Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/1-i-3fFqnIGpFh4qufcRHWmyyEdM.roa
File: 1-i-3fFqnIGpFh4qufcRHWmyyEdM.roa (raw, json)
Hash identifier: bBf66lktR7EUxOT1co+hgCTYHvR2h4wXqncNiHnYtys=
Subject key identifier: FA:2F:B7:7C:5A:A7:20:6A:45:87:8A:AE:7D:C4:47:5A:6C:B2:11:D3
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 01856FC29386D4DC39328096799724DDD360
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/1-i-3fFqnIGpFh4qufcRHWmyyEdM.roa
Signing time: Sun 01 Jan 2023 23:55:00 +0000
ROA not before: Sun 01 Jan 2023 23:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.245.0/24 maxlen: 24
66.22.244.0/24 maxlen: 24
66.22.246.0/24 maxlen: 24
66.22.242.0/24 maxlen: 24
66.22.241.0/24 maxlen: 24
66.22.243.0/24 maxlen: 24
66.22.248.0/24 maxlen: 24
66.22.247.0/24 maxlen: 24
66.22.196.0/22 maxlen: 22
66.22.204.0/22 maxlen: 22
66.22.200.0/22 maxlen: 22
66.22.208.0/22 maxlen: 22
66.22.212.0/22 maxlen: 22
66.22.216.0/23 maxlen: 23
66.22.218.0/23 maxlen: 23
66.22.220.0/23 maxlen: 23
66.22.222.0/23 maxlen: 23
66.22.224.0/23 maxlen: 23
66.22.226.0/23 maxlen: 23
66.22.231.0/24 maxlen: 24
66.22.230.0/24 maxlen: 24
66.22.233.0/24 maxlen: 24
66.22.232.0/24 maxlen: 24
66.22.235.0/24 maxlen: 24
66.22.234.0/24 maxlen: 24
66.22.236.0/24 maxlen: 24
66.22.238.0/24 maxlen: 24
66.22.237.0/24 maxlen: 24
66.22.240.0/24 maxlen: 24
66.22.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 15:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:93:86:d4:dc:39:32:80:96:79:97:24:dd:d3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Jan 1 23:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa2fb77c5aa7206a45878aae7dc4475a6cb211d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8a:3c:9b:c2:35:b3:5e:99:dd:09:ce:bc:f4:
de:38:07:19:43:eb:3b:61:a2:91:d1:52:f7:52:62:
61:c5:ed:54:ac:e7:5a:f2:4b:ad:56:eb:ed:98:d8:
95:9c:14:0a:9e:6a:f2:d9:6f:77:57:02:b9:a9:4c:
ed:ef:aa:c0:64:54:e8:cf:22:b5:bc:52:80:9e:af:
19:c3:79:22:69:fb:cd:05:70:b0:1d:fb:43:d1:38:
96:1b:2b:5c:fc:d3:c2:91:d9:c4:75:98:48:8d:71:
23:42:0d:fe:ae:2e:8b:9a:8a:85:19:2b:10:d2:0b:
73:c7:e6:d0:f0:24:b6:36:1e:b8:b2:9e:96:30:b8:
06:29:5f:c6:49:86:f6:8e:b9:f1:fa:f2:5b:0b:8f:
f0:57:d4:78:99:eb:5e:b1:a4:2b:1b:37:d5:02:b6:
09:70:76:16:7b:18:36:96:bc:6e:42:07:7f:62:08:
0b:0a:25:d3:f6:2b:b0:d1:06:91:e1:16:65:23:3d:
e5:dd:7e:b1:c5:36:48:b3:2b:5f:7a:81:c8:b5:8a:
3d:b6:77:ef:b3:de:40:34:ba:ff:9c:ad:1c:b7:39:
38:e4:6b:d4:79:35:13:e9:12:93:cc:e4:30:a7:71:
d8:ab:de:92:87:a8:1d:ee:b8:c9:47:d5:7f:0e:2a:
0d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:2F:B7:7C:5A:A7:20:6A:45:87:8A:AE:7D:C4:47:5A:6C:B2:11:D3
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/1-i-3fFqnIGpFh4qufcRHWmyyEdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.196.0-66.22.227.255
66.22.230.0-66.22.248.255
Signature Algorithm: sha256WithRSAEncryption
70:a1:f0:82:28:1a:bb:94:0e:23:2a:34:c4:5b:8e:82:f0:16:
10:3c:c9:95:91:c7:40:dd:a8:9f:77:cb:1a:4b:d6:b6:07:04:
50:02:6c:ba:59:95:22:c4:9b:4d:8e:63:14:e1:4e:7b:38:14:
cf:2e:af:45:77:07:09:cb:1f:26:1d:86:34:f3:80:7f:76:5b:
44:f7:d0:9a:55:d9:3f:d4:33:37:58:dc:f0:2d:97:df:c2:2f:
78:e1:0f:86:0f:d6:0a:59:13:bd:68:72:d5:b3:1a:8e:68:c4:
92:3d:77:98:4d:ab:63:83:f8:4f:f2:2b:2a:20:74:5c:a8:e1:
e9:37:fc:ef:00:91:ae:d8:88:5b:14:79:8e:fe:4d:b4:1e:e0:
b9:83:8a:6e:1e:42:7c:87:33:93:5c:3c:42:58:1d:e8:30:61:
67:74:3e:ac:f7:21:80:a8:a0:99:06:1b:37:a0:2e:37:3a:29:
f7:82:91:34:9c:0b:35:14:e2:46:4a:2f:a3:7e:0d:ca:3e:fb:
51:bb:c0:40:28:1e:64:e7:fd:a2:cb:2d:42:5a:bf:e7:d1:e6:
2a:61:5e:f9:d2:38:d9:2d:e4:73:3c:4d:cb:dd:14:c6:d3:60:
78:23:74:71:ae:2e:81:1b:45:87:ee:73:06:fb:6c:9f:9f:d4:
77:fa:34:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org