Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/UTDeZDOzazev0cpJDiZXwKKEIqo.roa
File: UTDeZDOzazev0cpJDiZXwKKEIqo.roa (raw, json)
Hash identifier: 4C1s6Zl9V2WzbVWqKwJW4qquuM7QfLSuPKHlJM2hTg8=
Subject key identifier: 51:30:DE:64:33:B3:6B:37:AF:D1:CA:49:0E:26:57:C0:A2:84:22:AA
Certificate issuer: /CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Certificate serial: 018CC2DB3C8C50D8692E918A819EB83E4E86
Authority key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/UTDeZDOzazev0cpJDiZXwKKEIqo.roa
Signing time: Mon 01 Jan 2024 02:29:56 +0000
ROA not before: Mon 01 Jan 2024 02:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8758
IP address blocks: 185.104.84.0/22 maxlen: 24
146.185.64.0/19 maxlen: 24
94.46.188.0/22 maxlen: 22
31.207.52.0/22 maxlen: 22
31.207.60.0/22 maxlen: 22
185.63.64.0/22 maxlen: 24
2a04:f340::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 13 May 2024 10:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3c:8c:50:d8:69:2e:91:8a:81:9e:b8:3e:4e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Validity
Not Before: Jan 1 02:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5130de6433b36b37afd1ca490e2657c0a28422aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9d:60:b8:e4:21:7a:3e:1b:0b:e4:b2:9d:a3:
c8:1b:09:b7:63:30:84:9f:e0:41:9e:27:31:de:62:
9d:13:9b:62:a9:0d:59:61:71:57:3a:bd:4d:10:8d:
d3:17:3a:aa:24:7f:17:87:49:bd:cd:de:e3:61:5f:
6d:99:f9:b4:55:e4:94:33:bc:2c:8b:e4:b6:4f:f0:
6a:57:8c:02:9f:bc:2e:8c:46:f9:e2:6b:3c:f9:1e:
4f:b4:39:a0:14:67:77:c0:c4:6a:7b:10:c6:22:e2:
d4:7c:11:91:9c:c1:0b:92:44:23:77:f2:fe:59:c3:
b5:05:f9:c8:15:79:dd:1d:6f:a7:44:0e:89:0f:cc:
98:25:2e:f4:63:a6:fb:99:2d:bf:ea:4e:b2:69:61:
ec:36:42:d7:1a:de:a5:85:2a:3a:65:69:25:57:ed:
7f:f6:df:c5:b6:1b:b8:1e:52:f2:5a:c4:7c:69:88:
92:da:82:00:ed:1f:b6:54:3e:bf:32:35:05:84:16:
b7:e8:dd:d0:49:1f:a6:f7:f6:81:b5:8a:18:46:73:
67:ff:72:62:d9:d4:d1:94:c7:ca:5f:cd:48:d4:06:
7c:79:2e:19:5a:43:f2:90:66:f6:c7:37:1c:b6:07:
30:a6:60:fe:f0:9f:be:4f:3e:58:2d:80:19:9b:77:
9d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:30:DE:64:33:B3:6B:37:AF:D1:CA:49:0E:26:57:C0:A2:84:22:AA
X509v3 Authority Key Identifier:
keyid:27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/UTDeZDOzazev0cpJDiZXwKKEIqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.207.52.0/22
31.207.60.0/22
94.46.188.0/22
146.185.64.0/19
185.63.64.0/22
185.104.84.0/22
IPv6:
2a04:f340::/29
Signature Algorithm: sha256WithRSAEncryption
b3:b3:a8:95:09:da:38:61:95:22:dc:10:d1:33:90:04:cc:30:
d2:0d:88:5d:92:16:01:7b:9f:28:5e:96:75:fc:ea:ee:cd:c2:
62:e4:42:4b:9e:0d:7a:34:cf:79:be:09:d2:0d:d1:28:82:51:
39:38:70:fb:81:e6:8e:b1:40:57:e1:bd:1e:ac:bc:4d:b1:da:
ad:bb:89:4b:2f:46:a6:07:0c:ec:1e:dd:c2:6e:f6:51:04:c3:
cf:3a:0f:10:61:54:a0:00:11:03:79:6b:22:de:9c:75:4a:b5:
c9:bf:21:4b:bf:57:b0:61:35:46:2b:b0:5d:8a:8b:57:26:b6:
13:1b:98:19:6d:84:cc:22:08:42:f9:0b:dc:bc:d5:9e:6d:a3:
62:79:7a:1d:fc:60:a9:92:ae:bf:06:6d:f9:47:03:ba:e0:c8:
8d:3a:d4:bd:d8:ba:b5:2f:36:f8:77:50:2f:3f:1a:cd:87:f1:
0a:42:e1:16:d3:71:30:af:47:39:45:13:65:f1:46:53:d0:f2:
ba:9c:72:88:01:ca:70:4f:65:9e:a5:1d:07:05:fb:99:eb:cd:
65:de:89:66:e4:c7:63:a0:05:4b:8b:19:65:96:4e:34:3f:be:
ae:cd:45:4b:ed:b5:59:24:2a:ab:41:5f:e1:3f:a0:e6:82:fe:
f5:4f:d5:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:31 2024 by rpki-client on console-ams.rpki-client.org