Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/ukkAN51Uqn-ZSZCMewtFzgrSPJw.roa
File: ukkAN51Uqn-ZSZCMewtFzgrSPJw.roa (raw, json)
Hash identifier: GXSQ/i2qnY8V/uQ3Tx/0/TqjzBTOOq33Y+ZL5nwyw0Y=
Subject key identifier: BA:49:00:37:9D:54:AA:7F:99:49:90:8C:7B:0B:45:CE:0A:D2:3C:9C
Certificate issuer: /CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Certificate serial: 01872855DF2DB902D67150611B290B844621
Authority key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/ukkAN51Uqn-ZSZCMewtFzgrSPJw.roa
Signing time: Tue 28 Mar 2023 13:08:48 +0000
ROA not before: Tue 28 Mar 2023 13:08:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61098
IP address blocks: 159.100.240.0/22 maxlen: 24
159.100.245.0/24 maxlen: 24
159.100.246.0/23 maxlen: 24
159.100.244.0/24 maxlen: 24
159.100.248.0/21 maxlen: 24
91.92.224.0/23 maxlen: 24
91.92.227.0/24 maxlen: 24
85.217.160.0/22 maxlen: 24
85.217.172.0/23 maxlen: 24
185.150.8.0/22 maxlen: 24
91.92.202.0/23 maxlen: 24
91.92.200.0/23 maxlen: 24
85.217.174.0/23 maxlen: 24
85.217.186.0/23 maxlen: 24
85.217.184.0/23 maxlen: 24
185.19.28.0/22 maxlen: 24
194.182.188.0/22 maxlen: 24
91.92.118.0/23 maxlen: 24
91.92.116.0/23 maxlen: 24
91.92.142.0/23 maxlen: 24
91.92.140.0/23 maxlen: 24
91.92.152.0/23 maxlen: 24
91.92.154.0/23 maxlen: 24
194.182.164.0/22 maxlen: 24
194.182.160.0/22 maxlen: 24
194.182.172.0/22 maxlen: 24
194.182.168.0/22 maxlen: 24
89.145.164.0/23 maxlen: 24
194.182.176.0/22 maxlen: 24
89.145.160.0/22 maxlen: 24
194.182.184.0/22 maxlen: 24
89.145.166.0/23 maxlen: 24
194.182.180.0/22 maxlen: 24
2a07:6cc0:11::/48 maxlen: 48
2a07:6cc0:70::/48 maxlen: 48
2a07:6cc0:30::/48 maxlen: 48
2a04:c42::/32 maxlen: 48
2a07:6cc0:12::/48 maxlen: 48
2a07:6cc0:41::/48 maxlen: 48
2a04:c42:f12::/48 maxlen: 48
2a04:c41::/32 maxlen: 48
2a07:6cc0:20::/48 maxlen: 48
2a07:6cc0:60::/48 maxlen: 48
2a04:c44::/32 maxlen: 48
2a04:c47::/32 maxlen: 48
2a07:6cc0:71::/48 maxlen: 48
2a07:6cc0:31::/48 maxlen: 48
2a04:c46::/32 maxlen: 48
2a04:c42:f11::/48 maxlen: 48
2a04:c45::/32 maxlen: 48
2a07:6cc0:50::/48 maxlen: 48
2a07:6cc0:10::/48 maxlen: 48
2a04:c47:f12::/48 maxlen: 48
2a07:6cc2::/32 maxlen: 48
2a04:c43::/32 maxlen: 48
2a07:6cc0:21::/48 maxlen: 48
2a07:6cc1::/32 maxlen: 48
2a07:6cc2:f12::/48 maxlen: 48
2a07:6cc0:40::/48 maxlen: 48
2a04:c47:f11::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 Mar 2023 12:26:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:28:55:df:2d:b9:02:d6:71:50:61:1b:29:0b:84:46:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Validity
