Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Ug7xBdMs-NCWSna9-ezw8NP9bRQ.roa
File: Ug7xBdMs-NCWSna9-ezw8NP9bRQ.roa (raw, json)
Hash identifier: 7zUBaxvpiNhb5CQ5nqQ0O4o3Ud/DiNtyJUeQYxE3PdI=
Subject key identifier: 52:0E:F1:05:D3:2C:F8:D0:96:4A:76:BD:F9:EC:F0:F0:D3:FD:6D:14
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018CC26D6858BD36F74CFEC4F9AD1FEAC073
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Ug7xBdMs-NCWSna9-ezw8NP9bRQ.roa
Signing time: Mon 01 Jan 2024 00:29:59 +0000
ROA not before: Mon 01 Jan 2024 00:29:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205132
IP address blocks: 84.238.167.0/24 maxlen: 24
212.72.199.0/24 maxlen: 24
94.236.169.0/24 maxlen: 24
83.228.61.0/24 maxlen: 24
83.228.89.0/24 maxlen: 24
83.228.87.0/24 maxlen: 24
83.228.86.0/24 maxlen: 24
213.91.157.0/24 maxlen: 24
77.85.198.0/24 maxlen: 24
213.91.173.0/24 maxlen: 24
213.91.191.0/24 maxlen: 24
84.238.192.0/24 maxlen: 24
212.72.221.0/24 maxlen: 24
84.238.194.0/24 maxlen: 24
84.238.193.0/24 maxlen: 24
46.10.156.0/24 maxlen: 24
46.10.179.0/24 maxlen: 24
77.85.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 12:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:68:58:bd:36:f7:4c:fe:c4:f9:ad:1f:ea:c0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 00:29:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=520ef105d32cf8d0964a76bdf9ecf0f0d3fd6d14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0f:b4:f5:b7:d8:cd:c0:46:d3:ad:32:98:89:
dc:8b:70:6b:66:f5:a7:e1:9a:c0:21:95:dc:7b:16:
17:a5:19:3f:74:18:10:35:a7:6d:9d:f5:06:55:50:
2f:8c:ae:cf:00:50:a0:42:e9:56:0b:65:55:96:73:
5d:69:bd:6e:8b:8b:ae:c6:cf:ec:d2:bd:b9:83:e0:
6d:05:d3:75:ee:65:97:3e:8a:f9:75:1a:a8:d4:1a:
1f:2a:b4:56:d2:ad:48:71:91:7c:08:37:96:d2:6f:
c9:2b:a1:62:5f:ea:8a:0c:17:c3:b4:c7:72:66:e2:
9d:fa:0e:db:29:02:a2:8f:7c:14:9f:b1:ef:65:96:
06:10:01:91:ea:83:8c:11:f8:18:ea:c7:6d:5a:0f:
09:b1:8c:21:5e:f6:b4:15:01:ad:59:3e:f1:9b:9b:
e8:86:a6:f8:c7:b9:08:c7:1c:50:28:50:f8:af:63:
67:84:12:f3:8d:e7:de:db:df:8b:99:d9:6c:ca:0d:
37:8b:dd:bf:51:91:bb:4e:d4:f9:f1:35:50:ec:3b:
be:1e:65:c7:84:63:88:9d:f8:d6:7e:b1:15:94:a0:
ef:27:b1:71:57:01:a7:c0:7e:7f:2e:54:c5:17:d7:
31:75:29:5e:8d:72:60:e6:5d:a4:65:b2:cd:cd:85:
a2:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0E:F1:05:D3:2C:F8:D0:96:4A:76:BD:F9:EC:F0:F0:D3:FD:6D:14
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/Ug7xBdMs-NCWSna9-ezw8NP9bRQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.10.156.0/24
46.10.179.0/24
77.85.170.0/24
77.85.198.0/24
83.228.61.0/24
83.228.86.0/23
83.228.89.0/24
84.238.167.0/24
84.238.192.0-84.238.194.255
94.236.169.0/24
212.72.199.0/24
212.72.221.0/24
213.91.157.0/24
213.91.173.0/24
213.91.191.0/24
Signature Algorithm: sha256WithRSAEncryption
68:f4:25:53:ae:d2:0b:a9:8a:d7:cc:44:14:56:22:a2:b6:75:
68:a5:04:ae:cb:c3:57:e9:5b:06:da:01:41:ad:c4:53:89:eb:
8d:f7:3b:62:2d:59:76:72:eb:bb:fe:d5:22:9f:fd:f8:dc:c3:
e7:b2:f9:2a:a4:ef:34:b2:c5:72:01:1a:d8:81:23:c1:2e:fe:
dd:31:c2:67:4d:a8:aa:01:34:1e:f8:4d:bf:7a:ad:8f:e9:56:
82:89:05:3a:ef:11:3c:52:54:42:13:37:63:e4:3f:f9:0b:8d:
ce:79:6d:1a:98:9b:9d:9d:ca:cb:b9:4b:f7:e4:fa:39:27:ea:
b5:aa:e1:b6:8e:6f:9c:20:ca:62:5c:33:ef:3c:cf:37:65:f0:
24:bf:b4:9a:7e:c4:90:b2:a3:cf:e7:ee:ee:8e:1b:e3:7a:36:
98:36:f0:fe:50:a8:5e:d7:6b:d7:d0:d4:35:c3:b2:35:6b:db:
b1:3d:4f:53:cb:e7:be:40:9d:f0:68:d1:21:79:1c:2c:73:59:
54:56:8f:d7:e7:6a:8e:63:de:50:13:58:89:f9:b5:39:7a:2d:
50:1c:78:8a:0e:77:69:af:d6:2a:8b:a9:39:4e:b2:1f:bf:e8:
0f:bc:fd:76:d0:e8:c8:10:51:45:f0:8e:2a:cd:19:7c:d4:bd:
80:2b:8e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org