Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xS78x-pwZQo77Vk2Jai57Ijof3Y.roa
File: xS78x-pwZQo77Vk2Jai57Ijof3Y.roa (raw, json)
Hash identifier: Cky5s1jUYkn/zKqnk+8c/720VqvW4go/xRKhqCdiYIA=
Subject key identifier: C5:2E:FC:C7:EA:70:65:0A:3B:ED:59:36:25:A8:B9:EC:88:E8:7F:76
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187DB4A77F1C4A861458A171E358FB44200
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xS78x-pwZQo77Vk2Jai57Ijof3Y.roa
Signing time: Tue 02 May 2023 07:08:23 +0000
ROA not before: Tue 02 May 2023 07:08:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50738
IP address blocks: 87.121.124.0/23 maxlen: 24
81.161.239.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
91.200.192.0/22 maxlen: 24
45.66.228.0/24 maxlen: 24
147.78.100.0/23 maxlen: 24
185.246.223.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.18.0/24 maxlen: 24
194.180.39.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
45.139.104.0/24 maxlen: 24
82.115.210.0/23 maxlen: 24
94.154.172.0/24 maxlen: 24
87.121.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:4a:77:f1:c4:a8:61:45:8a:17:1e:35:8f:b4:42:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 2 07:08:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c52efcc7ea70650a3bed593625a8b9ec88e87f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ac:7b:da:82:2b:86:1b:22:64:c0:e4:8e:a8:
76:bc:ca:97:2f:b4:27:ed:9b:48:0a:27:09:e2:e8:
d1:0b:3c:5d:6c:5a:ed:2d:31:1a:5c:54:b3:c3:fd:
98:20:33:9f:17:d5:57:20:75:de:c0:38:ed:46:9a:
01:58:88:4e:ac:8b:1b:95:96:eb:9b:e7:e3:21:c6:
fb:10:c9:d2:4f:c7:3d:08:fe:7b:ae:63:f4:9e:7b:
f8:04:6b:5c:f1:ac:f1:e4:26:79:50:5c:47:c9:4e:
da:18:84:8c:2d:ab:ed:86:d4:ef:85:41:49:2c:d2:
45:6d:ab:78:f7:52:a5:d4:55:b5:bf:8f:6f:69:65:
eb:0d:a1:96:10:7a:e7:1c:13:ac:32:e7:62:98:f5:
b2:ff:97:1c:7c:32:82:a4:b3:36:00:cb:19:9e:93:
db:70:bf:a1:c3:0e:b9:48:57:07:8f:c9:44:e5:91:
2b:ed:2d:9a:b7:86:9a:84:35:af:e7:46:87:58:34:
3b:98:06:bc:ad:18:55:b4:01:33:51:ac:52:5c:3c:
54:75:69:5d:89:9a:7e:29:18:c7:ea:0b:99:bd:6e:
4e:cd:ef:cf:5e:0c:98:53:bb:02:20:63:50:3a:04:
21:f7:20:80:8d:5e:ba:fe:be:13:c5:c2:36:a4:bf:
67:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2E:FC:C7:EA:70:65:0A:3B:ED:59:36:25:A8:B9:EC:88:E8:7F:76
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/xS78x-pwZQo77Vk2Jai57Ijof3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
45.139.104.0/24
45.141.158.0/24
81.161.239.0/24
82.115.210.0/23
83.219.97.0/24
87.121.124.0/23
87.121.220.0/24
91.200.192.0/22
94.154.172.0/24
147.78.100.0/23
171.22.17.0-171.22.18.255
178.215.226.0/24
185.246.223.0/24
194.180.39.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:17:0e:a5:ec:c0:e4:90:c0:01:e5:83:bb:d7:81:62:ba:5e:
48:a0:d9:c3:54:80:02:fc:00:dd:8a:84:17:bf:c4:c8:21:08:
0b:15:07:88:eb:d1:76:5a:4b:9c:e0:88:d9:19:1d:74:41:67:
b2:66:89:1b:28:04:c2:e6:77:f0:e5:a4:9d:ed:13:b8:9d:23:
cc:2e:15:32:6b:3f:d1:7f:c7:b2:7d:df:be:0f:34:69:43:fd:
d9:1c:45:87:47:a3:b5:75:2c:3b:b5:5c:df:be:cc:ee:a7:56:
c6:a1:68:73:bb:4d:19:08:d0:06:aa:96:95:b2:8d:d8:35:40:
f7:b0:c6:c5:ad:bd:01:a0:f3:47:c6:04:6b:35:24:3b:b0:92:
35:ad:f7:50:8a:f3:a2:c9:6a:a4:37:ab:6a:66:ba:ec:7f:76:
c9:30:62:bd:26:4d:eb:f5:65:a5:f2:c0:48:0b:fc:91:9f:9a:
f8:f1:5d:80:81:fc:f1:60:97:79:a6:8c:27:e6:45:8e:09:a4:
a9:82:e9:84:f7:92:74:98:e8:52:51:83:c9:99:32:7a:d3:3d:
88:01:d0:65:d8:4e:4a:d0:ff:0e:35:f4:a3:a8:5d:a4:bd:33:
6e:15:81:20:c3:1b:4b:23:bd:e7:d8:a8:43:7b:dd:41:b4:f8:
ae:70:9f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:43 2023 by rpki-client on console-ams.rpki-client.org