Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/TUPrI8sOV4vnz-dr0mAQgFBRp4A.roa
File: TUPrI8sOV4vnz-dr0mAQgFBRp4A.roa (raw, json)
Hash identifier: S/Rxtl6VkgNIrke0MRzf9xRi1YAbURSW/CO+29Y1lPQ=
Subject key identifier: 4D:43:EB:23:CB:0E:57:8B:E7:CF:E7:6B:D2:60:10:80:50:51:A7:80
Certificate issuer: /CN=61b534437503668815add93cd17d0ad3e1b1a877
Certificate serial: 01857169C9378E840A0114F396C71EA29350
Authority key identifier: 61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/TUPrI8sOV4vnz-dr0mAQgFBRp4A.roa
Signing time: Mon 02 Jan 2023 07:37:16 +0000
ROA not before: Mon 02 Jan 2023 07:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15670
IP address blocks: 62.177.176.0/20 maxlen: 24
93.125.128.0/17 maxlen: 24
62.177.192.0/18 maxlen: 24
82.204.0.0/18 maxlen: 24
82.204.0.0/17 maxlen: 24
82.204.10.0/24 maxlen: 24
78.40.192.0/21 maxlen: 24
82.204.28.0/22 maxlen: 24
82.204.48.0/20 maxlen: 24
78.27.0.0/18 maxlen: 24
62.177.128.0/17 maxlen: 24
95.36.0.0/16 maxlen: 24
62.177.128.0/24 maxlen: 24
62.177.133.0/24 maxlen: 24
82.204.120.0/22 maxlen: 24
62.177.136.0/22 maxlen: 24
82.204.126.0/24 maxlen: 24
62.177.144.0/24 maxlen: 24
62.177.146.0/23 maxlen: 24
62.177.148.0/24 maxlen: 24
62.177.150.0/23 maxlen: 24
62.177.152.0/21 maxlen: 24
62.177.160.0/21 maxlen: 24
62.177.168.0/24 maxlen: 24
62.177.170.0/23 maxlen: 24
62.177.172.0/22 maxlen: 24
82.204.64.0/19 maxlen: 24
82.204.68.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c9:37:8e:84:0a:01:14:f3:96:c7:1e:a2:93:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b534437503668815add93cd17d0ad3e1b1a877
Validity
Not Before: Jan 2 07:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d43eb23cb0e578be7cfe76bd26010805051a780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:51:12:76:aa:99:73:3b:90:a4:a7:1f:6e:
10:5c:96:32:64:2a:80:52:f2:47:28:da:28:e5:c3:
4c:a4:1d:56:ec:a8:73:5d:69:4f:c9:16:b6:6d:40:
50:a6:93:3d:9c:a3:72:23:41:26:a7:ec:c6:00:03:
c5:40:81:1d:85:44:a0:dd:c6:1a:90:e6:2c:b5:26:
b6:05:c7:2b:6b:e7:25:ec:13:cf:85:d2:9d:be:5b:
21:35:0b:d7:13:fe:87:1b:56:0a:fd:89:18:a7:e2:
65:7f:c3:f7:f5:e8:bb:f2:65:68:7a:a1:76:30:53:
d6:61:6b:ec:4b:a9:6b:0b:90:ed:1f:44:37:ae:de:
63:56:86:ad:74:a2:dc:9b:1d:fa:80:ea:fd:3c:11:
db:d5:57:ba:10:e1:4e:af:db:91:b9:20:aa:ab:32:
b0:d5:fe:ae:6e:1b:1e:02:16:03:9a:d7:89:d5:7b:
93:e4:53:f9:c0:5b:7e:84:78:0b:26:87:2a:4b:58:
6d:e8:fd:60:ca:c2:da:fa:47:0b:d5:4f:66:96:28:
94:d6:5e:b8:d5:8e:49:6b:2b:b3:9d:99:ac:84:59:
71:c2:66:3c:34:85:68:bb:c5:e7:ea:9d:62:66:06:
62:97:b7:64:f9:35:d4:cb:0c:67:bd:19:3b:87:e1:
62:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:43:EB:23:CB:0E:57:8B:E7:CF:E7:6B:D2:60:10:80:50:51:A7:80
X509v3 Authority Key Identifier:
keyid:61:B5:34:43:75:03:66:88:15:AD:D9:3C:D1:7D:0A:D3:E1:B1:A8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbU0Q3UDZogVrdk80X0K0-GxqHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/TUPrI8sOV4vnz-dr0mAQgFBRp4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c1acd6-230a-4e36-a58f-f555e2e68a10/1/YbU0Q3UDZogVrdk80X0K0-GxqHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.177.128.0/17
78.27.0.0/18
78.40.192.0/21
82.204.0.0/17
93.125.128.0/17
95.36.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:03:78:e8:69:10:f2:9a:2a:92:e4:5d:69:9f:8e:db:f4:22:
3e:00:03:7b:c1:46:92:e6:e0:91:c4:5b:bc:8d:6a:43:c4:53:
26:6c:5f:69:9f:ee:d5:8f:6d:e6:73:cc:6c:89:a1:97:61:63:
0a:a3:e5:94:8b:f3:15:18:e6:b6:69:0a:8e:1e:71:51:ca:37:
0c:96:58:56:c9:19:5d:1b:c4:ff:69:47:b7:41:ad:af:2c:d7:
76:2b:e4:9d:62:6a:ea:1a:62:39:ce:fe:65:7f:00:9a:56:d8:
17:d0:89:c2:49:7a:b9:7a:b5:fa:94:e1:11:6c:03:d4:0b:45:
49:1e:9c:f8:be:e7:2e:ba:0b:5c:42:23:1b:75:62:0f:7a:7c:
6a:1a:1c:b8:1f:c3:a4:7d:80:83:27:9f:36:c9:0d:b2:3d:f6:
14:a1:83:d0:4c:f1:2f:2c:f1:12:0f:68:79:29:a6:b1:2c:fb:
7f:d8:0b:f3:7f:62:3f:4b:7a:34:8d:3c:1e:d7:5f:eb:58:17:
18:5f:c0:c1:b2:47:32:e1:a8:f0:d3:0e:eb:23:43:77:8b:6e:
13:38:5e:48:7b:7c:b8:61:ff:17:79:09:8d:3a:36:b9:1d:19:
11:0b:2d:7b:c2:d7:b0:42:9e:8f:83:5e:d3:d5:65:16:69:34:
36:aa:d7:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org