Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/Iv9EGTdHI1O8oesaoB-N-PgvGD4.roa
File: Iv9EGTdHI1O8oesaoB-N-PgvGD4.roa (raw, json)
Hash identifier: GKQLxP5psVxd+8vhdEML7bK8iwZvP0Wgla4/pLxeR/o=
Subject key identifier: 22:FF:44:19:37:47:23:53:BC:A1:EB:1A:A0:1F:8D:F8:F8:2F:18:3E
Certificate issuer: /CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Certificate serial: 0186A745955ED068DF49273AF454167F6F24
Authority key identifier: DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/Iv9EGTdHI1O8oesaoB-N-PgvGD4.roa
Signing time: Fri 03 Mar 2023 11:40:00 +0000
ROA not before: Fri 03 Mar 2023 11:40:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39351
IP address blocks: 45.129.57.0/24 maxlen: 24
45.129.56.0/24 maxlen: 24
185.209.196.0/24 maxlen: 24
185.209.197.0/24 maxlen: 24
193.32.249.0/24 maxlen: 24
193.32.248.0/24 maxlen: 24
185.65.132.0/24 maxlen: 24
185.65.134.0/24 maxlen: 24
185.65.133.0/24 maxlen: 24
185.65.135.0/24 maxlen: 24
141.98.252.0/24 maxlen: 24
141.98.255.0/24 maxlen: 24
141.98.254.0/24 maxlen: 24
45.83.220.0/24 maxlen: 24
45.83.221.0/24 maxlen: 24
45.83.223.0/24 maxlen: 24
45.83.222.0/24 maxlen: 24
45.83.222.0/23 maxlen: 24
185.213.152.0/24 maxlen: 24
185.213.153.0/24 maxlen: 24
185.213.155.0/24 maxlen: 24
185.213.154.0/24 maxlen: 24
193.138.216.0/22 maxlen: 22
193.32.127.0/24 maxlen: 24
193.32.126.0/24 maxlen: 24
185.195.232.0/24 maxlen: 24
185.195.233.0/24 maxlen: 24
2a03:1b20:8::/48 maxlen: 48
2a03:1b20:3::/48 maxlen: 48
2a03:1b20:6::/48 maxlen: 48
2a03:1b20:1::/48 maxlen: 48
2a03:1b20:a::/48 maxlen: 48
2a03:1b20:5::/48 maxlen: 48
2a03:1b20:beef::/48 maxlen: 48
2a03:1b20:2::/48 maxlen: 48
2a03:1b20:7::/48 maxlen: 48
2a03:1b20:b::/48 maxlen: 48
2a03:1b20:9::/48 maxlen: 48
2a03:1b20:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Apr 2023 18:35:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:45:95:5e:d0:68:df:49:27:3a:f4:54:16:7f:6f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2e917315f0a878b21fc139d49a821aaddc3c97
Validity
Not Before: Mar 3 11:40:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22ff441937472353bca1eb1aa01f8df8f82f183e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:27:6b:bd:54:f5:e9:3a:30:97:5f:23:ca:a9:
b4:3a:c8:9b:fc:c2:7b:e5:bb:02:df:8c:bb:f8:93:
aa:15:8b:38:1b:68:e4:54:f9:46:44:b0:ec:50:1a:
c5:2a:76:ff:47:a1:86:92:3d:d1:5b:f0:42:52:b7:
09:2b:ce:e8:22:04:f2:e2:72:11:d1:21:bb:2a:1e:
9b:aa:ec:56:6b:1d:7a:4e:96:64:9d:a5:b1:94:7d:
43:d4:52:39:f8:26:bd:40:46:13:eb:64:20:b6:91:
40:ac:0b:aa:49:b7:10:fd:7e:17:8d:b1:19:af:fe:
57:9a:03:6a:f9:b8:4b:da:81:0b:71:17:a0:e5:e5:
bc:56:db:f4:0e:8a:b0:9c:e6:e7:6d:2c:0d:8f:a8:
59:ae:9a:d5:7a:34:07:23:07:e9:15:31:b1:5a:39:
61:dc:fc:51:31:2d:2e:bd:73:40:a5:bf:f3:01:c2:
58:a2:0b:66:73:17:68:b5:cd:09:31:d5:ab:3e:ac:
5a:17:5e:cd:ff:4e:72:23:0f:33:eb:09:21:2b:3b:
40:d3:77:31:83:3b:74:fd:62:6a:66:05:cb:f9:7c:
71:fe:ad:c0:bd:71:8b:5a:fc:20:14:41:9a:b1:cd:
11:8e:eb:be:70:ae:53:83:ff:e4:75:d7:56:6d:76:
03:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:44:19:37:47:23:53:BC:A1:EB:1A:A0:1F:8D:F8:F8:2F:18:3E
X509v3 Authority Key Identifier:
keyid:DE:2E:91:73:15:F0:A8:78:B2:1F:C1:39:D4:9A:82:1A:AD:DC:3C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3i6RcxXwqHiyH8E51JqCGq3cPJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/Iv9EGTdHI1O8oesaoB-N-PgvGD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2d5bc8-5d93-4b0a-a8b6-f8d65c983744/1/3i6RcxXwqHiyH8E51JqCGq3cPJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.220.0/22
45.129.56.0/23
141.98.252.0/24
141.98.254.0/23
185.65.132.0/22
185.195.232.0/23
185.209.196.0/23
185.213.152.0/22
193.32.126.0/23
193.32.248.0/23
193.138.216.0/22
IPv6:
2a03:1b20:1::-2a03:1b20:b:ffff:ffff:ffff:ffff:ffff
2a03:1b20:beef::/48
Signature Algorithm: sha256WithRSAEncryption
61:e7:6f:3f:88:6a:c2:f6:3c:ed:dd:a4:60:ca:37:9f:2a:98:
ce:7d:45:cf:08:7a:3c:67:c7:40:09:1a:15:71:c6:92:88:39:
34:8f:2c:cf:32:3d:b1:04:7e:be:2a:d0:e1:53:eb:57:0d:bf:
e3:93:03:fb:50:8d:91:ff:1b:53:9e:65:4f:f5:6b:72:0d:2c:
59:47:71:5b:2f:54:f8:50:e5:6d:e3:51:d4:1d:ac:4d:19:a4:
36:5a:2f:08:75:d1:ea:29:e3:e3:cd:a5:f2:9b:3d:b7:74:3b:
86:37:08:b6:29:af:29:35:c0:82:9c:5f:be:a0:0a:3e:af:10:
67:ba:32:e4:db:75:bf:a2:93:2f:6e:2f:fa:f1:3d:16:db:5b:
a3:ae:e6:33:44:9a:66:fb:cc:b8:2e:c7:76:5b:da:0b:82:ac:
31:28:fc:08:4f:bf:7f:6c:9a:bf:78:5e:a5:f9:09:32:54:bf:
e2:df:9a:77:29:85:43:04:47:16:ef:b2:50:63:ac:a9:e1:3a:
1d:25:65:b1:46:76:21:f3:68:93:e0:51:d3:85:cd:57:9c:6f:
17:ba:33:f5:ea:d3:5b:e7:41:42:97:a5:b8:68:4e:39:fa:2c:
d6:8e:3e:69:1e:92:c0:51:d7:66:43:d6:d1:61:4f:44:b8:4a:
d5:f4:1a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:27 2024 by rpki-client on console-ams.rpki-client.org