Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/uobPn-VHpAmvtKcQYWq-cWQ6Bso.roa
File: uobPn-VHpAmvtKcQYWq-cWQ6Bso.roa (raw, json)
Hash identifier: vMpe+6PHxcdCMg+FQH3ZeI1PCMjVVGQ7LnXtpL1q7u8=
Subject key identifier: BA:86:CF:9F:E5:47:A4:09:AF:B4:A7:10:61:6A:BE:71:64:3A:06:CA
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 01857295A3B0126336615788B1E74B5A06E2
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/uobPn-VHpAmvtKcQYWq-cWQ6Bso.roa
Signing time: Mon 02 Jan 2023 13:04:47 +0000
ROA not before: Mon 02 Jan 2023 13:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50223
IP address blocks: 109.71.226.0/24 maxlen: 24
109.71.224.0/24 maxlen: 24
109.71.229.0/24 maxlen: 24
109.71.231.0/24 maxlen: 24
109.71.230.0/24 maxlen: 24
46.251.206.0/24 maxlen: 24
46.251.205.0/24 maxlen: 24
46.251.204.0/24 maxlen: 24
46.251.202.0/24 maxlen: 24
46.251.201.0/24 maxlen: 24
46.251.200.0/24 maxlen: 24
46.251.213.0/24 maxlen: 24
46.251.212.0/24 maxlen: 24
46.251.211.0/24 maxlen: 24
46.251.210.0/24 maxlen: 24
46.251.209.0/24 maxlen: 24
46.251.208.0/24 maxlen: 24
46.251.207.0/24 maxlen: 24
46.251.218.0/24 maxlen: 24
46.251.217.0/24 maxlen: 24
46.251.216.0/24 maxlen: 24
46.251.215.0/24 maxlen: 24
46.251.214.0/24 maxlen: 24
46.251.221.0/24 maxlen: 24
185.48.136.0/24 maxlen: 24
185.48.139.0/24 maxlen: 24
46.251.192.0/24 maxlen: 24
46.251.199.0/24 maxlen: 24
46.251.198.0/24 maxlen: 24
46.251.197.0/24 maxlen: 24
46.251.196.0/24 maxlen: 24
46.251.195.0/24 maxlen: 24
46.251.194.0/24 maxlen: 24
46.251.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:a3:b0:12:63:36:61:57:88:b1:e7:4b:5a:06:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Jan 2 13:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba86cf9fe547a409afb4a710616abe71643a06ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ae:ca:de:5b:33:c4:fb:8f:aa:0e:02:37:7d:
9d:c6:57:0c:c0:13:2c:6e:b1:27:26:61:82:0f:fa:
a4:29:d9:5c:9b:1d:9b:09:6f:15:f2:1f:a6:13:0f:
83:45:e9:3c:ca:1a:c0:ac:8b:03:a5:18:aa:d6:97:
d8:cd:35:e4:d0:21:eb:8e:ff:47:c7:4a:fd:eb:ad:
02:de:51:43:68:32:34:2b:06:dc:5e:97:28:f3:f3:
c9:aa:10:26:22:df:a7:78:cb:aa:f0:f7:eb:5c:1c:
b6:a4:fe:5f:4c:1f:88:69:fa:e0:82:80:fe:b9:7c:
39:77:15:5b:da:c6:5e:68:b2:7f:36:9a:62:85:6c:
58:49:f4:c5:aa:e5:3c:9e:05:1d:6e:f6:16:7f:89:
e0:fb:a5:66:22:80:67:6c:64:0f:05:6a:74:d3:ea:
d6:14:3a:e7:85:66:8e:35:aa:b1:6c:03:0e:59:8c:
f8:48:51:a8:d6:80:55:f1:61:0e:66:df:7c:f6:9e:
79:4b:25:48:92:7f:34:0c:66:24:28:c5:ed:cb:a6:
e0:28:20:8c:ee:53:e7:a8:ee:13:69:1a:e5:21:0e:
ef:16:96:91:24:82:61:52:00:4a:2a:15:c8:9c:a4:
73:c9:ea:0d:a3:c6:89:45:79:1a:8e:1e:1f:1d:ae:
28:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:86:CF:9F:E5:47:A4:09:AF:B4:A7:10:61:6A:BE:71:64:3A:06:CA
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/uobPn-VHpAmvtKcQYWq-cWQ6Bso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.192.0-46.251.202.255
46.251.204.0-46.251.218.255
46.251.221.0/24
109.71.224.0/24
109.71.226.0/24
109.71.229.0-109.71.231.255
185.48.136.0/24
185.48.139.0/24
Signature Algorithm: sha256WithRSAEncryption
82:e4:e8:d0:76:3d:dc:47:bf:d8:df:d4:b4:a5:d1:17:75:77:
95:7f:f2:ce:be:e4:bd:b7:51:83:a7:0c:49:90:2f:31:5f:41:
aa:b6:86:5b:0e:69:47:19:88:bf:6f:63:a6:31:78:f6:28:a9:
db:c7:c4:a0:2d:d2:58:07:23:71:f5:aa:b4:f6:e5:d6:7b:f6:
30:da:03:d9:dc:cc:d5:36:8d:41:6e:3f:d2:7a:a1:f6:0a:ed:
61:e9:ac:6e:f7:76:90:14:51:6c:4e:20:56:2e:50:ff:d8:d7:
1f:05:ee:27:28:28:7b:bd:a8:9c:d0:2d:e6:9d:dd:58:40:b6:
6f:a1:41:1c:86:a4:6a:58:ba:42:09:d0:b9:ec:25:08:44:e7:
20:aa:a9:34:f3:47:fd:6f:fc:42:a5:98:b5:ed:c5:e9:3e:81:
4a:2a:9c:b8:f1:f7:64:fa:af:49:ad:e6:39:06:c0:5a:b6:ac:
80:06:56:e7:08:6e:fd:ac:a6:15:29:01:2e:d5:54:f1:f4:65:
ab:78:05:33:db:63:6b:82:1f:77:82:30:e2:af:d6:97:71:97:
c9:31:3a:42:17:e4:91:96:6e:1b:08:84:06:e7:a8:80:16:c3:
2b:ca:2d:c5:ea:3d:e6:14:85:31:d6:ac:a4:00:67:f0:c2:39:
23:19:79:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:16 2024 by rpki-client on console-ams.rpki-client.org