Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/aa2a44-3b3e-4b0f-a153-a486be3569a7/1/Ue3bJAUHeE89zRMk4jaqq5lN9sU.roa
File: Ue3bJAUHeE89zRMk4jaqq5lN9sU.roa (raw, json)
Hash identifier: XMKXMKNUUFbgcJ3N5E41UkbRXKWUYkXxYNcOqJY/NvY=
Subject key identifier: 51:ED:DB:24:05:07:78:4F:3D:CD:13:24:E2:36:AA:AB:99:4D:F6:C5
Certificate issuer: /CN=5f1fd44ccc54b5ceb3a79cb3794b9c66aeb67e49
Certificate serial: 01856FA6FCC8406D16DFBB13EB1071B5ADE1
Authority key identifier: 5F:1F:D4:4C:CC:54:B5:CE:B3:A7:9C:B3:79:4B:9C:66:AE:B6:7E:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx_UTMxUtc6zp5yzeUucZq62fkk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/aa2a44-3b3e-4b0f-a153-a486be3569a7/1/Ue3bJAUHeE89zRMk4jaqq5lN9sU.roa
Signing time: Sun 01 Jan 2023 23:24:52 +0000
ROA not before: Sun 01 Jan 2023 23:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39647
IP address blocks: 185.93.117.0/24 maxlen: 24
185.93.116.0/22 maxlen: 22
185.93.116.0/24 maxlen: 24
194.34.240.0/22 maxlen: 22
194.34.240.0/24 maxlen: 24
185.93.118.0/24 maxlen: 24
194.34.242.0/24 maxlen: 24
194.34.241.0/24 maxlen: 24
185.93.119.0/24 maxlen: 24
194.34.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:fc:c8:40:6d:16:df:bb:13:eb:10:71:b5:ad:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1fd44ccc54b5ceb3a79cb3794b9c66aeb67e49
Validity
Not Before: Jan 1 23:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51eddb240507784f3dcd1324e236aaab994df6c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0c:62:19:20:74:b3:65:63:c0:49:e8:d1:7e:
a8:c9:fc:3f:f1:0c:0c:61:9e:e9:33:24:cb:35:13:
46:a1:67:f7:e7:89:db:47:fe:ed:e5:8d:83:9b:55:
b9:9b:e8:3b:30:bf:10:d4:57:e2:79:87:43:86:77:
34:bd:c1:55:1d:7d:7c:34:3f:11:98:a8:25:86:2e:
eb:46:fa:3b:c8:db:b8:26:e5:bd:ec:4a:20:b4:23:
1e:a3:7f:eb:62:67:45:63:01:71:52:18:f7:07:ef:
d6:7a:21:22:04:27:11:af:51:da:30:37:c8:ef:45:
54:17:e1:6f:4e:fe:f2:30:49:1c:6f:93:24:41:84:
a7:e6:39:12:1a:54:a3:d6:57:b6:a3:74:6d:76:fb:
a6:de:45:b5:6d:8b:7c:a1:18:3c:27:43:8f:4b:39:
54:07:ce:e7:f2:c9:24:ad:20:e1:76:e5:80:89:a0:
c3:8e:02:a4:cc:ef:13:ae:26:43:46:49:95:5d:49:
a4:c2:ea:a6:70:9c:6e:4d:3b:ac:f8:8d:23:b9:d2:
4e:a1:6e:16:ba:81:a7:2e:78:34:77:d3:4e:53:64:
65:d0:c4:b5:12:f6:9f:f6:91:0b:a9:0f:8d:19:e0:
3a:5f:89:d5:ac:f0:c2:c5:71:32:14:4d:11:87:00:
5c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:ED:DB:24:05:07:78:4F:3D:CD:13:24:E2:36:AA:AB:99:4D:F6:C5
X509v3 Authority Key Identifier:
keyid:5F:1F:D4:4C:CC:54:B5:CE:B3:A7:9C:B3:79:4B:9C:66:AE:B6:7E:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx_UTMxUtc6zp5yzeUucZq62fkk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa2a44-3b3e-4b0f-a153-a486be3569a7/1/Ue3bJAUHeE89zRMk4jaqq5lN9sU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/aa2a44-3b3e-4b0f-a153-a486be3569a7/1/Xx_UTMxUtc6zp5yzeUucZq62fkk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.116.0/22
194.34.240.0/22
Signature Algorithm: sha256WithRSAEncryption
21:94:e8:17:89:4a:2d:ae:07:2b:d4:8b:cf:e7:aa:1a:10:7c:
b6:b2:92:01:fe:73:b7:f5:6e:89:c5:71:15:6d:0c:58:b9:ff:
56:e1:5b:2a:b9:ca:a5:d8:21:73:e0:a7:d9:5f:ea:64:87:ca:
a0:1f:ea:d5:80:34:f5:18:2c:90:0c:ba:13:9b:c4:cd:0a:5d:
0e:7b:5c:9c:9f:8e:c8:f9:b7:55:92:a3:da:32:6a:69:52:45:
19:1d:dc:13:8a:ae:93:0c:cb:9e:94:43:31:f4:0e:7c:41:f9:
d4:f6:ad:46:6b:da:2b:97:a2:8c:b2:1c:f9:92:1a:e4:b6:ff:
4a:fc:95:9f:5e:01:2e:b4:e9:d9:1c:7f:c4:94:34:d2:65:6e:
9e:22:4b:ef:67:7a:e2:98:d8:89:52:68:28:0e:3a:15:fe:95:
35:3e:a9:92:b5:c2:ff:a9:fd:55:4c:94:ae:44:b8:2e:4d:01:
a9:7a:90:a7:06:9f:34:cc:8b:34:5e:c9:c2:73:13:0c:70:51:
7a:4c:1a:80:99:c9:86:cc:7b:07:4f:a8:87:bd:ee:b7:9c:9f:
6a:36:2b:46:ba:45:4b:6d:de:2e:ef:44:f7:f5:e1:57:de:72:
ba:ea:79:43:bb:03:4f:dd:9a:88:8d:96:f6:a5:7f:f9:2f:2c:
b6:be:21:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:58 2024 by rpki-client on console-ams.rpki-client.org