Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/u7PcrbaSp_DQzMrEFOD5moQvYiI.roa
File: u7PcrbaSp_DQzMrEFOD5moQvYiI.roa (raw, json)
Hash identifier: K8M5fuUfWTx+HUJTeNKyTKtDS1TEeloM7YJvlG+j3AE=
Subject key identifier: BB:B3:DC:AD:B6:92:A7:F0:D0:CC:CA:C4:14:E0:F9:9A:84:2F:62:22
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018CC80202E01DC319ACE90060188613C380
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/u7PcrbaSp_DQzMrEFOD5moQvYiI.roa
Signing time: Tue 02 Jan 2024 02:30:24 +0000
ROA not before: Tue 02 Jan 2024 02:30:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24810
IP address blocks: 89.248.112.0/24 maxlen: 24
89.248.123.0/24 maxlen: 24
89.248.122.0/24 maxlen: 24
87.117.177.0/24 maxlen: 24
87.117.184.0/24 maxlen: 24
87.117.183.0/24 maxlen: 24
87.117.190.0/24 maxlen: 24
87.117.188.0/24 maxlen: 24
81.23.144.0/24 maxlen: 24
81.23.145.0/24 maxlen: 24
87.117.165.0/24 maxlen: 24
87.117.162.0/24 maxlen: 24
87.117.160.0/24 maxlen: 24
87.117.161.0/24 maxlen: 24
87.117.166.0/24 maxlen: 24
87.117.164.0/24 maxlen: 24
87.117.170.0/24 maxlen: 24
87.117.171.0/24 maxlen: 24
87.117.168.0/24 maxlen: 24
87.117.167.0/24 maxlen: 24
81.23.149.0/24 maxlen: 24
81.23.147.0/24 maxlen: 24
81.23.148.0/24 maxlen: 24
81.23.159.0/24 maxlen: 24
81.23.156.0/24 maxlen: 24
81.23.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 07:06:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:02:e0:1d:c3:19:ac:e9:00:60:18:86:13:c3:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 02:30:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbb3dcadb692a7f0d0cccac414e0f99a842f6222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d1:bb:5d:b6:87:46:0c:31:cf:08:6d:5e:61:
8d:3b:e1:87:5b:dc:10:e2:c3:9b:18:7d:db:75:dd:
5e:68:77:73:40:57:72:01:25:a5:4a:99:ce:84:fe:
cb:2d:55:08:a3:8b:5a:ee:ff:62:b2:8c:a6:e1:bf:
61:fe:4d:4d:9f:48:32:2d:02:45:5c:8b:fd:e5:22:
d7:f6:79:b6:c4:0a:e8:c2:22:2d:d6:83:7a:73:64:
3f:30:87:9c:fd:95:bc:77:c0:05:52:e0:53:16:81:
ef:af:91:8a:58:6b:0a:c0:7d:84:d7:38:78:ba:89:
3a:70:6d:10:0f:26:10:7e:b1:59:dc:f7:03:39:48:
f5:20:a5:54:78:b5:c2:7c:08:20:cd:b5:2d:59:c2:
23:a8:92:8c:83:f2:85:17:62:19:9a:97:99:ba:69:
67:79:1c:41:bf:87:97:e6:af:04:6e:47:c8:c3:1f:
c0:ed:fb:3f:9f:11:d8:1f:3f:97:df:73:ce:5b:86:
6e:31:52:b6:d4:a6:ee:80:c1:77:17:98:6d:c1:94:
49:6e:1b:5f:e4:71:d3:74:6c:7d:9f:80:b8:48:34:
b3:ee:bb:53:37:1d:67:8c:4d:a5:57:cf:01:0e:8d:
e5:b0:92:2f:6f:19:25:89:05:d7:15:5d:c7:08:48:
fc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B3:DC:AD:B6:92:A7:F0:D0:CC:CA:C4:14:E0:F9:9A:84:2F:62:22
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/u7PcrbaSp_DQzMrEFOD5moQvYiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.144.0/23
81.23.147.0-81.23.149.255
81.23.156.0/24
81.23.158.0/23
87.117.160.0-87.117.162.255
87.117.164.0-87.117.168.255
87.117.170.0/23
87.117.177.0/24
87.117.183.0-87.117.184.255
87.117.188.0/24
87.117.190.0/24
89.248.112.0/24
89.248.122.0/23
Signature Algorithm: sha256WithRSAEncryption
29:c2:44:2a:73:1b:30:ec:da:62:cc:6d:2e:91:aa:a2:04:94:
8d:ea:c0:ea:43:e2:7b:e2:2c:21:4c:90:80:39:e6:48:73:0d:
8c:0e:4a:43:8f:1f:08:01:02:9b:80:56:61:74:a4:a1:a4:4b:
60:11:71:89:c6:40:f2:40:38:00:27:a4:65:4d:69:08:6f:0c:
07:9c:0f:b2:aa:9b:c2:9e:6d:98:ee:1a:69:c6:b9:37:a6:06:
a3:99:00:b7:c4:99:1a:d7:c9:b3:e6:e2:e5:e7:76:14:88:1c:
b3:d9:db:e5:a3:35:78:f4:db:0b:08:a6:c7:31:d5:fb:9e:aa:
e7:31:8d:2f:dc:20:84:69:0a:27:8b:0b:a9:dd:64:a0:f3:95:
72:cf:97:8a:c4:53:4a:af:da:34:8f:4c:98:34:38:12:7d:a0:
83:ec:63:63:b5:ad:ad:2a:9f:f5:57:d9:fd:eb:40:4c:51:0e:
53:82:2c:10:7f:a1:c5:31:26:d2:e7:5c:54:93:64:78:10:ba:
32:0a:bb:da:36:1e:68:3a:80:a5:c3:56:e3:39:01:90:2d:b3:
69:a4:ee:d3:90:ac:cd:8a:69:73:45:54:52:f6:56:09:32:c6:
5c:9d:12:c5:ee:55:b1:5a:20:fd:2e:84:2b:de:ac:b7:d6:af:
a5:84:27:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:26 2024 by rpki-client on console-ams.rpki-client.org