Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/UE2U8xY5ezVih82kPpPF_rA1hmw.roa
File: UE2U8xY5ezVih82kPpPF_rA1hmw.roa (raw, json)
Hash identifier: Nz1u4pZAMO5w8ocJcf0IaSuYMsMHTRtiXtOv76hIBF0=
Subject key identifier: 50:4D:94:F3:16:39:7B:35:62:87:CD:A4:3E:93:C5:FE:B0:35:86:6C
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 018BB5DC97186461F189CC4CF6A45A12F9C0
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/UE2U8xY5ezVih82kPpPF_rA1hmw.roa
Signing time: Thu 09 Nov 2023 20:53:34 +0000
ROA not before: Thu 09 Nov 2023 20:53:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29262
IP address blocks: 62.182.35.0/24 maxlen: 24
62.182.34.0/24 maxlen: 24
62.182.33.0/24 maxlen: 24
62.182.32.0/24 maxlen: 24
193.38.44.0/23 maxlen: 23
193.38.46.0/23 maxlen: 23
194.56.186.0/23 maxlen: 23
85.235.74.0/23 maxlen: 23
85.235.72.0/23 maxlen: 23
139.28.35.0/24 maxlen: 24
139.28.34.0/24 maxlen: 24
139.28.33.0/24 maxlen: 24
139.28.32.0/24 maxlen: 24
194.169.94.0/23 maxlen: 23
194.169.92.0/23 maxlen: 23
185.254.54.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
141.98.51.0/24 maxlen: 24
141.98.50.0/24 maxlen: 24
141.98.49.0/24 maxlen: 24
141.98.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b5:dc:97:18:64:61:f1:89:cc:4c:f6:a4:5a:12:f9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Nov 9 20:53:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=504d94f316397b356287cda43e93c5feb035866c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a4:3f:06:bb:ea:1d:3c:47:66:bb:6a:48:c2:
1b:4a:35:ef:5c:a7:37:79:67:1b:2e:7a:05:40:72:
7b:d2:c0:38:d7:62:32:68:de:8b:d7:22:32:27:96:
9b:33:55:77:63:de:fe:92:0f:b3:5b:8a:12:90:fe:
51:ab:14:45:84:e4:1c:da:8b:f4:d3:ee:1f:c9:2b:
7e:54:a7:12:b3:b9:89:37:ea:92:5f:95:0e:67:be:
ff:d7:fc:01:28:76:69:a6:68:d8:7f:45:73:61:37:
cb:21:7d:8a:97:42:76:cb:0b:63:ea:d2:3a:39:65:
e3:ff:fb:23:7e:ba:e5:dc:e5:83:b7:aa:23:0c:c8:
92:b4:87:05:96:d4:fa:44:d2:f3:db:44:cc:6a:0c:
a5:9f:3e:ec:d0:29:08:60:64:ae:fe:15:61:6a:9d:
ad:f3:ec:5d:77:3d:2c:89:ca:15:ec:30:f2:85:85:
66:92:64:70:64:9d:01:67:ca:84:68:f5:6c:48:9f:
18:bb:42:57:1a:97:98:2f:c9:df:bf:b8:63:01:20:
4f:b7:2d:f5:8c:ae:7d:71:76:f6:5e:93:35:03:49:
32:f1:ff:1a:48:23:c3:7d:3c:b7:e7:28:b2:53:16:
e6:40:70:1c:ca:b7:c2:90:f8:18:16:66:d1:02:67:
55:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:4D:94:F3:16:39:7B:35:62:87:CD:A4:3E:93:C5:FE:B0:35:86:6C
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/UE2U8xY5ezVih82kPpPF_rA1hmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.32.0/22
85.235.72.0/22
139.28.32.0/22
141.98.48.0/22
185.254.54.0/23
193.38.44.0/22
194.56.186.0/23
194.169.92.0/22
Signature Algorithm: sha256WithRSAEncryption
65:a8:7c:22:54:a2:79:3b:90:45:64:cf:49:57:73:7f:02:98:
82:7b:de:ad:e9:a3:a1:d5:1a:14:0f:30:87:7e:6a:35:8b:b9:
0e:97:a3:e7:3d:0b:41:ff:40:3f:3b:e9:26:fe:90:23:e9:e5:
3e:7a:f6:d9:30:42:14:c5:33:37:bf:3f:36:4e:ef:3f:80:91:
13:dc:4b:8d:5a:90:fe:60:0b:21:f5:14:0e:d4:11:a3:65:cc:
38:80:8d:6a:38:86:19:48:4d:14:18:4c:81:ee:dd:1f:ab:95:
8b:67:fc:a6:86:a3:2d:81:08:a4:01:e9:0a:49:29:bf:8e:80:
a2:05:e0:cb:84:24:84:e3:e5:ad:91:69:97:4e:60:0e:7d:92:
05:33:55:66:76:4b:37:c6:36:3c:4d:b2:9b:25:2e:be:fe:c6:
d7:6a:ab:45:b5:55:42:5c:0b:1a:99:f5:e6:59:9f:e4:85:86:
10:fc:6e:2d:63:01:3b:59:2f:89:14:64:9a:84:c8:f5:97:e8:
ec:76:e0:27:16:94:9e:6d:4b:5f:5d:66:00:40:f3:8f:2a:07:
48:23:0a:66:5f:91:0b:2d:e1:67:56:76:c1:05:91:3d:2b:a3:
b1:31:e1:fb:b6:2e:2b:6f:c5:1a:dc:45:57:1f:07:9e:62:c6:
26:dc:33:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:49 2024 by rpki-client on console-ams.rpki-client.org