Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/RyL20QXMiVh-4vHMyQ3G41ngCgg.roa
File: RyL20QXMiVh-4vHMyQ3G41ngCgg.roa (raw, json)
Hash identifier: XQlcbOSTvktRh40zFKyWDFGkWlcyVT02lO21KtQD8eA=
Subject key identifier: 47:22:F6:D1:05:CC:89:58:7E:E2:F1:CC:C9:0D:C6:E3:59:E0:0A:08
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 018AB6E7ECEBE0BC6EB03491B9AAA71488E8
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/RyL20QXMiVh-4vHMyQ3G41ngCgg.roa
Signing time: Thu 21 Sep 2023 08:42:47 +0000
ROA not before: Thu 21 Sep 2023 08:42:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 194.53.70.0/24 maxlen: 32
45.156.224.0/22 maxlen: 32
194.124.240.0/24 maxlen: 32
194.124.239.0/24 maxlen: 32
194.124.248.0/24 maxlen: 32
194.124.247.0/24 maxlen: 32
193.228.58.0/23 maxlen: 32
188.119.154.0/24 maxlen: 32
92.118.208.0/22 maxlen: 32
45.66.176.0/22 maxlen: 32
45.154.192.0/22 maxlen: 32
193.254.27.0/24 maxlen: 32
193.254.28.0/24 maxlen: 32
45.82.96.0/22 maxlen: 32
45.84.228.0/22 maxlen: 32
139.28.120.0/22 maxlen: 32
185.36.254.0/24 maxlen: 32
185.223.248.0/22 maxlen: 32
45.10.236.0/22 maxlen: 32
63.141.36.0/23 maxlen: 32
194.0.133.0/24 maxlen: 32
194.0.136.0/24 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Nov 2023 09:37:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:e7:ec:eb:e0:bc:6e:b0:34:91:b9:aa:a7:14:88:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: Sep 21 08:42:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4722f6d105cc89587ee2f1ccc90dc6e359e00a08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8d:90:27:07:51:7f:0d:24:56:1e:37:2e:8a:
f5:a5:94:af:7e:c6:86:a6:8a:75:94:a0:d6:cf:f1:
43:77:52:56:18:1f:05:c2:7c:cc:b9:de:57:b0:20:
15:e1:95:18:ab:1a:b2:60:a4:d6:95:b8:b9:b0:63:
8f:b0:81:0f:af:14:96:9c:d7:e3:d0:50:5b:3f:82:
13:d2:0b:b8:b6:f6:34:c9:97:a8:31:6d:3e:0b:a5:
85:b5:bc:57:e9:0a:f6:ee:c5:02:67:8b:6c:fc:f3:
08:6c:da:3e:47:26:ba:ad:d9:f4:d7:8c:1d:3a:13:
ae:ae:5b:93:f7:7b:fc:ed:ce:d3:00:39:8d:24:c2:
96:7d:cb:f9:34:9d:ce:80:bc:cc:ec:1f:39:84:cf:
7c:12:d6:52:29:02:3a:09:12:06:db:8b:7b:6b:7e:
e8:7f:0f:68:0e:6b:ae:d0:93:2e:bf:cb:90:0f:2f:
74:0d:0e:30:67:ee:7a:eb:64:fc:28:bb:12:20:d8:
38:94:1e:d2:63:35:0e:b8:a8:3c:ee:9d:1c:e0:4b:
19:7b:81:73:b0:dc:d4:55:d7:d1:40:47:b2:a9:03:
c5:ad:14:18:5c:7b:9e:8d:67:6d:6c:36:13:04:83:
bd:45:b3:0a:57:ba:f8:23:58:09:60:a3:fc:5e:ad:
9a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:22:F6:D1:05:CC:89:58:7E:E2:F1:CC:C9:0D:C6:E3:59:E0:0A:08
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/RyL20QXMiVh-4vHMyQ3G41ngCgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.236.0/22
45.66.176.0/22
45.82.96.0/22
45.84.228.0/22
45.154.192.0/22
45.156.224.0/22
63.141.36.0/23
92.118.208.0/22
139.28.120.0/22
185.36.254.0/24
185.223.248.0/22
188.119.154.0/24
193.228.58.0/23
193.254.27.0-193.254.28.255
194.0.133.0/24
194.0.136.0/24
194.53.70.0/24
194.124.239.0-194.124.240.255
194.124.247.0-194.124.248.255
Signature Algorithm: sha256WithRSAEncryption
a3:bc:47:b5:81:97:55:e3:56:d6:46:dd:6b:e7:40:65:2e:0e:
cd:1a:bb:04:3c:0f:dd:62:4d:e5:04:fe:3e:cc:78:c0:4b:5c:
f7:ba:1f:6a:0d:47:a5:c2:2b:f4:8f:84:62:d5:03:62:4d:e7:
5c:2a:0d:7d:25:de:78:6d:8a:a3:0b:60:5f:09:e5:bd:64:35:
91:91:e3:01:48:1e:3a:4e:63:15:8b:45:81:ae:3f:17:ac:71:
c1:b3:a6:ba:46:ed:b8:82:50:f1:11:99:f2:58:6b:23:a3:98:
10:8f:5a:37:25:be:b0:23:da:b3:5e:cc:a8:e6:e9:4f:78:d1:
d2:df:4d:cd:d2:6e:d1:fc:9f:8e:17:bc:db:29:d1:d7:c1:c7:
bf:0d:6c:52:1e:63:24:15:be:fd:bf:ce:21:89:f3:c9:75:54:
8d:a9:21:ac:f3:d0:49:59:83:45:7e:2d:2d:67:8a:cc:f1:40:
e3:37:37:10:cb:93:26:45:30:e8:a4:7d:39:49:ea:3d:56:8c:
3d:c3:6c:40:d0:f8:2f:c7:f5:14:26:86:d2:13:03:a9:03:74:
7b:48:2b:7a:4c:d4:cd:43:85:de:d1:a7:29:d8:5b:72:db:f9:
ad:52:85:01:f7:9b:f0:44:38:58:eb:6c:85:6f:f3:18:cf:4c:
49:c8:fd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:46 2024 by rpki-client on console-fra.rpki-client.org