Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/y70Ich2SFM4rBsnujMhpyvgKLdQ.roa
File: y70Ich2SFM4rBsnujMhpyvgKLdQ.roa (raw, json)
Hash identifier: SNOxPjCvUm0Pk8aznBymmLeUf3S6ihKSKCDc/kBVLJY=
Subject key identifier: CB:BD:08:72:1D:92:14:CE:2B:06:C9:EE:8C:C8:69:CA:F8:0A:2D:D4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DEE4E0D0EC8D7243768AA4889582028F8
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/y70Ich2SFM4rBsnujMhpyvgKLdQ.roa
Signing time: Wed 28 Feb 2024 06:01:48 +0000
ROA not before: Wed 28 Feb 2024 06:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.12.255.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
94.154.160.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.156.239.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
185.216.84.0/22 maxlen: 24
185.218.84.0/22 maxlen: 24
185.226.173.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
194.55.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 08:56:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:4e:0d:0e:c8:d7:24:37:68:aa:48:89:58:20:28:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 28 06:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbbd08721d9214ce2b06c9ee8cc869caf80a2dd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:23:d3:df:0d:b3:89:d3:66:5b:12:b1:8e:ed:
7e:38:3c:6a:8a:b4:2e:f3:d4:1e:00:4c:18:77:24:
6f:32:a4:12:5f:1c:f4:32:f3:b1:0c:f4:2e:89:f5:
44:df:0c:93:fc:5a:1e:26:ad:fa:9d:0b:f3:10:90:
2c:94:75:3a:9c:25:06:4f:46:05:7f:26:03:e3:50:
aa:95:82:b3:93:5e:3e:5c:4e:66:74:07:fd:66:b7:
fa:4b:be:48:e1:c8:8e:93:32:89:80:1b:0b:f9:4e:
82:ba:86:be:89:79:12:01:83:ea:75:28:bd:f9:3c:
57:af:d2:55:cf:e2:92:7a:6e:c1:50:5e:95:7f:7d:
7f:1f:d7:59:22:67:69:e9:07:b7:fc:27:74:a9:08:
d6:7a:f9:ec:37:fa:bd:1a:f1:83:72:31:b0:b0:fa:
98:76:b0:bf:48:72:d8:d6:bb:d2:1a:9d:16:ae:f5:
a7:b3:68:ed:4e:e6:4c:b6:f4:d2:a3:8e:77:d5:09:
62:a2:37:fa:61:34:90:bd:23:f0:55:7d:14:93:d3:
f7:e4:e4:ab:45:1b:a2:76:23:c5:99:9b:b8:a8:52:
2d:d8:5f:a9:26:03:c9:ff:b3:a5:82:68:5d:c7:20:
e3:1d:60:2e:7d:15:62:95:ab:67:de:74:fd:11:79:
a0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BD:08:72:1D:92:14:CE:2B:06:C9:EE:8C:C8:69:CA:F8:0A:2D:D4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/y70Ich2SFM4rBsnujMhpyvgKLdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.255.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.221.0/24
92.119.196.0/23
94.154.160.0/22
94.156.239.0/24
147.78.102.0/24
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.252.176.0/24
194.55.224.0/24
Signature Algorithm: sha256WithRSAEncryption
96:bf:0b:39:dc:76:5e:c7:7f:a1:7c:c5:27:e7:0f:3c:0c:66:
0a:ca:6b:0a:cb:b9:56:99:ac:98:95:7c:ec:59:45:60:da:f3:
99:f9:12:20:ba:c7:89:52:e6:6e:0a:d6:73:63:05:0f:31:a3:
8f:35:d1:94:e7:f6:39:80:51:0e:26:be:2e:99:ef:37:0e:ac:
e8:f7:24:a7:36:4e:06:cf:38:e1:81:79:7c:c5:77:25:42:5c:
e5:c6:ad:09:48:4c:a1:c7:00:89:64:53:79:1a:fe:94:2e:dd:
91:36:77:9b:52:0a:7a:b3:09:fb:1b:66:99:08:d9:25:19:41:
3d:95:b5:70:72:0f:46:67:e1:62:09:10:7e:a1:fe:92:3a:3d:
69:12:d1:95:60:96:eb:c6:89:e1:13:60:16:68:b5:5a:7c:a5:
6b:45:8d:84:92:c8:17:e2:de:16:22:80:e2:4f:0a:d5:8e:42:
a6:2a:fc:80:65:64:f5:27:6c:cd:4d:5c:ac:30:fa:63:43:d9:
29:ac:7f:ce:63:0f:e6:0d:01:52:35:18:c9:fe:20:58:fb:e8:
95:e3:82:e0:05:6b:36:77:5a:30:08:b3:66:91:28:f3:98:7d:
6d:c0:8f:1c:42:90:91:2f:e1:ad:74:4f:3b:a1:64:bd:fa:5a:
9c:25:86:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 14:19:35 2024 by rpki-client on console-ams.rpki-client.org