Not Before: Mar 28 13:08:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba4900379d54aa7f9949908c7b0b45ce0ad23c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f2:73:57:96:59:c8:15:0f:64:f1:3d:9b:cf:
a7:52:ee:ed:74:ae:19:2d:0f:be:7d:87:b2:e2:8c:
87:6d:54:68:16:ff:78:23:b2:4b:5c:03:bf:74:b7:
97:76:2f:0e:61:3b:f1:18:84:18:f9:bb:72:ad:a4:
47:82:02:7a:c3:a4:ac:73:8b:7b:ec:2e:6c:8a:35:
68:76:27:fa:59:42:1e:11:37:07:bb:d4:05:3c:70:
8e:69:fa:80:1e:63:a8:e4:21:9e:fa:ea:60:22:fe:
76:3c:28:4f:bc:c8:b5:b5:33:4c:9c:39:9e:98:4f:
bd:a0:cc:94:79:af:e3:dd:92:a2:8b:da:fe:fc:c5:
ae:88:25:58:ae:01:22:32:53:46:8f:36:80:56:26:
d3:06:03:77:b7:3a:9a:9c:85:7f:40:aa:a1:b7:64:
cc:cf:e9:86:60:31:24:e5:16:6a:81:a2:10:30:b9:
88:0d:86:ba:84:16:d4:d1:09:2d:49:c5:1e:f0:f9:
22:26:b5:2e:1c:1d:3f:c0:9e:69:84:46:63:85:04:
97:20:24:d3:b1:32:56:82:4c:c6:36:aa:e9:e4:ae:
a3:4d:63:ee:88:f1:b8:ea:82:3a:ec:0d:5d:30:8e:
7f:58:86:a2:57:88:1b:71:12:cd:32:4f:61:48:06:
bf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:49:00:37:9D:54:AA:7F:99:49:90:8C:7B:0B:45:CE:0A:D2:3C:9C
X509v3 Authority Key Identifier:
keyid:94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/ukkAN51Uqn-ZSZCMewtFzgrSPJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.160.0/22
85.217.172.0/22
85.217.184.0/22
89.145.160.0/21
91.92.116.0/22
91.92.140.0/22
91.92.152.0/22
91.92.200.0/22
91.92.224.0/23
91.92.227.0/24
159.100.240.0/20
185.19.28.0/22
185.150.8.0/22
194.182.160.0/19
IPv6:
2a04:c41::-2a04:c47:ffff:ffff:ffff:ffff:ffff:ffff
2a07:6cc0:10::-2a07:6cc0:12:ffff:ffff:ffff:ffff:ffff
2a07:6cc0:20::/47
2a07:6cc0:30::/47
2a07:6cc0:40::/47
2a07:6cc0:50::/48
2a07:6cc0:60::/48
2a07:6cc0:70::/47
2a07:6cc1::-2a07:6cc2:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
10:36:9c:f4:56:a1:56:9f:04:80:9b:fe:56:73:f0:42:fc:5c:
96:ab:dc:8b:6c:98:2d:f4:0b:7a:29:3a:7e:b8:d6:dc:75:ae:
c2:56:0e:26:ce:3b:ea:66:0c:82:6a:4f:c7:a3:e3:36:74:10:
b0:a4:4f:e2:36:44:1f:82:85:30:ba:6f:9d:96:72:d7:b2:eb:
33:fb:29:3e:eb:c4:51:ca:bd:97:59:88:b1:b4:a2:8c:eb:58:
aa:89:0a:f0:ca:63:51:43:dc:56:e5:a4:8c:46:98:4d:ed:a6:
94:40:9f:e5:23:15:cb:70:0b:45:8d:70:ca:c2:26:64:4d:b0:
86:d5:8e:0c:df:03:37:58:9f:d2:c4:28:d0:a1:59:e1:a6:94:
94:7a:68:76:8a:e5:ef:fe:02:4d:09:a3:9d:f3:d6:78:7d:28:
9c:01:1c:8f:95:59:d5:0a:e2:6d:8c:2c:f8:58:d7:75:02:e4:
54:ce:39:39:54:10:c7:7e:7d:c6:0f:cf:58:75:24:aa:14:0e:
cd:e2:f0:06:b4:84:01:54:05:c0:bd:79:5d:11:2e:49:e9:9a:
6a:3e:89:74:b5:76:07:d9:4f:a4:2d:12:a8:ea:7a:4e:c3:84:
6a:4f:6a:0c:63:bc:26:30:5b:e9:77:4b:77:41:d4:4b:be:dd:
c6:58:b6:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org