Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/uL0dieezmOXPRXjuiKyDLzfQ4k8.roa
File: uL0dieezmOXPRXjuiKyDLzfQ4k8.roa (raw, json)
Hash identifier: a9tuaooGUjs9tRRmWOfgGglbRTCK/xzMBEDuJp5qZrA=
Subject key identifier: B8:BD:1D:89:E7:B3:98:E5:CF:45:78:EE:88:AC:83:2F:37:D0:E2:4F
Certificate issuer: /CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Certificate serial: 0186783495988F741C8772D5FF328746F28A
Authority key identifier: A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/uL0dieezmOXPRXjuiKyDLzfQ4k8.roa
Signing time: Wed 22 Feb 2023 08:19:17 +0000
ROA not before: Wed 22 Feb 2023 08:19:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207199
IP address blocks: 193.239.96.0/22 maxlen: 22
185.235.52.0/24 maxlen: 24
185.235.52.0/22 maxlen: 22
185.25.140.0/24 maxlen: 24
178.251.1.0/24 maxlen: 24
178.251.0.0/21 maxlen: 21
178.251.0.0/24 maxlen: 24
91.197.248.0/22 maxlen: 22
91.197.248.0/24 maxlen: 24
77.243.128.0/20 maxlen: 20
77.243.132.0/24 maxlen: 24
81.95.240.0/20 maxlen: 20
81.95.249.0/24 maxlen: 24
185.154.240.0/22 maxlen: 22
195.69.128.0/22 maxlen: 22
109.71.56.0/21 maxlen: 21
91.217.201.0/24 maxlen: 24
46.36.204.0/22 maxlen: 22
46.36.208.0/21 maxlen: 21
2a02:2339::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 06 Sep 2023 13:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:34:95:98:8f:74:1c:87:72:d5:ff:32:87:46:f2:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4e7205f5d41257a6bb95f900eec0a1123e75164
Validity
Not Before: Feb 22 08:19:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8bd1d89e7b398e5cf4578ee88ac832f37d0e24f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:78:41:6a:b0:9e:5e:a7:8d:8d:12:dc:08:0a:
e3:52:13:bf:02:be:d7:c1:36:7c:4c:64:ff:8a:2f:
93:45:e4:bc:0f:c3:16:06:98:4f:9a:cb:e4:e0:a7:
01:64:cd:49:d2:e8:38:34:ed:e8:f8:8e:3b:9d:bf:
dc:85:d0:39:5d:14:13:d3:8b:18:2f:37:02:a5:66:
00:31:8b:7e:02:cf:fd:af:ee:c1:e1:6c:fd:4a:3c:
8b:94:f2:86:9b:19:70:92:d3:98:26:7f:e4:76:d1:
42:d0:bd:31:76:b8:78:0d:f4:bc:0d:34:48:bc:c9:
cf:7b:4f:ad:14:85:93:f8:21:e2:67:66:99:01:54:
f8:ea:a7:72:b8:cd:69:25:db:ec:36:5f:fe:e3:24:
74:6b:cf:c4:3a:6a:32:6d:ab:9a:3d:f8:c4:ea:41:
f7:a7:ae:dd:35:9b:ca:2e:19:78:43:9f:68:07:71:
7f:ab:06:dd:06:0d:19:29:4d:6e:bf:1c:98:0b:de:
76:7f:57:db:f5:06:24:8c:25:aa:9f:ff:f2:08:f9:
a6:a2:fc:cd:31:3f:80:88:7f:ee:b8:02:a1:5f:5e:
dd:a7:74:9e:43:6d:3c:e3:31:c0:c2:a7:a8:b4:52:
43:ba:b9:27:cd:b5:31:f7:28:0c:7e:6a:73:4f:cf:
6c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BD:1D:89:E7:B3:98:E5:CF:45:78:EE:88:AC:83:2F:37:D0:E2:4F
X509v3 Authority Key Identifier:
keyid:A4:E7:20:5F:5D:41:25:7A:6B:B9:5F:90:0E:EC:0A:11:23:E7:51:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pOcgX11BJXpruV-QDuwKESPnUWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/uL0dieezmOXPRXjuiKyDLzfQ4k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f761bd-5c3a-4d2f-8cd9-3e59ce445b1c/1/pOcgX11BJXpruV-QDuwKESPnUWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.36.204.0-46.36.215.255
77.243.128.0/20
81.95.240.0/20
91.197.248.0/22
91.217.201.0/24
109.71.56.0/21
178.251.0.0/21
185.25.140.0/24
185.154.240.0/22
185.235.52.0/22
193.239.96.0/22
195.69.128.0/22
IPv6:
2a02:2339::/36
Signature Algorithm: sha256WithRSAEncryption
7e:20:bf:46:aa:60:7f:41:df:e5:d4:4b:b0:ac:94:5b:cb:12:
ba:a4:23:16:dc:62:70:1a:c9:01:f8:f8:7d:1d:2e:5b:f4:30:
08:39:1b:fa:af:40:f0:7f:30:36:b7:c2:78:b3:88:eb:66:cd:
13:9e:2c:23:06:2e:5d:cb:f7:54:0e:3e:5e:ee:e6:bf:1a:e7:
e6:03:5e:bc:ec:15:45:2e:8b:35:62:48:1d:f3:82:2b:65:c9:
99:2b:1d:bb:1b:0d:00:0a:c5:7b:e2:ad:ca:a5:48:bc:b8:f8:
e8:7c:29:be:a0:3e:53:b2:5f:ea:3d:92:99:18:2e:ee:97:c9:
9f:fc:2e:00:36:02:aa:d3:4b:64:86:47:83:8b:47:c6:e4:3c:
43:8d:9b:80:f1:21:3c:88:3e:47:b4:f1:bf:2f:6b:0e:b5:b8:
8e:ac:a7:99:f8:5f:ab:fc:e2:c9:f2:d7:4d:11:eb:c3:65:e2:
4f:c4:ca:cc:6e:5e:42:be:51:23:29:e0:e4:9a:e5:80:ec:bf:
81:0a:e1:d8:3f:df:8e:20:7f:ed:7e:ab:b5:7e:bb:e4:95:39:
8c:57:94:05:54:f9:21:d6:2a:c4:cd:3a:00:ac:b4:fa:c0:f0:
d8:d3:8b:10:39:41:bf:cb:66:42:08:79:f1:18:a6:44:ab:70:
76:8c:80:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:24 2024 by rpki-client on console-fra.rpki-client.org