Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/uVqM6YagBzSAEo-3i24eG0zYFAQ.roa
File: uVqM6YagBzSAEo-3i24eG0zYFAQ.roa (raw, json)
Hash identifier: 7f7em2PDmpuVYzueM6tSguNOnD8ZJk79RfCvUrC366A=
Subject key identifier: B9:5A:8C:E9:86:A0:07:34:80:12:8F:B7:8B:6E:1E:1B:4C:D8:14:04
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C104981DDBA6CA5116E4B8EA112CE82F9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/uVqM6YagBzSAEo-3i24eG0zYFAQ.roa
Signing time: Mon 27 Nov 2023 10:18:21 +0000
ROA not before: Mon 27 Nov 2023 10:18:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.218.84.0/22 maxlen: 24
147.78.101.0/24 maxlen: 24
147.78.100.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
185.226.173.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
195.178.110.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
194.169.174.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.252.176.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
185.216.84.0/22 maxlen: 24
45.88.90.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
93.123.116.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
87.121.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:49:81:dd:ba:6c:a5:11:6e:4b:8e:a1:12:ce:82:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 27 10:18:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b95a8ce986a0073480128fb78b6e1e1b4cd81404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f6:a1:d0:5d:a0:3e:34:c5:92:12:80:9c:bc:
b5:68:d7:c8:96:61:ac:88:78:b6:ec:b1:d0:2e:89:
58:ea:22:1b:3c:07:f0:ae:56:42:29:79:77:88:07:
d9:1f:e5:a3:76:e5:7d:3a:57:b4:5f:45:84:8d:54:
09:a7:1b:14:d9:98:d7:e2:4f:d0:05:c6:99:92:b4:
f5:d2:7c:87:d5:06:d8:72:ce:b5:75:e7:a7:76:c4:
66:8f:a2:2e:97:a5:fc:77:29:4d:9d:fd:7f:e7:4f:
18:b1:74:b8:6d:91:a8:94:f2:5c:75:9f:2c:5e:76:
f4:bd:71:a6:a4:cc:ef:62:51:1e:c5:74:6a:82:e2:
43:d6:ac:75:c0:3e:b7:0c:f0:12:23:5a:fd:14:b8:
33:c2:ef:1a:ed:38:7e:75:39:af:a2:59:07:07:65:
8c:86:89:6b:63:8f:a3:09:22:62:db:1f:d6:c7:31:
f5:1b:b8:cb:17:e5:41:41:71:f8:6f:93:0d:0c:a1:
05:32:51:71:be:01:63:14:21:07:11:ad:dc:af:e5:
78:20:56:f2:39:65:07:09:4d:53:a6:69:b2:f9:d9:
4b:77:b8:a2:7e:8c:b6:39:5a:33:c0:ba:d7:20:4b:
1e:6a:c2:be:0d:f3:cb:80:68:1c:9f:67:1e:c9:d4:
c2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5A:8C:E9:86:A0:07:34:80:12:8F:B7:8B:6E:1E:1B:4C:D8:14:04
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/uVqM6YagBzSAEo-3i24eG0zYFAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.220.0/23
92.119.196.0/23
93.123.116.0/24
94.154.161.0-94.154.163.255
94.156.78.0/24
94.156.239.0/24
147.78.100.0-147.78.102.255
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.226.175.0/24
185.246.223.0/24
185.252.176.0/24
194.169.174.0/24
195.178.110.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:56:e4:e1:c2:55:7a:c1:38:dc:48:14:e5:61:4c:97:c0:ca:
f9:f8:a1:06:ac:22:2c:88:14:ea:2c:fb:d6:29:d4:b7:56:e5:
25:17:2b:6b:ec:3e:fa:75:38:9d:91:78:2d:89:11:0b:5e:15:
c6:0e:86:f8:a6:e2:fb:7e:26:dd:b1:26:75:8b:da:e7:66:ba:
ba:bf:cc:bc:28:29:12:ca:1e:e5:eb:68:6d:8f:44:30:43:95:
14:73:fa:e9:39:be:5e:0b:b3:17:e6:32:59:bc:06:45:07:41:
ed:22:23:36:9a:e7:b5:70:a1:ee:84:c6:cb:03:7d:1c:61:dc:
e6:a1:5e:1d:19:a4:9b:e4:b8:70:e3:b3:91:94:f6:55:fc:12:
7c:c0:d8:f1:0a:c1:a0:28:ab:f2:9e:3c:47:2e:9a:83:9d:48:
3a:c0:20:a8:4b:8d:cc:1e:be:fc:72:8b:78:c2:70:85:e6:19:
7a:87:30:1d:bb:b3:d0:5d:1d:a5:76:46:a5:4a:1d:80:71:8a:
84:87:36:99:04:06:73:68:38:bc:e2:c2:8d:10:d8:94:be:5a:
3d:54:36:cc:90:4a:be:62:74:45:ce:4d:ae:3a:c9:1a:58:27:
81:48:86:34:f1:41:e8:62:6a:36:de:b1:c6:42:60:ab:5b:46:
38:5b:75:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 27 16:26:14 2023 by rpki-client on console-ams.rpki-client.org