Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/u-iWDbaNqkbWLfdN3ihuMWrnDiA.roa
File: u-iWDbaNqkbWLfdN3ihuMWrnDiA.roa (raw, json)
Hash identifier: vcRkmCzzQwBorPesbqy5IUMYos8jcaBEVViUAyCLsXY=
Subject key identifier: BB:E8:96:0D:B6:8D:AA:46:D6:2D:F7:4D:DE:28:6E:31:6A:E7:0E:20
Certificate issuer: /CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Certificate serial: 018E56B15190A5A2E20BC94C5A28997473C5
Authority key identifier: AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/u-iWDbaNqkbWLfdN3ihuMWrnDiA.roa
Signing time: Tue 19 Mar 2024 12:30:45 +0000
ROA not before: Tue 19 Mar 2024 12:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25400
IP address blocks: 46.212.0.0/20 maxlen: 20
46.212.16.0/20 maxlen: 20
46.212.48.0/20 maxlen: 20
46.212.64.0/21 maxlen: 21
46.212.72.0/21 maxlen: 21
46.212.80.0/21 maxlen: 21
46.212.88.0/21 maxlen: 21
80.239.0.0/17 maxlen: 17
84.210.128.0/20 maxlen: 20
84.213.128.0/20 maxlen: 20
84.213.144.0/20 maxlen: 20
84.214.0.0/20 maxlen: 20
84.214.16.0/20 maxlen: 20
84.214.32.0/20 maxlen: 20
84.214.114.0/24 maxlen: 24
84.214.192.0/24 maxlen: 24
84.214.193.0/24 maxlen: 24
188.124.145.0/24 maxlen: 24
188.126.197.0/24 maxlen: 24
188.126.200.0/21 maxlen: 21
2a02:228::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 25 Mar 2024 13:57:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:56:b1:51:90:a5:a2:e2:0b:c9:4c:5a:28:99:74:73:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad243dcff0cb38211f7fe7db3f913169b44cf456
Validity
Not Before: Mar 19 12:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbe8960db68daa46d62df74dde286e316ae70e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:02:a0:9f:41:4e:e7:29:b4:9e:df:6b:98:9e:
e6:7f:7f:8c:28:e9:f5:05:fe:d8:59:34:10:f3:ae:
8a:cb:44:12:a7:2a:48:a1:eb:c3:42:e3:3e:6b:28:
ff:c9:fa:fe:f0:9f:92:05:05:6f:47:0e:5f:80:c8:
8e:08:67:90:5e:46:9b:14:4b:53:4c:c7:ab:1e:6f:
ef:05:cc:72:be:4e:cd:63:a9:51:48:0e:5f:c4:67:
1b:04:74:a6:2a:bb:ca:ae:de:c3:96:e5:2b:fc:06:
77:18:72:2f:3b:a5:24:b6:d1:71:c9:98:36:c2:86:
7f:d2:30:22:9f:91:20:73:27:9f:53:d5:d5:03:b4:
7f:31:85:01:7d:22:af:0a:df:03:07:68:51:b1:ec:
fb:23:4d:c9:a3:5e:e1:97:7e:ed:7a:e1:6f:9a:6c:
2b:cf:12:3b:c9:64:6c:95:e3:ef:31:df:7a:f6:46:
d3:3a:eb:b2:6c:d3:2a:12:e3:f8:10:99:0b:7a:69:
36:29:b8:0b:0b:f4:fc:0a:b3:a5:c4:45:db:2b:f7:
8d:6f:16:3b:70:53:76:10:99:26:12:c1:a3:be:cd:
76:6c:d8:18:4a:c1:42:ce:ac:27:c2:02:4a:66:a4:
ea:d6:57:7c:72:86:8a:f2:8c:19:3d:c6:76:36:e2:
4d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E8:96:0D:B6:8D:AA:46:D6:2D:F7:4D:DE:28:6E:31:6A:E7:0E:20
X509v3 Authority Key Identifier:
keyid:AD:24:3D:CF:F0:CB:38:21:1F:7F:E7:DB:3F:91:31:69:B4:4C:F4:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSQ9z_DLOCEff-fbP5ExabRM9FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/u-iWDbaNqkbWLfdN3ihuMWrnDiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a5d27b-26c0-4eb3-89bc-b9f298a798e4/1/rSQ9z_DLOCEff-fbP5ExabRM9FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.212.0.0/19
