Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uk-VoztsxAoEHtILxMx6VQr68oU.roa
File: uk-VoztsxAoEHtILxMx6VQr68oU.roa (raw, json)
Hash identifier: jfoWlzDnI48vN/r0L6rAPM79GOkLuVqQM4qBSWh4IGw=
Subject key identifier: BA:4F:95:A3:3B:6C:C4:0A:04:1E:D2:0B:C4:CC:7A:55:0A:FA:F2:85
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018F6DD43D811F0F668911CD35ACE9C9DF67
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uk-VoztsxAoEHtILxMx6VQr68oU.roa
Signing time: Sun 12 May 2024 17:22:56 +0000
ROA not before: Sun 12 May 2024 17:22:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62206
IP address blocks: 2.56.109.0/24 maxlen: 24
5.181.84.0/24 maxlen: 24
5.181.87.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
45.81.115.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.94.171.0/24 maxlen: 24
45.132.180.0/24 maxlen: 24
45.132.181.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.144.212.0/24 maxlen: 24
45.151.3.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.96.0/24 maxlen: 24
194.242.97.0/24 maxlen: 24
194.242.98.0/24 maxlen: 24
194.242.99.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
2a01:7120::/32 maxlen: 32
2a07:9200::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a10:dfc0::/29 maxlen: 29
2a11:580::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 21 May 2024 13:07:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:6d:d4:3d:81:1f:0f:66:89:11:cd:35:ac:e9:c9:df:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 12 17:22:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba4f95a33b6cc40a041ed20bc4cc7a550afaf285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f5:2a:82:f3:29:58:8a:3f:5f:e1:66:48:be:
0a:41:b1:35:61:05:92:45:1c:e7:2a:f1:be:79:0c:
0f:3d:86:9d:69:ee:d1:43:b5:a6:46:2f:79:b2:34:
7e:5c:9a:41:96:53:99:27:a2:ad:25:9e:42:dc:d2:
bd:ee:ef:43:82:ec:ad:51:97:9b:37:b2:b4:32:f5:
09:65:c0:27:6a:ca:d1:d5:b4:2a:37:24:4f:21:ee:
8e:84:54:45:23:3a:32:e3:99:49:57:ac:a3:b7:d0:
15:fb:00:1e:08:6f:00:b7:72:07:74:f1:c3:12:e0:
63:5f:51:59:2a:10:08:1c:c8:7b:e9:d4:86:49:fc:
d1:24:c3:07:e3:be:93:c0:14:50:1b:64:19:1b:60:
bb:4a:cd:30:ba:73:de:55:d8:4b:9e:6e:0a:61:10:
ad:a1:d9:14:c5:af:0d:39:95:fe:1e:40:67:64:66:
b2:ab:c2:9e:ae:b5:38:97:f8:df:af:09:ad:04:bc:
6c:e0:50:87:7a:7a:ef:46:26:2b:49:f9:b3:08:5a:
64:8d:e9:c5:65:13:10:ae:cd:1c:60:a2:b5:6f:46:
8e:53:f9:b4:20:39:19:78:4d:61:4b:d5:47:e8:d2:
25:57:49:96:d3:c3:c4:a2:ca:f9:0e:ad:eb:5e:2d:
96:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4F:95:A3:3B:6C:C4:0A:04:1E:D2:0B:C4:CC:7A:55:0A:FA:F2:85
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uk-VoztsxAoEHtILxMx6VQr68oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.109.0/24
5.181.84.0/24
5.181.87.0/24
45.9.29.0/24
45.81.115.0/24
45.88.136.0/24
45.88.138.0/24
45.94.171.0/24
45.132.180.0/22
45.144.212.0/24
45.151.3.0/24
77.83.37.0/24
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.93.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
6c:73:80:ce:99:9a:e4:7b:9d:2b:b2:9b:66:4d:4d:a7:13:f6:
e5:75:05:5d:23:47:f2:0e:87:e1:28:71:78:1e:52:29:0b:23:
b0:ce:06:cb:be:27:aa:56:59:26:96:ca:d9:26:28:0f:b0:5c:
31:91:70:56:78:93:87:70:3d:6b:f8:c0:f8:c8:56:5e:e6:35:
63:78:a2:08:0b:43:26:c3:fc:c0:16:ab:79:ef:0c:87:15:a4:
56:77:fb:15:47:8b:8b:24:6e:72:e9:f6:49:98:f3:07:4d:e9:
82:c5:5d:77:84:e3:40:9a:06:6a:87:ce:c1:e6:08:df:bd:df:
d8:a2:1a:d3:ac:f7:be:aa:31:0c:e5:5a:70:fa:ce:fe:8c:44:
82:95:c7:b8:98:a5:19:ba:db:fc:1f:59:3b:01:e4:f1:7c:b9:
fd:9f:a9:a0:54:0f:51:20:35:eb:6f:3b:e0:54:b3:a2:eb:08:
14:c7:55:22:72:52:11:dd:20:b2:f5:04:4f:14:ef:23:71:88:
47:ba:ef:90:4c:80:e8:f9:b1:3d:c5:13:23:fa:0a:98:1e:14:
23:e0:68:78:27:59:ee:6c:da:2f:98:51:19:5f:bc:fc:91:4e:
13:93:a1:a9:1c:46:64:7a:39:f2:12:34:0f:a6:5c:c4:85:ba:
15:42:29:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org