14.164.0/24 maxlen: 24
45.81.241.0/24 maxlen: 24
45.88.88.0/24 maxlen: 24
45.144.152.0/24 maxlen: 24
45.144.153.0/24 maxlen: 24
45.144.154.0/24 maxlen: 24
45.149.233.0/24 maxlen: 24
45.151.88.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
84.21.174.0/23 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.86.0/23 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.11.0/24 maxlen: 24
95.214.25.0/24 maxlen: 24
95.214.26.0/24 maxlen: 24
141.98.1.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
193.42.32.0/23 maxlen: 24
193.149.2.0/24 maxlen: 24
193.149.3.0/24 maxlen: 24
194.48.248.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 14:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:41:fd:a1:30:2a:41:15:9a:06:54:00:47:8e:65:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 17 06:34:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbb0681a211ffaddba3761e91ab2596e3cce0421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bc:4e:3b:99:ea:ea:4d:8a:9a:2a:7f:e3:5d:
18:f1:18:5c:4a:5a:59:b2:70:1c:c0:f4:88:69:ae:
e3:79:74:16:3e:01:45:c3:49:67:51:22:c7:7d:79:
a4:47:de:e5:4b:da:f6:f7:f0:42:25:93:6e:39:b1:
d9:7b:85:0e:76:3d:d9:4d:46:46:82:35:38:c8:6e:
92:67:9d:27:77:f1:c6:2f:fe:81:fc:2c:cd:d9:85:
c5:68:c0:fe:71:1a:ee:86:d6:77:7f:a5:2d:7f:34:
71:8a:68:78:dc:4a:d8:3e:47:21:50:b4:db:9b:72:
b4:15:af:50:0c:54:8b:16:f2:92:a8:0e:c2:96:ea:
39:49:8f:bc:53:cd:d6:bb:6a:d0:21:d8:1f:65:53:
97:45:04:5c:c9:cb:c9:64:3f:b2:72:a7:6a:aa:8d:
8e:de:17:3f:72:97:e8:c0:68:34:54:c5:53:07:d1:
fc:8e:21:f1:61:cc:10:b6:ab:4c:c8:00:41:39:1c:
23:2b:8d:88:2e:7b:d0:3f:4c:04:4f:fa:7a:78:cd:
a2:0a:cf:ca:4f:25:32:10:6d:9e:b7:75:f1:70:79:
9b:1d:e0:32:b3:f4:c3:3e:12:50:b6:d9:b6:5d:32:
a9:23:3b:e8:1f:79:ea:fa:ce:86:03:ce:d5:d6:96:
6b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B0:68:1A:21:1F:FA:DD:BA:37:61:E9:1A:B2:59:6E:3C:CE:04:21
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/u7BoGiEf-t26N2HpGrJZbjzOBCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.252.0/24
37.221.120.0/22
45.9.157.0/24
45.14.164.0/24
45.81.241.0/24
45.88.88.0/24
45.144.152.0-45.144.154.255
45.149.233.0/24
45.151.88.0/23
83.219.97.0/24
84.21.174.0/23
87.120.87.0/24
87.121.45.0/24
87.121.86.0/23
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.11.0/24
95.214.25.0-95.214.26.255
141.98.1.0/24
147.78.102.0/24
171.22.17.0/24
171.22.72.0/22
178.215.224.0/24
185.216.84.0/22
185.218.84.0/22
193.42.32.0/23
193.149.2.0/23
194.48.248.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
47:48:b2:c1:0e:ef:b3:0e:48:9a:46:22:31:c6:e0:bf:b2:22:
ab:75:42:6c:54:91:a1:b3:08:66:93:d0:9d:02:ca:4f:44:f5:
77:78:d1:fe:53:34:4c:7c:c9:b5:f4:4d:c3:08:8b:8a:1d:8c:
a3:b6:f5:6e:48:ca:04:8c:c5:a8:61:e8:26:31:58:09:ba:71:
df:e1:06:32:84:41:e9:48:8a:66:e5:c8:eb:fe:75:54:ac:11:
56:02:0b:42:39:de:cf:e3:43:7c:2b:c7:30:de:61:ea:9c:9b:
37:53:6c:9d:8c:ea:fd:40:8f:5b:43:57:25:d5:58:7a:40:f7:
8b:6c:31:62:43:7d:e6:d9:f8:7b:9b:08:0b:f3:25:2d:27:aa:
21:f8:7c:87:f1:68:ef:df:1c:3a:10:6e:fa:5d:2d:63:34:24:
3b:45:ae:81:34:43:6b:8c:df:dc:ed:5e:9e:f7:90:32:c7:4f:
fa:8e:e4:f4:8f:84:9e:f6:aa:af:5a:91:d0:ea:fa:fc:b4:89:
76:d4:1e:85:89:ce:0e:f1:ef:86:cc:00:b3:fc:47:ab:76:f1:
f4:9b:99:b7:52:ab:fb:80:ca:8f:e7:62:83:5f:a8:94:88:5a:
f0:c0:59:96:5b:a5:8d:32:e8:3e:dc:e9:6f:10:09:c9:ff:fb:
ce:15:15:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:45 2024 by rpki-client on console-ams.rpki-client.org