Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vhNWnqzVLWkEImdejcAVQ1uo_JQ.roa
File: vhNWnqzVLWkEImdejcAVQ1uo_JQ.roa (raw, json)
Hash identifier: 40nfDNBNQBosvlJT5mPRkuskRxwCDZp3UFTLRMeNEZ0=
Subject key identifier: BE:13:56:9E:AC:D5:2D:69:04:22:67:5E:8D:C0:15:43:5B:A8:FC:94
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EBC1015BE0DA0AF9EB9CEEC43F3A5714A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vhNWnqzVLWkEImdejcAVQ1uo_JQ.roa
Signing time: Mon 08 Apr 2024 04:55:54 +0000
ROA not before: Mon 08 Apr 2024 04:55:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.8.93.0/24 maxlen: 24
45.12.255.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
82.115.211.0/24 maxlen: 24
141.98.5.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.25.216.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
212.87.207.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 05:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bc:10:15:be:0d:a0:af:9e:b9:ce:ec:43:f3:a5:71:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 8 04:55:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be13569eacd52d690422675e8dc015435ba8fc94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cd:9b:70:3d:29:be:a1:c9:f0:eb:9e:8b:af:
be:c1:ff:a6:8f:ea:ea:e6:4f:55:b8:9e:aa:61:18:
8b:49:0b:44:5b:e9:fd:df:b8:53:60:8f:02:a6:a2:
1e:49:8c:04:57:cc:79:b4:fb:ee:96:05:0f:ee:66:
89:8b:8d:63:18:39:28:94:f4:6e:4a:cf:5f:8d:8f:
c9:92:9b:5a:7c:2c:56:f6:36:61:16:1f:f4:97:a1:
20:d2:53:b6:de:db:6f:28:30:c3:1d:13:85:85:47:
c1:a8:40:1b:b9:e3:1a:45:98:52:c0:99:da:ab:24:
ab:d9:b5:33:19:ed:0c:1c:d7:17:bb:e9:dd:1c:f7:
2f:f0:92:b6:0e:6d:86:8b:e1:40:d3:29:25:0b:29:
98:06:89:89:e4:aa:ae:e9:49:46:18:28:e8:0a:95:
20:e5:45:07:62:71:c1:62:f2:c7:7b:19:34:76:e3:
f2:78:27:a0:ae:f0:ec:bf:86:f1:6c:d8:70:bb:ed:
a2:05:5a:29:87:02:d1:54:59:8e:93:24:14:24:8b:
47:76:5e:a3:40:c1:eb:ef:09:05:63:2a:10:a1:80:
2d:5f:e7:88:f2:40:71:cc:e2:76:62:75:e5:55:d5:
9f:13:f4:63:e4:c5:27:ea:11:e7:b0:43:eb:6c:f8:
82:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:13:56:9E:AC:D5:2D:69:04:22:67:5E:8D:C0:15:43:5B:A8:FC:94
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vhNWnqzVLWkEImdejcAVQ1uo_JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
45.12.255.0/24
45.66.228.0/24
82.115.211.0/24
141.98.5.0/24
178.215.238.0/24
193.25.216.0/24
193.37.47.0/24
193.149.28.0/22
194.180.36.0/24
212.87.207.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
95:96:e3:60:84:5c:a9:74:fb:63:f1:d5:5c:15:35:69:5c:ce:
26:a0:45:af:bc:cc:9f:ff:88:aa:cb:d0:c3:8c:b5:13:d2:a7:
5e:7b:37:b7:ca:09:50:a6:a6:ac:a6:33:5b:66:67:88:2f:a2:
92:51:54:de:98:06:35:73:49:51:b8:6f:c4:80:f9:f0:39:f3:
63:05:3f:94:47:d9:22:e5:41:91:5f:1c:a1:ec:a9:3b:fd:23:
35:5b:cc:cb:9e:51:b3:a1:57:b0:a0:a5:a3:83:41:1f:42:2f:
85:fc:00:8a:be:f1:80:e5:cf:ef:eb:cd:93:aa:cc:36:ba:11:
d3:f8:10:09:d7:73:1f:76:57:73:18:d2:d6:a1:fe:c9:aa:fe:
50:00:52:01:7c:c6:8e:ca:b9:10:e9:69:51:fc:5c:ee:23:48:
36:27:c4:7f:74:35:e1:ca:59:e8:af:ed:90:60:2d:17:8b:f1:
9c:63:70:e0:0d:67:5c:0e:fc:1a:a3:5b:ae:db:79:b4:24:6e:
ab:32:7c:db:49:e7:7d:76:a7:1c:98:aa:0d:dc:b1:16:64:f5:
31:ca:b8:97:9f:61:dc:96:6a:89:10:0b:bf:97:d8:e1:5a:04:
d3:e4:30:8b:08:bd:24:bc:d1:5b:9a:db:9c:4a:3e:ba:d6:a5:
74:6d:0e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:21 2024 by rpki-client on console-fra.rpki-client.org