Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/UrDk71iko7Hyx3Ucy-0lhQG55jg.roa
File: UrDk71iko7Hyx3Ucy-0lhQG55jg.roa (raw, json)
Hash identifier: H44XYK9cVO0ByA2ZwugtQNpBE5AR+vr2vNoIWEPKZ4U=
Subject key identifier: 52:B0:E4:EF:58:A4:A3:B1:F2:C7:75:1C:CB:ED:25:85:01:B9:E6:38
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 0186CAB128EA23CA16073A015D7C143A162A
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/UrDk71iko7Hyx3Ucy-0lhQG55jg.roa
Signing time: Fri 10 Mar 2023 08:44:13 +0000
ROA not before: Fri 10 Mar 2023 08:44:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48176
IP address blocks: 81.177.228.0/22 maxlen: 22
81.177.240.0/21 maxlen: 21
81.177.248.0/22 maxlen: 22
81.177.252.0/23 maxlen: 23
81.177.184.0/24 maxlen: 24
81.177.188.0/22 maxlen: 22
81.177.198.0/23 maxlen: 23
81.177.195.0/24 maxlen: 24
81.177.200.0/21 maxlen: 21
81.177.200.0/22 maxlen: 22
81.177.226.0/23 maxlen: 23
81.177.224.0/20 maxlen: 20
81.177.224.0/23 maxlen: 23
185.8.20.0/22 maxlen: 22
178.237.176.0/20 maxlen: 20
178.237.176.0/21 maxlen: 21
178.237.176.0/22 maxlen: 22
178.237.184.0/21 maxlen: 21
178.237.180.0/22 maxlen: 22
178.237.190.0/23 maxlen: 23
178.237.188.0/23 maxlen: 23
81.177.56.0/21 maxlen: 21
81.177.56.0/22 maxlen: 22
91.207.136.0/23 maxlen: 23
62.122.240.0/21 maxlen: 21
37.18.152.0/21 maxlen: 21
37.18.156.0/22 maxlen: 22
213.222.240.0/20 maxlen: 20
213.222.240.0/21 maxlen: 21
213.59.150.0/24 maxlen: 24
213.59.148.0/23 maxlen: 23
213.59.146.0/24 maxlen: 24
213.59.154.0/24 maxlen: 24
213.222.248.0/21 maxlen: 21
213.59.186.0/23 maxlen: 23
213.59.186.0/24 maxlen: 24
149.255.24.0/21 maxlen: 21
213.59.190.0/23 maxlen: 23
213.59.188.0/22 maxlen: 22
213.222.224.0/22 maxlen: 22
213.222.224.0/21 maxlen: 21
213.222.232.0/22 maxlen: 22
213.222.232.0/21 maxlen: 21
213.222.236.0/22 maxlen: 22
213.59.144.0/22 maxlen: 22
2a03:aa00::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 15 Mar 2023 15:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ca:b1:28:ea:23:ca:16:07:3a:01:5d:7c:14:3a:16:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Mar 10 08:44:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52b0e4ef58a4a3b1f2c7751ccbed258501b9e638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:7a:3e:62:ec:81:8e:27:70:10:cb:2b:72:
7e:71:0c:f2:9d:6b:9d:09:c2:74:74:c6:9e:65:be:
74:0c:c6:7f:b0:15:82:23:15:a7:fe:10:7b:da:5f:
58:11:c7:42:3c:f1:d2:9f:fc:27:8e:fa:77:29:05:
61:d7:be:70:6b:77:e8:27:94:fd:77:dd:87:e8:2f:
46:bc:1a:bd:4b:2b:bd:8c:a5:67:46:f6:ce:05:9a:
a1:eb:d9:30:3d:9b:73:b8:d9:25:9b:d2:67:b9:49:
46:96:d1:08:92:ca:76:c9:b3:e8:95:6c:b7:15:9b:
d5:54:3f:48:41:f4:42:c2:8f:a0:e4:66:13:37:1c:
d5:67:68:48:70:7d:3a:33:94:67:de:3b:1f:aa:8a:
13:a6:4b:66:bd:25:4d:f4:c1:17:70:a5:c8:73:7c:
0b:20:7d:7d:91:66:a0:b5:04:96:27:f9:29:b9:cf:
05:8d:9e:86:36:ca:bb:09:b0:12:8c:cc:04:2a:d9:
27:02:7e:e8:18:c7:c7:b6:a0:f8:f8:5b:87:f7:d4:
14:53:33:9d:f6:a4:0c:c5:3b:7a:6b:09:28:51:6d:
d8:50:93:3a:6a:7e:0c:dd:89:d8:09:df:e8:bf:99:
92:0d:30:f8:5c:ed:98:aa:c7:67:7b:e0:39:ef:e2:
b9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B0:E4:EF:58:A4:A3:B1:F2:C7:75:1C:CB:ED:25:85:01:B9:E6:38
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/UrDk71iko7Hyx3Ucy-0lhQG55jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.152.0/21
62.122.240.0/21
81.177.56.0/21
81.177.184.0/24
81.177.188.0/22
81.177.195.0/24
81.177.198.0-81.177.207.255
81.177.224.0-81.177.253.255
91.207.136.0/23
149.255.24.0/21
178.237.176.0/20
185.8.20.0/22
213.59.144.0-213.59.150.255
213.59.154.0/24
213.59.186.0-213.59.191.255
213.222.224.0/19
IPv6:
2a03:aa00::/36
Signature Algorithm: sha256WithRSAEncryption
27:70:fa:43:29:84:2c:13:6b:b0:b3:2b:4e:9c:98:d7:81:b3:
89:ea:75:1d:2a:79:5d:2c:b8:ef:87:7e:16:9d:38:56:66:a3:
50:de:68:38:42:5d:00:88:3f:93:5f:6d:fa:c0:e6:6b:85:93:
ea:89:3e:c0:f3:9a:59:81:c2:2f:f6:82:09:5e:b1:1d:06:04:
b4:65:5e:b3:4b:32:b9:b9:77:2e:50:ea:11:bd:a1:8f:de:2e:
37:3e:77:d1:bd:39:5f:89:a5:a4:cb:87:62:53:7e:4a:03:64:
e1:30:3f:06:e4:73:2a:0e:73:25:d5:ae:50:0b:cb:4b:07:df:
83:ea:bd:1b:b1:a3:13:4c:6c:23:05:85:0c:1e:f5:fe:58:ef:
55:13:d6:60:ff:64:51:27:60:53:a4:d7:43:7c:ed:e3:c8:d3:
e0:05:9c:ee:2d:9d:62:59:bd:db:a9:a5:d4:73:ae:3c:49:6a:
95:d9:77:87:e7:30:44:f2:39:ca:01:fa:74:c1:3b:59:f9:54:
b5:f5:b8:f3:6b:e2:09:fd:b8:8a:26:25:b4:8f:93:15:84:86:
50:dd:ac:94:bd:f5:9c:32:d1:bb:6f:99:f5:1b:98:ee:f5:5b:
e2:d0:3e:7a:95:bb:a6:29:84:d5:eb:9b:42:a9:6a:ec:53:f2:
ef:68:c4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:13 2024 by rpki-client on console-ams.rpki-client.org