Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zOMafHw9i7gx32DpLv5Xg0u6x-M.roa
File: zOMafHw9i7gx32DpLv5Xg0u6x-M.roa (raw, json)
Hash identifier: +dUSKyBvGlXEdmWVxfjwRl2FxKCl3bYj3htQRAO5uuk=
Subject key identifier: CC:E3:1A:7C:7C:3D:8B:B8:31:DF:60:E9:2E:FE:57:83:4B:BA:C7:E3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C1174E2DA7FD57FC53ED13E2F74AB706D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zOMafHw9i7gx32DpLv5Xg0u6x-M.roa
Signing time: Mon 27 Nov 2023 15:45:22 +0000
ROA not before: Mon 27 Nov 2023 15:45:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.218.84.0/22 maxlen: 24
147.78.101.0/24 maxlen: 24
147.78.100.0/24 maxlen: 24
147.78.102.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
185.226.173.0/24 maxlen: 24
185.226.175.0/24 maxlen: 24
87.121.45.0/24 maxlen: 24
194.169.174.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
94.154.162.0/23 maxlen: 24
94.154.161.0/24 maxlen: 24
45.151.89.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
94.156.239.0/24 maxlen: 24
178.215.236.0/24 maxlen: 24
171.22.72.0/22 maxlen: 24
185.252.176.0/24 maxlen: 24
92.119.196.0/23 maxlen: 24
185.216.84.0/22 maxlen: 24
45.88.90.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
93.123.116.0/24 maxlen: 24
87.121.221.0/24 maxlen: 24
87.121.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:11:74:e2:da:7f:d5:7f:c5:3e:d1:3e:2f:74:ab:70:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 27 15:45:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cce31a7c7c3d8bb831df60e92efe57834bbac7e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:68:a4:01:53:7c:39:9a:32:29:c1:b9:29:c6:
78:39:3c:98:fd:86:0d:93:b7:7c:c4:ab:95:46:4f:
b8:20:f9:6a:4a:b2:43:31:20:b0:3d:41:50:f6:f1:
53:40:29:fe:17:29:ba:43:c4:2b:a4:48:05:23:67:
f7:8a:7e:66:4d:b5:ea:7f:3a:31:de:b9:ca:22:8e:
12:40:70:0d:04:5e:c5:84:9d:bd:b4:5b:8a:31:05:
60:59:4b:ab:e0:60:d5:ee:39:ae:8a:6d:df:0e:04:
cb:c2:b3:e2:0b:42:4e:38:10:14:be:00:72:6a:38:
83:2c:5b:cf:d2:74:80:cf:b9:79:7d:c2:f3:a1:03:
90:4c:f6:e5:0d:38:c7:b7:22:d6:c3:24:a0:e8:ac:
f2:df:13:4c:ba:e9:ec:c7:42:5f:3c:4a:d1:35:75:
34:7d:88:3f:29:d0:c0:b6:cf:80:61:27:21:5a:63:
a8:dd:0d:66:ae:98:39:8e:3e:a9:8c:28:d2:22:3a:
13:64:01:33:04:7f:fe:55:a4:80:8c:75:62:09:27:
10:fe:5a:22:b6:de:71:17:53:fd:b4:99:33:44:ed:
e0:75:c2:2b:01:6e:17:cc:7f:60:68:ad:19:9c:b5:
8a:6a:18:b5:c2:d1:15:47:21:55:86:fc:5c:6b:b4:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E3:1A:7C:7C:3D:8B:B8:31:DF:60:E9:2E:FE:57:83:4B:BA:C7:E3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/zOMafHw9i7gx32DpLv5Xg0u6x-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.90.0/24
45.151.89.0/24
87.120.87.0/24
87.121.45.0/24
87.121.220.0/23
92.119.196.0/23
93.123.116.0/24
94.154.161.0-94.154.163.255
94.156.78.0/24
94.156.239.0/24
147.78.100.0-147.78.102.255
171.22.72.0/22
178.215.224.0/24
178.215.236.0/24
185.216.84.0/22
185.218.84.0/22
185.226.173.0/24
185.226.175.0/24
185.246.223.0/24
185.252.176.0/24
194.169.174.0/24
Signature Algorithm: sha256WithRSAEncryption
38:57:7f:77:c9:d9:0f:c5:eb:ad:1b:49:2a:49:85:06:84:e4:
b0:a2:a0:13:79:5c:40:59:7e:24:ee:fb:6c:0a:5d:ee:53:64:
84:3e:f0:85:4d:48:82:ed:0a:cd:4c:4f:76:a1:5f:42:b4:87:
05:1c:89:8c:0b:06:73:27:ee:a6:07:6b:25:66:fd:58:7c:70:
9c:ab:59:0b:a7:5f:d4:ac:ed:b6:7e:d1:fc:9d:1c:61:37:08:
06:d0:36:e7:71:c0:2d:bf:32:90:a4:1d:7a:b2:c0:46:d4:a9:
9b:4b:83:b8:3b:76:2f:8e:f2:02:75:90:45:c5:f0:8b:61:59:
90:2f:39:ff:62:72:37:1d:1f:5f:b4:33:70:66:8e:b1:e7:72:
2e:46:62:a8:2a:40:63:42:ea:b9:de:33:6e:63:33:96:d3:cc:
d3:ce:6c:9c:2d:f7:5a:f4:fd:7b:51:8d:4c:fa:d2:59:bc:1a:
38:6e:76:e9:a4:32:98:cf:50:be:2d:95:45:a3:74:b3:5a:ef:
53:e3:ba:c3:77:6e:4b:14:98:5e:a6:20:dc:75:56:8c:2b:b5:
1f:e2:33:ad:f2:9c:a3:83:da:6a:d4:51:77:1f:6c:28:9e:0c:
03:f6:12:3e:48:be:59:43:a0:48:81:81:c0:58:cc:83:4f:41:
4f:32:47:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 29 07:45:51 2023 by rpki-client on console-ams.rpki-client.org