Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/nF_OweNbXtZIKY8vyOqs_qqtIVg.roa
File: nF_OweNbXtZIKY8vyOqs_qqtIVg.roa (raw, json)
Hash identifier: 2MIxD6mNXDglAsIWzU9Pz7h2kJN2Ea8waTm0tg5H8hk=
Subject key identifier: 9C:5F:CE:C1:E3:5B:5E:D6:48:29:8F:2F:C8:EA:AC:FE:AA:AD:21:58
Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Certificate serial: 0188566FC29EC0596C0FF09BB3EDA5AE7323
Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/nF_OweNbXtZIKY8vyOqs_qqtIVg.roa
Signing time: Fri 26 May 2023 05:02:24 +0000
ROA not before: Fri 26 May 2023 05:02:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 194.53.70.0/24 maxlen: 32
45.156.224.0/22 maxlen: 32
194.124.240.0/24 maxlen: 32
194.124.239.0/24 maxlen: 32
185.242.217.0/24 maxlen: 32
194.124.248.0/24 maxlen: 32
194.124.247.0/24 maxlen: 32
193.228.58.0/23 maxlen: 32
188.119.154.0/24 maxlen: 32
92.118.208.0/22 maxlen: 32
45.66.176.0/22 maxlen: 32
45.154.192.0/22 maxlen: 32
193.254.27.0/24 maxlen: 32
193.254.28.0/24 maxlen: 32
45.82.96.0/22 maxlen: 32
45.84.228.0/22 maxlen: 32
139.28.120.0/22 maxlen: 32
185.36.254.0/24 maxlen: 32
185.223.248.0/22 maxlen: 32
45.10.236.0/22 maxlen: 32
63.141.36.0/23 maxlen: 32
194.0.133.0/24 maxlen: 32
194.0.136.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 13 Aug 2023 07:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:6f:c2:9e:c0:59:6c:0f:f0:9b:b3:ed:a5:ae:73:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e
Validity
Not Before: May 26 05:02:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c5fcec1e35b5ed648298f2fc8eaacfeaaad2158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ea:67:7c:f5:53:a2:e3:a1:07:dd:36:78:e8:
a9:5c:59:e6:69:57:f6:b0:53:71:64:5a:99:90:03:
9a:3f:54:c0:9a:4e:37:5a:8b:f0:40:4e:f0:e3:ce:
5e:d0:57:5b:8a:c0:da:e4:15:58:0e:31:8e:62:b7:
5d:08:ec:ff:04:e7:f3:c9:81:f6:5e:20:dc:96:cb:
d8:ff:ab:23:d9:77:0f:ef:b6:0d:3f:c0:40:f9:33:
15:4a:19:4e:62:50:3a:f2:89:66:20:b6:ff:2b:7f:
08:8a:85:4f:cd:a5:a8:bb:fc:68:b2:ae:69:b1:9c:
f1:8d:a8:79:27:55:86:c5:92:6f:5a:46:0a:38:44:
3b:62:a9:1f:e7:d3:a0:e5:92:6d:75:65:0f:05:9d:
b5:40:53:4a:d2:72:d3:02:ed:49:b4:84:93:78:0a:
ea:f9:4f:5f:3b:c6:41:7d:39:79:4c:41:a6:94:84:
31:63:0e:11:3e:51:8d:f0:68:5d:7a:31:88:c0:98:
49:37:0a:0e:d3:a0:35:e7:b1:a0:23:02:e1:78:3b:
83:07:d6:e0:a0:78:0d:92:f9:73:c7:b5:f3:7a:81:
75:21:8b:a0:08:7a:3e:15:08:6f:d5:de:70:73:da:
bc:f4:c1:89:fc:f9:50:41:12:a7:d5:b3:c9:31:a3:
c2:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5F:CE:C1:E3:5B:5E:D6:48:29:8F:2F:C8:EA:AC:FE:AA:AD:21:58
X509v3 Authority Key Identifier:
keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/nF_OweNbXtZIKY8vyOqs_qqtIVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.236.0/22
45.66.176.0/22
45.82.96.0/22
45.84.228.0/22
45.154.192.0/22
45.156.224.0/22
63.141.36.0/23
92.118.208.0/22
139.28.120.0/22
185.36.254.0/24
185.223.248.0/22
185.242.217.0/24
188.119.154.0/24
193.228.58.0/23
193.254.27.0-193.254.28.255
194.0.133.0/24
194.0.136.0/24
194.53.70.0/24
194.124.239.0-194.124.240.255
194.124.247.0-194.124.248.255
Signature Algorithm: sha256WithRSAEncryption
38:7c:0b:8a:c4:77:8c:68:a6:fc:89:87:85:b3:62:b4:95:ae:
4b:f8:80:cf:4c:33:53:f6:66:d9:67:c4:e2:7d:32:65:49:c4:
29:51:ee:1a:6d:39:a2:8d:01:93:b5:a2:2f:43:50:ee:6c:48:
59:2e:0d:e6:0c:00:48:e7:47:ca:33:19:21:c8:f2:d9:68:89:
64:33:e8:2a:57:11:cb:e4:41:37:1f:fe:e0:2f:d9:f6:10:65:
f0:ca:2e:89:f6:32:21:f5:02:25:ef:69:98:b2:98:6f:38:b4:
cf:60:68:67:83:1a:11:ab:b5:49:72:c9:33:c6:a0:dc:d6:59:
27:0c:a5:17:69:af:3e:b6:86:1b:97:91:6d:bd:fa:7d:06:95:
b2:7b:e2:ab:af:ea:f1:c9:a0:e3:6b:d2:44:64:99:d4:80:b8:
d5:86:aa:25:c5:53:62:ab:3e:fc:b2:fc:6e:04:58:70:b1:9f:
92:ae:1c:05:5e:56:a6:06:b1:21:69:58:e1:9f:7b:1a:ac:7b:
7d:ff:da:83:63:d7:c6:2d:21:c5:83:0e:44:7c:34:b8:8c:5b:
72:2e:a5:c5:56:50:77:7c:8d:a7:a1:87:78:6e:55:91:8f:dd:
da:95:d0:f2:a0:a8:f5:68:4c:6f:d5:8f:78:2a:7c:13:88:4d:
c0:c2:ae:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:46 2024 by rpki-client on console-fra.rpki-client.org