Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Uez6JNWnj0IKhANWEuBc_JJR0C0.roa
File: Uez6JNWnj0IKhANWEuBc_JJR0C0.roa (raw, json)
Hash identifier: gbbKxvKagajDO40dH9LbEsb1uaJ9EmA9fuMhd7Zaf7Q=
Subject key identifier: 51:EC:FA:24:D5:A7:8F:42:0A:84:03:56:12:E0:5C:FC:92:51:D0:2D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018A69A6B6B967B1E08F618D4CB499DFBD7B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Uez6JNWnj0IKhANWEuBc_JJR0C0.roa
Signing time: Wed 06 Sep 2023 08:40:47 +0000
ROA not before: Wed 06 Sep 2023 08:40:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 217.156.14.0/24 maxlen: 24
193.231.226.0/24 maxlen: 24
193.231.233.0/24 maxlen: 24
193.231.236.0/24 maxlen: 24
193.231.238.0/24 maxlen: 24
217.156.41.0/24 maxlen: 24
81.181.112.0/24 maxlen: 24
193.231.252.0/24 maxlen: 24
80.96.219.0/24 maxlen: 24
193.231.184.0/24 maxlen: 24
81.181.64.0/24 maxlen: 24
193.231.194.0/24 maxlen: 24
194.102.134.0/24 maxlen: 24
193.230.158.0/24 maxlen: 24
80.97.149.0/24 maxlen: 24
80.97.147.0/24 maxlen: 24
80.97.148.0/24 maxlen: 24
81.180.27.0/24 maxlen: 24
81.181.128.0/24 maxlen: 24
194.102.98.0/24 maxlen: 24
194.102.106.0/23 maxlen: 23
217.156.92.0/24 maxlen: 24
81.181.167.0/24 maxlen: 24
80.96.69.0/24 maxlen: 24
80.96.67.0/24 maxlen: 24
80.96.72.0/24 maxlen: 24
80.96.82.0/24 maxlen: 24
80.96.79.0/24 maxlen: 24
80.96.12.0/24 maxlen: 24
81.181.246.0/24 maxlen: 24
193.230.217.0/24 maxlen: 24
193.230.229.0/24 maxlen: 24
194.102.229.0/24 maxlen: 24
80.96.43.0/24 maxlen: 24
80.96.51.0/24 maxlen: 24
80.96.47.0/24 maxlen: 24
193.231.108.0/24 maxlen: 24
193.226.116.0/24 maxlen: 24
193.226.125.0/24 maxlen: 24
193.226.127.0/24 maxlen: 24
85.120.20.0/24 maxlen: 24
85.120.23.0/24 maxlen: 24
193.231.75.0/24 maxlen: 24
194.153.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Oct 2023 17:57:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:a6:b6:b9:67:b1:e0:8f:61:8d:4c:b4:99:df:bd:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Sep 6 08:40:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51ecfa24d5a78f420a84035612e05cfc9251d02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1e:a0:d7:4f:75:4f:6c:83:9a:03:aa:0c:5d:
40:68:76:09:1b:21:29:23:4b:e2:58:46:ae:36:60:
4f:af:22:49:31:21:87:73:7f:b9:95:f7:a5:a8:b7:
9c:7c:64:75:c4:f9:80:85:c4:c9:62:66:40:a5:c4:
ba:47:c8:07:ab:0d:bc:25:ac:3a:51:05:bd:80:a3:
18:2d:4f:16:6b:97:3e:70:2f:f0:90:da:73:9d:c7:
1b:92:52:08:b7:a2:7c:d4:78:5b:15:d0:4e:48:a6:
db:52:0e:30:0d:ae:c8:c6:3b:33:81:06:f0:50:05:
36:e5:e0:27:ec:2d:ae:85:fd:f0:bb:9f:10:43:1d:
12:6f:86:b3:5c:43:c2:6e:41:cc:85:01:1c:ca:07:
c2:75:b4:67:ec:9e:cd:db:c0:6a:8e:b3:51:d1:94:
60:e6:c8:c5:c8:7a:50:08:6b:fc:45:2e:81:f4:5c:
7e:6f:6d:3a:c5:3a:19:1a:bb:d6:31:36:96:3d:83:
49:c0:cb:2a:59:5b:23:a0:b7:92:4a:6e:d9:12:6b:
e3:1c:56:9b:82:90:64:2d:4d:68:a8:ba:fe:72:ac:
a7:e2:b3:5b:3b:07:ae:5f:fb:48:41:f8:1e:f7:d1:
02:6c:f5:37:bd:4f:d5:76:75:82:2f:a3:7a:1c:de:
6f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EC:FA:24:D5:A7:8F:42:0A:84:03:56:12:E0:5C:FC:92:51:D0:2D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/Uez6JNWnj0IKhANWEuBc_JJR0C0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.12.0/24
80.96.43.0/24
80.96.47.0/24
80.96.51.0/24
80.96.67.0/24
80.96.69.0/24
80.96.72.0/24
80.96.79.0/24
80.96.82.0/24
80.96.219.0/24
80.97.147.0-80.97.149.255
81.180.27.0/24
81.181.64.0/24
81.181.112.0/24
81.181.128.0/24
81.181.167.0/24
81.181.246.0/24
85.120.20.0/24
85.120.23.0/24
193.226.116.0/24
193.226.125.0/24
193.226.127.0/24
193.230.158.0/24
193.230.217.0/24
193.230.229.0/24
193.231.75.0/24
193.231.108.0/24
193.231.184.0/24
193.231.194.0/24
193.231.226.0/24
193.231.233.0/24
193.231.236.0/24
193.231.238.0/24
193.231.252.0/24
194.102.98.0/24
194.102.106.0/23
194.102.134.0/24
194.102.229.0/24
194.153.224.0/24
217.156.14.0/24
217.156.41.0/24
217.156.92.0/24
Signature Algorithm: sha256WithRSAEncryption
07:82:ae:26:cc:df:7b:96:a0:f8:8a:6b:37:1d:bd:a7:fb:41:
49:44:70:cf:cc:6b:b3:68:45:7c:16:38:3d:46:d7:8e:6b:b6:
dd:e3:86:50:b1:ef:65:f1:0c:07:94:a1:99:b1:a9:b8:3b:53:
cf:17:38:6d:f0:0e:fb:b2:37:da:25:95:14:70:a9:a3:d2:43:
16:dd:69:9d:c3:f1:0e:b7:82:22:f7:2a:75:a7:37:e1:d6:bb:
c5:c3:51:e2:10:9d:93:55:a2:05:58:21:c6:88:85:30:47:f1:
50:b9:75:27:05:b7:b5:59:9b:bd:3f:22:44:fc:69:79:fe:c6:
33:d8:ff:b6:29:53:84:60:bf:bc:01:8e:1b:33:6d:85:3f:62:
24:14:1e:96:ce:8f:4b:8e:9d:e5:58:2c:ba:6b:92:1a:70:1f:
3c:9e:a8:7c:7b:bf:5e:a2:93:06:a1:fb:0c:9b:83:78:ed:3a:
b9:59:4b:ab:49:e8:aa:db:1a:fe:0b:96:cb:78:8a:ee:9a:a8:
37:37:d3:b0:8e:a7:48:07:f2:fa:39:83:62:f8:84:7a:d2:7e:
a2:22:b7:f9:53:60:16:c1:72:9c:bc:24:c9:28:4c:da:5b:65:
35:49:2f:73:38:f7:ce:ed:23:ee:bc:5d:3a:b8:1c:b5:2a:75:
28:d4:bb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:05 2024 by rpki-client on console-ams.rpki-client.org