Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/UL7bWdnJeCfVSebJ-A_jJYtuU54.roa
File: UL7bWdnJeCfVSebJ-A_jJYtuU54.roa (raw, json)
Hash identifier: MTDlNM+ET82COb3sc0uNBsh7kU4yUfWqRiVlDrWego0=
Subject key identifier: 50:BE:DB:59:D9:C9:78:27:D5:49:E6:C9:F8:0F:E3:25:8B:6E:53:9E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018C352DAE5B4488238C912A22C81240A480
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/UL7bWdnJeCfVSebJ-A_jJYtuU54.roa
Signing time: Mon 04 Dec 2023 14:13:55 +0000
ROA not before: Mon 04 Dec 2023 14:13:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62206
IP address blocks: 5.181.87.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
195.211.190.0/24 maxlen: 24
45.88.138.0/24 maxlen: 24
45.88.136.0/24 maxlen: 24
185.200.63.0/24 maxlen: 24
185.200.62.0/24 maxlen: 24
194.242.96.0/22 maxlen: 22
194.242.97.0/24 maxlen: 24
193.57.43.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
45.132.181.0/24 maxlen: 24
45.94.168.0/22 maxlen: 22
45.94.170.0/24 maxlen: 24
185.43.248.0/24 maxlen: 24
185.43.251.0/24 maxlen: 24
185.43.249.0/24 maxlen: 24
193.30.243.0/24 maxlen: 24
193.30.242.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
85.209.120.0/22 maxlen: 24
85.209.123.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
45.9.29.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
193.30.240.0/24 maxlen: 24
2a10:dfc0::/29 maxlen: 29
2a07:9200::/29 maxlen: 29
2a11:580::/29 maxlen: 29
2a0c:a580::/29 maxlen: 29
2a01:7120::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Dec 2023 13:06:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:2d:ae:5b:44:88:23:8c:91:2a:22:c8:12:40:a4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 4 14:13:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50bedb59d9c97827d549e6c9f80fe3258b6e539e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d9:3a:aa:a3:d8:d6:a4:31:f9:da:78:93:c8:
39:f1:69:25:50:fa:d1:f2:ca:06:14:d7:0d:95:35:
fb:b3:3f:f3:ca:3e:34:96:62:ac:7a:df:30:58:af:
81:fe:4c:76:79:c7:69:b7:05:ad:51:a3:6c:f3:af:
85:2f:52:f7:4b:ac:13:66:10:d7:f2:1b:70:29:d0:
3c:b9:68:a1:c6:00:40:9f:f2:c8:65:57:24:49:d0:
50:d2:45:43:7e:70:ab:b5:ee:b2:a5:75:4f:00:1d:
20:0a:f9:17:a3:e8:b5:8d:11:32:02:33:8f:6c:99:
c2:d2:7c:43:56:8e:53:80:9c:41:6d:d5:c9:3b:4d:
ce:08:ca:5a:07:6e:cb:73:b4:7f:e5:9c:7b:26:0e:
6f:14:ea:30:a9:3c:0b:e7:3b:bd:ed:ed:d2:61:a8:
9e:9a:20:de:05:7b:e6:46:2b:8c:df:c7:8a:8d:e8:
15:88:15:20:62:c9:99:15:8d:94:b4:b9:dc:4c:62:
09:af:2a:49:33:d5:42:a5:27:be:ef:d5:f2:03:22:
23:c6:56:ac:96:71:9f:30:bd:f8:71:10:02:d7:75:
c4:06:ef:61:0b:65:c3:7b:be:14:5a:d4:94:9c:8b:
08:21:00:dd:f3:d6:8f:fe:52:c4:aa:cd:ea:b5:54:
45:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BE:DB:59:D9:C9:78:27:D5:49:E6:C9:F8:0F:E3:25:8B:6E:53:9E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/UL7bWdnJeCfVSebJ-A_jJYtuU54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.87.0/24
45.9.29.0/24
45.88.136.0/24
45.88.138.0/24
45.94.168.0/22
45.132.181.0-45.132.183.255
45.144.212.0/24
77.83.37.0/24
77.83.39.0/24
85.209.120.0/22
185.43.248.0/23
185.43.251.0/24
185.200.62.0/23
193.30.240.0/24
193.30.242.0/23
193.57.43.0/24
194.242.96.0/22
195.177.92.0-195.177.94.255
195.211.188.0/22
IPv6:
2a01:7120::/32
2a07:9200::/29
2a0c:a580::/29
2a10:dfc0::/29
2a11:580::/29
Signature Algorithm: sha256WithRSAEncryption
ad:a4:d1:39:a1:a1:a6:ef:53:08:03:6c:a8:33:fc:db:49:a1:
40:a3:6c:dc:ad:4f:37:4e:1b:77:81:fb:39:da:78:a9:5f:e0:
5d:00:4c:60:3a:bb:65:5b:41:6d:d5:80:a9:c0:f3:c8:83:9e:
09:11:94:9c:63:41:04:65:e8:74:08:e7:fc:b4:4a:fa:92:42:
c2:68:27:c2:77:99:68:8b:88:f3:91:3d:da:0b:45:7e:c9:46:
c7:45:02:e8:a7:d4:51:30:78:fb:03:d4:53:03:86:c4:c4:70:
26:a8:2b:59:a9:96:7c:86:f0:84:72:cd:f8:63:5d:c8:f5:18:
d7:bc:ca:2c:70:d0:b8:dc:13:e3:c4:c4:b7:c4:5f:0d:11:98:
5f:08:a4:87:0b:d4:6d:0f:3f:6d:f1:b0:75:80:86:45:b7:96:
26:d4:ee:ca:f9:80:aa:f8:e8:ba:51:b5:ff:fd:a8:07:6a:d2:
39:37:bc:a9:11:72:c6:41:bf:44:cb:77:21:08:61:af:8f:d5:
8b:c2:65:ad:e1:ee:ff:fa:85:68:6c:ac:b8:42:a1:ce:c6:b4:
1b:15:4d:9e:54:6d:19:3d:3d:11:b4:c7:64:8f:d6:d2:fc:35:
17:11:f8:09:99:15:c8:f7:25:58:5e:6e:18:a3:3e:48:52:9a:
83:ab:67:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org