Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ydAgxBeg6pF3Gm-58m3EV11Rq4s.roa
File: ydAgxBeg6pF3Gm-58m3EV11Rq4s.roa (raw, json)
Hash identifier: y9nOL+lVL5wetLeiK1amfX0ZgYNT7y5WvGsQ+HfonpU=
Subject key identifier: C9:D0:20:C4:17:A0:EA:91:77:1A:6F:B9:F2:6D:C4:57:5D:51:AB:8B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018DD66DFB294052449BC54D7C81C485D4F6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ydAgxBeg6pF3Gm-58m3EV11Rq4s.roa
Signing time: Fri 23 Feb 2024 14:45:48 +0000
ROA not before: Fri 23 Feb 2024 14:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 45.8.93.0/24 maxlen: 24
45.12.255.0/24 maxlen: 24
45.66.228.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
82.115.211.0/24 maxlen: 24
87.121.105.0/24 maxlen: 24
94.156.176.0/24 maxlen: 24
178.215.238.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
193.149.28.0/24 maxlen: 24
193.149.29.0/24 maxlen: 24
193.149.30.0/24 maxlen: 24
193.149.31.0/24 maxlen: 24
194.180.36.0/24 maxlen: 24
212.87.207.0/24 maxlen: 24
212.115.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 08:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d6:6d:fb:29:40:52:44:9b:c5:4d:7c:81:c4:85:d4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 23 14:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9d020c417a0ea91771a6fb9f26dc4575d51ab8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:74:f9:7a:a3:73:44:3a:8c:75:16:4f:ac:89:
31:b2:e5:aa:fd:71:e6:ed:ce:10:d7:31:19:7b:4a:
06:9f:d3:50:d2:33:e2:c6:47:9e:35:9d:14:13:f7:
f0:e7:b9:12:4c:00:87:87:4e:e6:1b:11:9c:03:f3:
b9:ab:b3:ad:60:bc:77:5f:95:53:c7:75:ff:5f:fa:
88:8e:ab:fa:ab:8f:23:98:47:0f:3d:c0:20:87:10:
2e:84:2c:1f:68:97:d6:21:35:55:ae:dd:27:92:55:
8b:c0:59:0a:3b:16:88:49:07:5c:4f:3c:41:44:41:
58:01:b9:d7:af:d2:e5:db:1c:c9:c8:8a:49:5d:ee:
5d:a8:93:86:35:f2:df:a6:da:f2:43:d3:97:fb:2a:
69:aa:0b:cf:c7:ea:7a:9c:6c:02:96:cd:e9:f7:88:
ac:65:45:f3:fb:17:5a:19:07:df:8b:eb:89:b5:23:
a1:f0:a0:26:7f:4f:b1:c9:d7:bd:07:e2:0d:b7:5b:
ba:99:96:15:3f:67:25:19:aa:bb:3b:27:6a:05:db:
95:f5:dd:fb:76:1c:be:0e:5f:39:91:9c:d1:14:b9:
b5:24:02:07:63:fa:da:ac:67:f8:79:a1:76:c9:d6:
3a:24:51:53:9e:ae:b9:d6:e9:d6:10:b8:ef:5d:29:
6d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D0:20:C4:17:A0:EA:91:77:1A:6F:B9:F2:6D:C4:57:5D:51:AB:8B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/ydAgxBeg6pF3Gm-58m3EV11Rq4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.93.0/24
45.12.255.0/24
45.66.228.0/24
79.110.50.0/24
82.115.211.0/24
87.121.105.0/24
94.156.176.0/24
178.215.238.0/24
193.37.47.0/24
193.149.28.0/22
194.180.36.0/24
212.87.207.0/24
212.115.41.0/24
Signature Algorithm: sha256WithRSAEncryption
67:c4:28:9b:73:34:dc:46:7d:e9:65:bb:7d:d9:6c:65:5c:74:
c4:4b:cc:1d:f2:33:7e:0e:c9:cf:85:9f:7c:97:57:d7:7b:28:
21:14:94:ad:76:b6:08:fc:da:48:51:d1:e9:ae:00:dc:15:f9:
90:01:37:92:a5:5d:ea:da:94:0e:68:b4:fa:0c:c9:a1:91:0c:
d7:e9:d0:d0:38:4d:ec:3b:68:c6:6f:60:3f:a8:d5:15:47:54:
ff:3a:96:e7:1d:c9:9b:54:21:3a:83:4a:87:96:53:5c:8b:4d:
1e:85:9a:aa:fa:24:a0:16:83:39:26:7e:dd:cb:1a:af:6d:0a:
9a:18:36:6e:2d:87:a2:7d:6e:b9:0b:52:37:5a:4b:06:5e:b1:
20:23:2d:58:48:f3:3a:66:0e:4d:6e:ff:cc:bc:e2:10:66:ce:
1b:62:41:99:34:89:7d:56:cb:35:dd:94:5b:74:73:ec:03:6f:
6d:d2:9c:ca:98:20:ed:3a:9c:3d:51:68:d5:c9:4f:1e:b1:63:
5d:2f:c2:7e:71:30:1f:05:fd:f9:b3:87:32:59:41:1b:60:11:
16:22:ba:c3:44:e6:41:54:27:ab:fb:64:8e:36:22:a3:42:4a:
00:63:ee:50:4b:01:42:07:3b:57:13:32:8b:a1:3e:11:22:bb:
12:dc:3b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 13:19:35 2024 by rpki-client on console-ams.rpki-client.org