Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/bUCz_z18vxcOR9QZ6o2I4T3myy8.roa
File: bUCz_z18vxcOR9QZ6o2I4T3myy8.roa (raw, json)
Hash identifier: zeoz+CvOWvfTjofJbM7qqLK9RqV/mJ83XVrweMkts0o=
Subject key identifier: 6D:40:B3:FF:3D:7C:BF:17:0E:47:D4:19:EA:8D:88:E1:3D:E6:CB:2F
Certificate issuer: /CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Certificate serial: 01856C0104891454DE26A253C50FC39324CB
Authority key identifier: 75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/bUCz_z18vxcOR9QZ6o2I4T3myy8.roa
Signing time: Sun 01 Jan 2023 06:24:44 +0000
ROA not before: Sun 01 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12956
IP address blocks: 80.76.8.0/21 maxlen: 24
193.36.134.0/23 maxlen: 24
213.140.32.0/19 maxlen: 24
5.255.144.0/21 maxlen: 24
185.153.168.0/22 maxlen: 24
84.16.0.0/19 maxlen: 24
94.142.96.0/19 maxlen: 24
188.214.148.0/23 maxlen: 24
89.32.176.0/21 maxlen: 21
103.244.236.0/22 maxlen: 24
176.52.248.0/21 maxlen: 24
185.43.180.0/22 maxlen: 24
81.173.104.0/21 maxlen: 24
5.53.0.0/21 maxlen: 24
185.210.28.0/22 maxlen: 24
45.135.52.0/22 maxlen: 24
185.190.8.0/22 maxlen: 24
2001:1498::/32 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:04:89:14:54:de:26:a2:53:c5:0f:c3:93:24:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75e05bc21b2a6f1033711ffca6491c6c30ce5a4a
Validity
Not Before: Jan 1 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d40b3ff3d7cbf170e47d419ea8d88e13de6cb2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:55:91:3b:2a:b6:2d:ba:c9:36:4c:29:28:e4:
1c:1d:a4:62:c9:c4:fa:c6:01:45:c2:9d:77:c7:62:
60:fb:d7:03:88:49:1b:37:c8:74:76:e2:0e:d8:75:
30:06:c8:a3:08:6f:fd:4d:d2:14:dc:b9:c6:18:b9:
e2:9f:6b:8d:41:d2:da:13:21:1c:6d:31:f5:82:38:
bd:3e:e4:ee:59:c6:3c:47:2c:85:20:c4:23:f1:f3:
8a:5b:b7:df:61:f7:5f:1d:21:90:2e:16:af:22:87:
fe:cc:95:d0:c8:18:ba:4b:82:28:3b:39:f7:37:ef:
32:f5:6c:49:04:3d:cb:b7:12:a8:af:42:53:35:f5:
05:55:3d:2e:cf:07:27:0a:12:42:3b:16:5f:9e:15:
53:41:0c:d7:42:17:3b:ff:97:6e:42:cb:50:29:38:
2f:12:17:78:93:75:c2:06:73:52:96:7f:f6:c7:e1:
7d:3e:81:f6:4a:2c:b3:bf:cf:0c:49:40:ea:ea:53:
5f:06:a1:06:4c:ea:ba:33:f4:0e:ed:c9:7b:42:67:
ae:1d:a3:88:13:ab:04:37:90:c9:e0:07:d2:14:1d:
36:02:10:e6:d7:46:48:9d:b1:81:70:01:89:6a:18:
b0:80:dc:70:20:fe:3c:8f:b5:82:b6:62:dd:df:85:
b1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:40:B3:FF:3D:7C:BF:17:0E:47:D4:19:EA:8D:88:E1:3D:E6:CB:2F
X509v3 Authority Key Identifier:
keyid:75:E0:5B:C2:1B:2A:6F:10:33:71:1F:FC:A6:49:1C:6C:30:CE:5A:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/deBbwhsqbxAzcR_8pkkcbDDOWko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/bUCz_z18vxcOR9QZ6o2I4T3myy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2b4934-4ea2-45c1-ae07-d45ab7df2de1/1/deBbwhsqbxAzcR_8pkkcbDDOWko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.53.0.0/21
5.255.144.0/21
45.135.52.0/22
80.76.8.0/21
81.173.104.0/21
84.16.0.0/19
89.32.176.0/21
94.142.96.0/19
103.244.236.0/22
176.52.248.0/21
185.43.180.0/22
185.153.168.0/22
185.190.8.0/22
185.210.28.0/22
188.214.148.0/23
193.36.134.0/23
213.140.32.0/19
IPv6:
2001:1498::/32
Signature Algorithm: sha256WithRSAEncryption
a0:f8:24:c0:26:96:5f:b0:7c:70:48:b7:21:85:89:80:53:ff:
b7:fc:45:f8:aa:e9:f5:7f:ba:a1:e0:dc:c0:53:d3:c5:f9:2a:
9c:5e:85:42:70:3c:5d:9a:ee:62:76:81:1a:3a:96:a6:1e:c0:
5a:0a:34:39:45:e1:20:47:2b:90:23:c1:b5:d5:80:46:43:60:
5b:be:bc:04:eb:a5:82:37:42:0c:c3:15:7a:b5:a1:8f:4f:6c:
18:56:d3:a4:ee:4b:3f:b9:9e:4c:9e:a0:39:98:92:33:30:bf:
86:e2:8a:58:0e:37:7a:70:71:2c:60:9e:aa:e7:49:8b:b1:a0:
dc:8f:f3:cc:ff:a7:ac:89:8d:fd:7c:cc:30:18:57:0d:f6:d4:
8d:4a:9d:39:3b:7b:39:79:7e:91:52:a9:30:41:ae:14:b7:8d:
10:13:e7:17:fc:87:2c:5e:72:00:97:42:6b:d2:c7:f9:3c:36:
68:57:07:dd:40:7c:0f:f9:a4:ef:d0:83:a8:35:18:69:d9:9c:
35:3a:54:5a:f3:d2:80:67:4c:e0:3f:91:a3:5c:6d:cc:ce:b6:
4f:e5:80:db:c8:cc:b1:d2:88:34:f0:67:db:85:22:a2:93:1b:
7f:82:ba:1f:57:9c:d6:5b:f4:60:17:f9:b3:93:c9:3d:2d:a8:
91:88:a5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org