Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uvQ3q-PFpe62kSkXatE633pbccc.roa
File: uvQ3q-PFpe62kSkXatE633pbccc.roa (raw, json)
Hash identifier: otMgGrBAkeS9ME0cB0JZv3BXMN1OAlZXOg1CzPoETEU=
Subject key identifier: BA:F4:37:AB:E3:C5:A5:EE:B6:91:29:17:6A:D1:3A:DF:7A:5B:71:C7
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B81C0285B34B9ABDB9AB80049C6ECBDE4
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uvQ3q-PFpe62kSkXatE633pbccc.roa
Signing time: Mon 30 Oct 2023 18:02:15 +0000
ROA not before: Mon 30 Oct 2023 18:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Nov 2023 15:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:c0:28:5b:34:b9:ab:db:9a:b8:00:49:c6:ec:bd:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 30 18:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baf437abe3c5a5eeb69129176ad13adf7a5b71c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:33:bb:b4:e5:27:9f:b5:c5:22:88:01:38:87:
60:b2:9e:0a:e4:62:04:76:8b:cb:c7:15:37:7e:64:
ce:55:95:6c:6b:c6:23:0f:c6:cb:16:7c:91:0c:ac:
e4:10:7a:73:6e:cb:a3:37:2a:37:29:a3:6e:04:55:
ab:c7:6e:68:06:be:ae:20:93:de:46:76:e2:4d:95:
c2:2f:3b:08:c3:9b:59:16:d8:7f:a6:a7:6e:69:7f:
98:7e:d6:07:f2:b9:d4:42:f4:fd:42:df:d8:01:54:
3a:da:cb:7f:38:ab:00:11:8c:9d:1d:88:52:c2:a5:
f3:8c:db:31:c7:a4:78:84:3d:47:66:08:a5:da:82:
e9:bb:5a:2f:ae:87:71:d3:ba:07:8d:04:a9:f2:2a:
0f:8a:30:eb:54:ce:59:9e:92:cb:fe:6b:ac:75:10:
ab:08:a6:a9:bb:d4:4b:69:33:bc:78:5e:ba:9c:05:
ca:37:90:c4:bd:9d:26:2e:94:31:a8:10:e4:aa:8e:
34:23:5e:2b:7c:94:c6:6f:58:61:8b:6b:87:86:ec:
88:84:bf:ef:b9:d0:c0:7d:3c:4d:3c:4b:e8:61:48:
6b:2d:2b:0b:e2:aa:17:ed:16:99:a1:59:de:5a:c5:
3b:e4:40:65:31:55:60:5a:07:58:a1:e5:16:ea:79:
51:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F4:37:AB:E3:C5:A5:EE:B6:91:29:17:6A:D1:3A:DF:7A:5B:71:C7
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uvQ3q-PFpe62kSkXatE633pbccc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
b1:ae:a7:74:5b:62:3f:2a:c4:a5:1d:23:ba:48:18:d2:de:34:
d2:d3:ea:fa:af:9a:45:ff:52:0b:3b:46:48:3c:42:3e:99:97:
22:f9:98:e4:01:35:60:7a:0e:92:f9:24:60:03:62:d4:a2:12:
de:70:cc:3a:77:10:58:d7:bf:69:2a:76:02:a2:ac:82:87:03:
c8:33:f8:f6:f8:84:31:ef:39:79:5e:8d:c3:12:b0:4d:78:41:
7a:4b:c1:18:14:0f:5a:72:c6:73:c2:ee:dd:6a:97:2c:da:73:
53:8c:3a:15:eb:8e:85:6d:44:c4:b2:4f:78:af:34:0b:33:ea:
80:28:ee:59:99:16:6a:c8:29:44:f5:d3:11:7c:dd:ba:d9:07:
2e:e4:fc:12:b2:aa:54:54:2f:1d:de:04:df:2a:c8:b4:62:e9:
b4:cf:eb:c6:25:b5:9b:37:41:93:13:0a:7a:51:e4:15:7a:9a:
46:f7:2c:8c:fe:21:1f:4c:aa:69:a4:1d:17:cb:d7:35:04:aa:
69:ca:14:73:c5:ca:85:ab:23:39:4d:b5:1b:39:7b:73:28:58:
67:55:f1:41:f8:26:26:04:88:d7:d2:96:38:ac:86:79:1c:55:
c6:b7:97:7f:fd:bf:4e:f5:2c:ba:28:48:0c:14:79:eb:e0:12:
c0:e1:da:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org