Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ujwey0lKjq7fTA9roc2OsnlPv7s.roa
File: ujwey0lKjq7fTA9roc2OsnlPv7s.roa (raw, json)
Hash identifier: ErGi7/GQSAOigfJkUFkMW77RqkRK3xX8LKNRadC0CNI=
Subject key identifier: BA:3C:1E:CB:49:4A:8E:AE:DF:4C:0F:6B:A1:CD:8E:B2:79:4F:BF:BB
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018C91599CA99FD7E3C147617FB2D4BA7C4F
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ujwey0lKjq7fTA9roc2OsnlPv7s.roa
Signing time: Fri 22 Dec 2023 11:46:58 +0000
ROA not before: Fri 22 Dec 2023 11:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
185.208.211.0/24 maxlen: 24
195.88.226.0/24 maxlen: 24
195.88.227.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.144.246.0/24 maxlen: 24
195.26.6.0/24 maxlen: 24
195.26.7.0/24 maxlen: 24
45.130.53.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:25::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 22 Dec 2023 13:03:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:59:9c:a9:9f:d7:e3:c1:47:61:7f:b2:d4:ba:7c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 22 11:46:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba3c1ecb494a8eaedf4c0f6ba1cd8eb2794fbfbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:ab:90:91:51:f3:b7:50:0a:74:bd:33:0a:
cf:46:92:35:de:0f:4b:17:16:01:9e:db:c4:0a:64:
06:86:dc:14:22:0c:eb:26:bd:b3:8c:d4:5d:4b:81:
fe:42:7d:41:14:2f:44:ed:41:ce:cb:da:a3:7d:4b:
17:f2:35:4e:d7:52:26:2f:5c:23:2c:52:4d:05:1c:
d9:b7:8a:be:e9:eb:32:0c:2c:88:20:78:d5:ff:2c:
2f:e5:bf:a9:43:ef:57:e7:f4:d9:da:a4:d1:3b:07:
96:16:b1:f8:d2:f8:d3:e5:f4:6d:b8:e8:dd:a5:8a:
f5:02:56:05:73:d8:58:6f:c3:92:16:4d:98:32:ec:
07:d6:b7:92:21:72:4b:c7:05:51:ad:df:63:21:d5:
84:45:5a:d9:9f:eb:1a:2c:39:aa:f2:99:de:01:8b:
44:3e:5d:c0:a8:a0:d7:0f:f5:28:51:93:fc:d9:aa:
62:a8:f4:8c:ed:9d:49:f5:c4:c8:2a:e0:ae:28:2c:
b7:a6:25:49:c3:79:25:6e:0c:18:3a:35:2e:42:8f:
61:6c:4b:2c:d4:08:5c:6f:af:85:d8:78:e7:dd:ae:
ca:d1:31:69:52:7f:21:5f:ab:30:25:76:e2:cc:33:
ea:df:8e:c4:ec:fd:bd:68:71:94:3e:b1:62:3b:2c:
05:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3C:1E:CB:49:4A:8E:AE:DF:4C:0F:6B:A1:CD:8E:B2:79:4F:BF:BB
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ujwey0lKjq7fTA9roc2OsnlPv7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.53.0/24
45.144.244.0-45.144.246.255
45.151.156.0-45.151.158.255
185.208.208.0/22
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.6.0/23
195.88.226.0/23
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:25::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
93:58:90:e6:33:4f:bc:e7:08:c1:48:bc:9b:0f:9c:80:84:3b:
9b:2f:e6:d0:38:c2:85:23:21:bd:04:c5:21:92:0d:62:ce:ae:
4e:30:45:f0:50:50:99:5e:92:15:4d:c0:c8:da:a6:c7:b3:b9:
54:10:3c:80:f1:6a:95:cb:a5:46:41:47:21:b9:e4:31:ae:3d:
07:2a:5f:19:42:89:80:73:56:b0:f2:a3:5c:b3:b6:b1:75:49:
00:7c:44:d7:e1:50:f1:0d:f6:15:ce:47:fd:14:65:ff:13:b2:
06:1a:81:1a:b3:03:f8:38:43:cb:0b:49:7a:02:af:ed:94:21:
c3:cb:56:c5:68:7f:0e:62:51:e6:c8:8d:7c:04:aa:dd:c6:a3:
a8:b6:8b:e9:b2:f8:76:58:85:5f:4d:64:cc:62:03:99:90:31:
94:af:6e:11:f7:cf:3e:26:77:73:7a:42:64:e6:c7:ed:58:08:
0f:00:5e:68:94:10:d7:26:cf:01:cd:5a:9b:06:10:8b:11:91:
b8:98:7b:af:f3:5b:7c:e1:0e:86:85:73:a8:7f:b9:ca:2f:e6:
5d:32:d7:22:77:ab:44:c8:fa:c6:bc:70:72:7d:63:f0:c8:f5:
f8:68:30:4e:2c:f7:f0:a7:91:1a:03:ef:2d:df:fc:b2:ed:d8:
d8:77:42:07
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:26 2024 by rpki-client on console-fra.rpki-client.org