Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/t9pn0LFNfoDQMJZdFV9lXz3aC6Y.roa
File: t9pn0LFNfoDQMJZdFV9lXz3aC6Y.roa (raw, json)
Hash identifier: 66PI13JeWPKvgzJpF+qf+ofYsSFWBY53hfpT9jvYajo=
Subject key identifier: B7:DA:67:D0:B1:4D:7E:80:D0:30:96:5D:15:5F:65:5F:3D:DA:0B:A6
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 018B2933659AA83FFF86C160009AADAD7800
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/t9pn0LFNfoDQMJZdFV9lXz3aC6Y.roa
Signing time: Fri 13 Oct 2023 13:21:55 +0000
ROA not before: Fri 13 Oct 2023 13:21:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.245.0/24 maxlen: 24
66.22.244.0/24 maxlen: 24
66.22.246.0/24 maxlen: 24
66.22.242.0/24 maxlen: 24
66.22.241.0/24 maxlen: 24
66.22.243.0/24 maxlen: 24
66.22.248.0/24 maxlen: 24
66.22.247.0/24 maxlen: 24
66.22.196.0/22 maxlen: 22
66.22.200.0/22 maxlen: 22
66.22.204.0/22 maxlen: 22
66.22.208.0/22 maxlen: 22
66.22.212.0/22 maxlen: 22
66.22.216.0/23 maxlen: 23
66.22.218.0/23 maxlen: 23
66.22.220.0/23 maxlen: 23
66.22.222.0/23 maxlen: 23
66.22.224.0/23 maxlen: 23
66.22.226.0/23 maxlen: 23
66.22.231.0/24 maxlen: 24
66.22.230.0/24 maxlen: 24
66.22.233.0/24 maxlen: 24
66.22.232.0/24 maxlen: 24
66.22.234.0/24 maxlen: 24
66.22.236.0/24 maxlen: 24
66.22.238.0/24 maxlen: 24
66.22.237.0/24 maxlen: 24
66.22.240.0/24 maxlen: 24
66.22.239.0/24 maxlen: 24
2a0e:5940:50::/44 maxlen: 44
2a0e:5940:190::/44 maxlen: 44
2a0e:5940:d0::/44 maxlen: 44
2a0e:5940:10::/44 maxlen: 44
2a0e:5940:90::/44 maxlen: 44
2a0e:5940:150::/44 maxlen: 44
2a0e:5940:110::/44 maxlen: 44
2a0e:5940:c0::/44 maxlen: 44
2a0e:5940:180::/44 maxlen: 44
2a0e:5940::/44 maxlen: 44
2a0e:5940:140::/44 maxlen: 44
2a0e:5940:80::/44 maxlen: 44
2a0e:5940:40::/44 maxlen: 44
2a0e:5940:100::/44 maxlen: 44
2a0e:5940:f0::/44 maxlen: 44
2a0e:5940:b0::/44 maxlen: 44
2a0e:5940:130::/44 maxlen: 44
2a0e:5940:170::/44 maxlen: 44
2a0e:5940:70::/44 maxlen: 44
2a0e:5940:30::/44 maxlen: 44
2a0e:5940:e0::/44 maxlen: 44
2a0e:5940:20::/44 maxlen: 44
2a0e:5940:60::/44 maxlen: 44
2a0e:5940:160::/44 maxlen: 44
2a0e:5940:120::/44 maxlen: 44
2a0e:5940:a0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:29:33:65:9a:a8:3f:ff:86:c1:60:00:9a:ad:ad:78:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: Oct 13 13:21:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7da67d0b14d7e80d030965d155f655f3dda0ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:bd:7e:17:b2:a7:c9:bb:25:9d:8f:21:73:52:
06:72:fd:26:bb:50:af:1c:a4:61:61:da:f6:e8:0f:
79:c3:97:34:a1:85:dd:e4:91:ff:23:50:4d:e4:d0:
ac:61:44:e1:a0:ff:eb:87:b9:81:d7:ba:f6:a6:ff:
c6:b6:48:7a:2a:c1:26:53:f5:b9:f1:c0:8d:ca:71:
8a:52:4b:8c:e7:46:47:26:33:d7:85:59:8c:00:c8:
1e:06:c5:aa:d0:54:05:1a:e4:90:77:76:5a:f3:69:
fa:3b:4a:b0:74:1a:93:3d:d3:a4:c5:fd:84:e8:c1:
f5:34:0b:d2:3c:86:56:f8:2b:62:e7:16:c7:ba:49:
18:95:8d:b6:9d:44:99:8c:ed:58:89:ea:dc:b1:93:
54:23:dd:3b:3a:21:f2:70:2d:65:cf:1c:6a:cd:c0:
22:4a:41:3b:25:cd:d9:97:d1:5a:d7:ce:8f:ab:0b:
5c:6d:15:bd:d1:9d:51:b4:d6:dc:90:8b:62:0f:46:
10:9f:5d:5a:ef:5b:e4:d7:ac:30:c5:58:70:5e:a8:
7a:6b:ad:05:31:8a:95:99:55:d4:2b:67:9e:b9:ca:
97:30:37:39:99:d2:69:17:4e:9f:e8:0a:2a:39:80:
73:94:27:2e:95:de:31:f0:8d:0f:5e:23:9d:01:19:
9a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DA:67:D0:B1:4D:7E:80:D0:30:96:5D:15:5F:65:5F:3D:DA:0B:A6
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/t9pn0LFNfoDQMJZdFV9lXz3aC6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.196.0-66.22.227.255
66.22.230.0-66.22.234.255
66.22.236.0-66.22.248.255
IPv6:
2a0e:5940::-2a0e:5940:19f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
11:2d:da:94:c3:d1:0e:4a:2d:93:b0:64:7c:99:6f:09:1b:76:
20:48:63:93:88:77:7c:ba:f1:b5:92:4a:f4:0c:d6:0a:44:e7:
94:04:87:c2:f3:5e:71:a2:76:34:fb:c8:3c:de:5b:4b:53:80:
c3:36:8f:a7:3f:c0:29:15:cb:a4:44:82:c5:db:6c:a7:d8:30:
be:e9:24:7d:68:83:e5:6c:e3:02:94:b9:51:cb:46:26:97:f6:
f2:ef:15:d4:d8:e0:14:72:60:44:e2:e4:53:d7:6c:99:e5:e2:
4c:a8:46:00:c4:43:e9:c7:de:1f:ad:d6:bf:67:7c:36:84:04:
f5:e4:8b:ff:a1:06:9b:d2:65:8c:76:6e:99:6e:53:95:08:c8:
81:f2:8a:4d:a8:8d:02:75:bf:e3:8f:18:fe:87:fe:20:07:a8:
d9:93:2b:0f:a5:88:ec:16:dd:1c:da:61:ac:26:9f:fd:0a:6e:
78:4c:a7:8a:cf:7e:ad:a0:a0:1e:f8:bb:36:16:2b:cd:fa:29:
3a:20:f0:a2:7a:fc:af:98:b9:62:39:3e:66:97:ed:c6:0d:01:
ca:26:4d:13:5d:5b:3d:85:e1:6b:22:a7:cc:ea:d4:68:52:8d:
c2:8b:82:75:18:51:e3:d5:85:af:b2:70:68:92:04:3c:16:b3:
22:77:eb:7b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org