Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/uEg2wtJRF-Tn5b_SFeon5ke1rD4.roa
File: uEg2wtJRF-Tn5b_SFeon5ke1rD4.roa (raw, json)
Hash identifier: cdZZmsr0GCeoGRzOUt4yTTtJkVBHaWU92//VSgRjHgI=
Subject key identifier: B8:48:36:C2:D2:51:17:E4:E7:E5:BF:D2:15:EA:27:E6:47:B5:AC:3E
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018D603C3AF2B1A113FC90F2F5D83EC2ECBB
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/uEg2wtJRF-Tn5b_SFeon5ke1rD4.roa
Signing time: Wed 31 Jan 2024 15:56:16 +0000
ROA not before: Wed 31 Jan 2024 15:56:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48749
IP address blocks: 80.96.106.0/24 maxlen: 24
80.96.236.0/23 maxlen: 23
81.180.36.0/23 maxlen: 23
81.180.94.0/23 maxlen: 23
81.180.172.0/23 maxlen: 23
81.180.204.0/23 maxlen: 23
81.180.252.0/23 maxlen: 23
81.181.172.0/23 maxlen: 23
85.120.44.0/23 maxlen: 23
85.121.18.0/23 maxlen: 23
85.121.36.0/23 maxlen: 23
85.122.84.0/23 maxlen: 23
194.102.216.0/24 maxlen: 24
217.156.91.0/24 maxlen: 24
217.156.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 26 Feb 2024 13:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:3c:3a:f2:b1:a1:13:fc:90:f2:f5:d8:3e:c2:ec:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 31 15:56:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b84836c2d25117e4e7e5bfd215ea27e647b5ac3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:55:ce:f4:05:81:ce:93:b2:93:37:50:d5:15:
33:91:ca:1c:4a:13:27:41:ef:a7:42:d9:cb:e7:0e:
38:aa:f9:8d:04:fb:3b:c6:cf:ff:0c:ed:85:a5:d2:
57:8d:11:63:6d:e5:7e:a0:5d:28:a2:03:02:30:1b:
0d:d2:26:34:96:58:2b:79:a9:64:d9:51:29:fe:ba:
50:59:e1:c6:7c:f0:c2:e7:31:48:aa:a2:9f:61:b2:
bf:80:a6:b8:86:7a:96:15:cd:3b:33:cf:3f:24:8d:
3f:c6:f8:a6:b1:37:92:cd:09:6a:95:8a:0f:b2:22:
ec:6b:9c:47:85:40:fc:9f:7a:2c:7a:5c:e8:e7:1b:
15:2f:d3:92:ff:61:fc:f4:fb:27:45:fe:ed:b4:d3:
97:a5:34:6d:26:91:10:25:fa:1c:ab:ef:ea:90:d6:
01:73:ad:a6:39:6b:4b:be:17:6b:3e:99:c8:1e:1c:
7e:b5:a3:28:96:06:74:6e:16:7a:ad:7a:4a:6f:08:
69:78:ea:d7:3d:4c:d5:b7:c3:1d:73:da:8e:66:e2:
ed:c8:b6:45:9f:90:82:45:d1:2a:08:14:67:f3:d4:
c0:71:7d:56:0d:69:cc:be:6e:14:fe:02:87:ef:f6:
10:95:bc:ef:72:b5:88:bb:53:d8:4b:f9:de:a8:d6:
3c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:48:36:C2:D2:51:17:E4:E7:E5:BF:D2:15:EA:27:E6:47:B5:AC:3E
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/uEg2wtJRF-Tn5b_SFeon5ke1rD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.96.106.0/24
80.96.236.0/23
81.180.36.0/23
81.180.94.0/23
81.180.172.0/23
81.180.204.0/23
81.180.252.0/23
81.181.172.0/23
85.120.44.0/23
85.121.18.0/23
85.121.36.0/23
85.122.84.0/23
194.102.216.0/24
217.156.91.0/24
217.156.108.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:22:22:37:fe:c2:a7:e8:26:a0:ec:84:c2:c7:84:78:77:da:
1c:bb:ce:fd:0b:c5:a9:0f:cb:4d:f1:38:3d:d3:bb:e1:06:a8:
cf:67:8d:5c:a6:f2:d9:cc:64:a6:7d:03:ad:6c:b4:17:20:f5:
98:d7:78:c8:e7:4b:99:2e:7d:a1:f6:bf:01:1e:4f:da:0a:64:
48:04:24:64:b3:2f:bb:a2:93:c4:1a:b8:e6:b2:d2:d9:b8:7a:
73:0e:e6:0e:4e:ec:79:76:7c:2e:a3:06:f7:53:b8:f7:16:53:
72:26:17:98:69:c6:ac:22:40:81:b5:1f:09:a5:6e:4b:c1:9c:
08:96:63:37:74:e2:2f:ab:42:53:92:a2:65:78:13:b6:49:67:
b6:59:d8:6e:1d:ff:7b:3f:c7:71:c7:e2:9f:a2:18:09:71:cc:
ef:ca:75:b9:7a:69:96:8f:f4:63:2a:17:10:48:cd:4c:1a:90:
43:f2:67:90:8f:6a:3d:23:b1:d5:0a:57:d8:a7:6d:9f:aa:8e:
87:c0:ac:3a:3f:76:9b:bd:c7:1f:10:2c:43:80:9a:bc:1f:d4:
c3:44:fe:27:32:63:dd:97:4a:c4:e8:99:55:a3:96:1c:df:59:
47:40:4b:da:7d:c0:12:ee:93:2a:69:8a:da:5d:70:41:7e:92:
e3:fc:61:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:06 2024 by rpki-client on console-ams.rpki-client.org