46.212.48.0-46.212.95.255
80.239.0.0/17
84.210.128.0/20
84.213.128.0/19
84.214.0.0-84.214.47.255
84.214.114.0/24
84.214.192.0/23
188.124.145.0/24
188.126.197.0/24
188.126.200.0/21
IPv6:
2a02:228::/29
Signature Algorithm: sha256WithRSAEncryption
7b:77:41:f3:53:bd:f4:87:0c:ef:ba:a4:56:22:15:09:5b:8e:
53:0c:be:02:86:0d:da:31:3c:8a:95:cb:82:54:20:37:88:55:
fa:ae:58:b8:f2:0d:aa:c0:1f:1c:64:a3:0f:8b:f0:c1:38:dd:
79:c5:de:4c:c0:89:4c:2e:c7:35:29:75:25:e7:0f:9f:b4:ff:
2f:2b:e6:09:28:f3:0f:41:b2:1d:a0:50:32:d8:fb:0c:58:78:
ba:dd:4c:01:90:49:59:86:ba:9f:50:3b:c5:7f:be:11:27:58:
25:a7:25:dd:06:cb:cf:d5:e3:c1:b5:09:ab:7b:48:1b:ab:ff:
60:00:f7:8e:7e:22:9b:a5:49:65:6c:03:b2:94:38:9b:81:b9:
38:1d:00:3c:40:fb:64:93:23:57:f3:73:93:d9:0b:6e:d2:55:
a9:e5:f6:1a:ea:dd:64:28:de:ac:55:35:9a:be:ae:2f:d4:9d:
ad:95:1a:57:a8:29:4f:c4:83:f7:19:cd:16:6a:aa:4e:02:cf:
51:f5:ca:aa:de:1f:ad:37:ef:ad:db:dd:ac:e0:05:8b:8f:c0:
ab:11:ed:7b:64:01:08:98:9c:e3:13:c1:4f:f0:ff:d6:15:46:
71:c0:4a:6b:8f:a9:0e:12:1e:b2:56:84:65:39:90:da:ad:35:
70:cc:7b:a7
-----BEGIN CERTIFICATE-----
MIIFVzCCBD+gAwIBAgISAY5WsVGQpaLiC8lMWiiZdHPFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMjQzZGNmZjBjYjM4MjExZjdmZTdkYjNmOTEzMTY5YjQ0
Y2Y0NTYwHhcNMjQwMzE5MTIzMDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmU4OTYwZGI2OGRhYTQ2ZDYyZGY3NGRkZTI4NmUzMTZhZTcwZTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQKgn0FO5ym0nt9rmJ7mf3+MKOn1
Bf7YWTQQ866Ky0QSpypIoevDQuM+ayj/yfr+8J+SBQVvRw5fgMiOCGeQXkabFEtT
TMerHm/vBcxyvk7NY6lRSA5fxGcbBHSmKrvKrt7DluUr/AZ3GHIvO6UkttFxyZg2
woZ/0jAin5EgcyefU9XVA7R/MYUBfSKvCt8DB2hRsez7I03Jo17hl37teuFvmmwr
zxI7yWRslePvMd969kbTOuuybNMqEuP4EJkLemk2KbgLC/T8CrOlxEXbK/eNbxY7
cFN2EJkmEsGjvs12bNgYSsFCzqwnwgJKZqTq1ld8coaK8owZPcZ2NuJNhwIDAQAB
o4ICYzCCAl8wHQYDVR0OBBYEFLvolg22japG1i33Td4objFq5w4gMB8GA1UdIwQY
MBaAFK0kPc/wyzghH3/n2z+RMWm0TPRWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMt
YjlmMjk4YTc5OGU0LzEvdS1pV0RiYU5xa2JXTGZkTjNpaHVNV3JuRGlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNWQyN2ItMjZjMC00ZWIzLTg5YmMtYjlmMjk4YTc5OGU0
LzEvclNROXpfRExPQ0VmZi1mYlA1RXhhYlJNOUZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBXBAIAATBRAwQFLtQAMAwD
BAQu1DADBAUu1EADBAdQ7wADBARU0oADBAVU1YAwCwMDAVTWAwQEVNYgAwQAVNZy
AwQBVNbAAwQAvHyRAwQAvH7FAwQDvH7IMA0EAgACMAcDBQMqAgIoMA0GCSqGSIb3
DQEBCwUAA4IBAQB7d0HzU730hwzvuqRWIhUJW45TDL4Chg3aMTyKlcuCVCA3iFX6
rli48g2qwB8cZKMPi/DBON15xd5MwIlMLsc1KXUl5w+ftP8vK+YJKPMPQbIdoFAy
2PsMWHi63UwBkElZhrqfUDvFf74RJ1glpyXdBsvP1ePBtQmre0gbq/9gAPeOfiKb
pUllbAOylDibgbk4HQA8QPtkkyNX83OT2Qtu0lWp5fYa6t1kKN6sVTWavq4v1J2t
lRpXqClPxIP3Gc0WaqpOAs9R9cqq3h+tN++t292s4AWLj8CrEe17ZAEImJzjE8FP
8P/WFUZxwEprj6kOEh6yVoRlOZDarTVwzHun
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org