Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/UgLA0lKRQhF6yHULMchKTVanDNI.roa
File: UgLA0lKRQhF6yHULMchKTVanDNI.roa (raw, json)
Hash identifier: B3K/lTAb0e0ryF2DzBuFR9V3o+bF+xLiM9kV9zPVe40=
Subject key identifier: 52:02:C0:D2:52:91:42:11:7A:C8:75:0B:31:C8:4A:4D:56:A7:0C:D2
Certificate issuer: /CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Certificate serial: 01870D06F9046001106AD163FB523B4F6598
Authority key identifier: 64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/UgLA0lKRQhF6yHULMchKTVanDNI.roa
Signing time: Thu 23 Mar 2023 05:52:53 +0000
ROA not before: Thu 23 Mar 2023 05:52:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 93.113.148.0/24 maxlen: 24
93.113.149.0/24 maxlen: 24
93.113.151.0/24 maxlen: 24
93.113.150.0/24 maxlen: 24
94.176.212.0/24 maxlen: 24
89.34.239.0/24 maxlen: 24
188.208.16.0/24 maxlen: 24
188.208.17.0/24 maxlen: 24
37.156.174.0/24 maxlen: 24
77.81.103.0/24 maxlen: 24
89.43.34.0/24 maxlen: 24
89.43.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 13:37:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0d:06:f9:04:60:01:10:6a:d1:63:fb:52:3b:4f:65:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64fa66fb84a781a0584fd0d1c2df39bda4760519
Validity
Not Before: Mar 23 05:52:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5202c0d2529142117ac8750b31c84a4d56a70cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9a:fc:6f:38:c3:51:56:75:75:41:b0:9d:8b:
c6:8c:08:7f:94:d3:9c:48:2b:93:01:b6:db:71:34:
99:84:5f:11:26:79:63:fc:bd:3c:85:d3:c5:03:6c:
d7:d5:89:ce:10:2a:57:ae:df:ef:7d:db:c6:05:71:
4f:10:08:9c:08:ae:3d:83:db:79:12:0f:20:8f:f6:
13:ad:a8:a1:c9:82:a0:1d:f5:eb:3f:6a:aa:68:cf:
02:d8:16:c0:08:fc:de:b8:41:42:26:2d:da:c6:e0:
0a:b4:72:7a:55:41:dc:3a:08:a5:cf:ec:76:16:33:
3b:e8:95:1b:1a:04:3f:03:03:d0:a6:a6:79:50:03:
f8:80:08:70:3b:6f:cd:9d:ff:b1:ac:64:fb:ba:b8:
7c:e4:98:89:45:ae:f3:15:1b:b5:48:98:c5:e6:3b:
36:ca:0b:9a:ca:ab:bc:80:67:42:a5:b8:db:dc:2f:
f5:9c:30:2e:75:74:ca:c8:ca:f8:6d:dd:00:ad:e9:
89:15:db:ba:4d:c7:18:83:21:26:a2:be:86:50:e4:
36:d5:ef:04:ee:8f:e0:5a:5b:94:91:81:1b:c3:6b:
cd:fe:3a:e8:fe:a6:55:2f:09:6c:68:d1:1f:d9:13:
62:81:19:7a:82:4d:f5:f2:18:86:5a:84:8f:14:41:
fa:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:02:C0:D2:52:91:42:11:7A:C8:75:0B:31:C8:4A:4D:56:A7:0C:D2
X509v3 Authority Key Identifier:
keyid:64:FA:66:FB:84:A7:81:A0:58:4F:D0:D1:C2:DF:39:BD:A4:76:05:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPpm-4SngaBYT9DRwt85vaR2BRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/UgLA0lKRQhF6yHULMchKTVanDNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/663b4d-b80e-4946-84c4-7408eb8bc586/1/ZPpm-4SngaBYT9DRwt85vaR2BRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.174.0/24
77.81.103.0/24
89.34.239.0/24
89.43.34.0/23
93.113.148.0/22
94.176.212.0/24
188.208.16.0/23
Signature Algorithm: sha256WithRSAEncryption
24:62:e2:c5:d7:a9:77:ba:f4:8f:98:32:65:05:8b:14:29:4c:
fd:b7:46:9b:af:cb:73:25:12:a0:67:59:0e:e9:8c:60:6c:fd:
5a:ce:e1:28:93:96:02:f3:f2:34:c4:ec:41:ca:7b:40:ce:72:
39:d6:10:1d:a2:92:6e:ce:cd:e7:00:38:b9:bf:4c:ac:f6:c8:
65:cb:a0:4c:e4:35:ad:6a:a2:87:52:d3:79:52:da:58:3b:23:
9a:52:e6:05:a4:2c:3f:31:69:ab:f0:38:a0:5c:e3:62:ba:4b:
dd:e7:97:3a:c1:61:8c:dc:e4:a1:5f:fb:eb:28:3b:7b:9f:e9:
be:56:4a:d1:51:c8:7e:7b:ac:3a:e2:ae:82:a7:d0:e6:32:b7:
51:23:5e:be:53:c1:b2:45:50:ba:1a:ec:62:84:67:bf:b8:d1:
8a:ae:2c:c7:17:27:04:32:c3:8a:d0:4b:65:a2:20:f0:b8:37:
7b:93:9e:f9:69:f5:e6:b2:4c:76:33:a1:cf:f7:fc:c4:be:6e:
e7:a8:47:a1:9a:9b:b6:67:4b:c0:61:eb:c9:90:b0:55:b2:3f:
53:7e:e5:25:d0:c7:14:c4:10:b5:11:3f:75:17:9b:61:ba:3a:
51:07:22:95:72:7a:27:6c:23:10:8f:a9:c1:77:60:c3:c9:de:
87:85:c7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:12 2024 by rpki-client on console-fra.rpki-client.org