Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wxmB9ZdR6XrSz7xDB4L-Ea5SfiY.roa
File: wxmB9ZdR6XrSz7xDB4L-Ea5SfiY.roa (raw, json)
Hash identifier: 0NoKqweB/rVxMKrEuHjh5zWgb22Heh6dhjH9tpiBhQY=
Subject key identifier: C3:19:81:F5:97:51:E9:7A:D2:CF:BC:43:07:82:FE:11:AE:52:7E:26
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0192E2761299DEC147B2D6AEE9ED28F0361A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wxmB9ZdR6XrSz7xDB4L-Ea5SfiY.roa
Signing time: Thu 31 Oct 2024 12:04:01 +0000
ROA not before: Thu 31 Oct 2024 12:04:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 45.84.88.0/24 maxlen: 24
45.89.244.0/24 maxlen: 24
45.91.193.0/24 maxlen: 24
45.95.3.0/24 maxlen: 24
45.149.235.0/24 maxlen: 24
83.143.113.0/24 maxlen: 24
85.208.139.0/24 maxlen: 24
87.120.36.0/24 maxlen: 24
87.120.88.0/24 maxlen: 24
87.121.98.0/24 maxlen: 24
87.121.218.0/24 maxlen: 24
94.125.100.0/24 maxlen: 24
94.125.101.0/24 maxlen: 24
109.206.236.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
185.218.137.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
193.8.185.0/24 maxlen: 24
193.168.196.0/24 maxlen: 24
193.168.197.0/24 maxlen: 24
193.168.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 06:56:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:76:12:99:de:c1:47:b2:d6:ae:e9:ed:28:f0:36:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 31 12:04:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c31981f59751e97ad2cfbc430782fe11ae527e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:92:2c:a6:1f:ba:1a:5c:ac:19:da:ae:89:16:
4b:79:98:b9:01:b2:17:d8:13:60:67:c6:43:05:f5:
05:43:cb:c3:b4:f8:6e:7c:7b:5b:0d:9a:df:bf:c1:
e7:23:37:3f:08:52:99:ee:75:36:27:2a:cf:06:84:
0d:21:ac:0d:45:b7:01:ec:27:34:a0:41:73:8d:81:
76:c1:65:37:8d:10:fc:ac:f6:05:7a:ce:ae:fc:46:
57:1e:d9:fb:ed:9d:ec:5f:a3:f0:0c:d6:9a:09:59:
3f:e5:48:94:73:cd:e6:d0:34:83:bf:85:5f:93:5c:
68:7d:c8:bd:40:2a:fa:99:57:61:79:db:d7:bb:28:
a3:15:ae:f7:ea:e1:81:bd:02:1a:b8:9e:c4:f2:f4:
d1:5e:a9:08:d5:69:e4:00:fa:f5:aa:ea:04:87:fd:
f8:4a:2d:ba:ad:0d:ca:a7:4b:fc:a0:35:ce:ef:65:
be:16:69:7d:dd:85:51:f2:6d:89:14:8b:14:a6:b0:
e3:5d:fd:a9:93:0b:b0:e7:4c:35:e3:ba:29:df:91:
e9:cc:8d:48:1f:12:0d:a1:72:dd:ff:d2:bf:95:c2:
9c:c0:d5:19:25:37:60:56:e6:89:2b:92:61:59:24:
92:c9:66:2f:63:f6:a8:b7:ec:ff:ae:d5:d3:d2:cb:
5a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:19:81:F5:97:51:E9:7A:D2:CF:BC:43:07:82:FE:11:AE:52:7E:26
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/wxmB9ZdR6XrSz7xDB4L-Ea5SfiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.88.0/24
45.89.244.0/24
45.91.193.0/24
45.95.3.0/24
45.149.235.0/24
83.143.113.0/24
85.208.139.0/24
87.120.36.0/24
87.120.88.0/24
87.121.98.0/24
87.121.218.0/24
94.125.100.0/23
109.206.236.0/24
109.206.242.0/24
185.218.137.0/24
185.246.222.0/24
193.8.185.0/24
193.168.196.0/23
193.168.199.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9b:c1:81:1d:4a:34:c8:f0:02:02:8b:64:5b:9e:21:98:01:
c5:50:5d:6e:64:bb:96:36:44:d3:e4:fb:29:ee:d8:54:74:8b:
56:7a:4f:95:63:a4:78:7a:0d:b1:2d:c8:ac:50:37:6c:58:58:
76:d1:94:76:02:f4:06:ab:64:1f:a5:bf:7f:5e:e3:4f:67:ee:
5a:ed:85:44:de:ee:91:9c:ce:d3:f8:08:ce:b5:f8:4a:9c:cb:
bb:87:55:cd:06:d9:6d:41:67:46:65:de:56:a8:8c:80:28:e6:
49:f0:05:93:6b:2f:7d:bc:19:0d:07:1b:2b:76:b8:12:b1:94:
71:78:06:19:17:07:8f:d3:7c:49:3a:9d:d9:79:4a:c3:f1:dc:
16:58:e0:cb:b7:d8:c1:a2:51:ba:ee:c0:24:6a:f7:67:b3:9a:
5f:a6:07:a8:f2:18:50:d2:97:ae:1c:c3:78:74:67:77:b8:87:
32:54:75:5b:e4:c8:19:fb:10:50:d2:14:32:3c:af:3a:65:e5:
90:5d:80:47:25:4e:15:d0:0b:dd:88:d2:f1:8b:44:4f:5d:14:
4b:42:dd:a8:72:38:2c:96:4c:8c:7d:56:43:ff:a3:c2:f2:34:
a4:1c:4a:c8:df:f0:7a:93:a3:d5:ca:01:ac:8f:02:bd:ed:32:
5c:dd:dd:99
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Nov 14 08:25:35 2024 by rpki-client on console-fra.rpki-client.org