Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/u1cgVC__jt6Vkaftl4492Y7Kz6k.roa
File: u1cgVC__jt6Vkaftl4492Y7Kz6k.roa (raw, json)
Hash identifier: XwHKmPqMmtt3qVUs0mwYls5+bLpadFbMEDoqj2ahRrk=
Subject key identifier: BB:57:20:54:2F:FF:8E:DE:95:91:A7:ED:97:8E:3D:D9:8E:CA:CF:A9
Certificate issuer: /CN=059b86f99e2d6bde14fa8799de71ce41b98020b9
Certificate serial: 0188BE19D29E628B597B3F33D39E19337B2C
Authority key identifier: 05:9B:86:F9:9E:2D:6B:DE:14:FA:87:99:DE:71:CE:41:B9:80:20:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZuG-Z4ta94U-oeZ3nHOQbmAILk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/u1cgVC__jt6Vkaftl4492Y7Kz6k.roa
Signing time: Thu 15 Jun 2023 08:09:03 +0000
ROA not before: Thu 15 Jun 2023 08:09:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203936
IP address blocks: 193.39.95.0/24 maxlen: 24
193.39.94.0/24 maxlen: 24
193.39.93.0/24 maxlen: 24
193.39.92.0/24 maxlen: 24
185.253.144.0/22 maxlen: 22
45.144.248.0/22 maxlen: 22
2a0c:3cc0::/32 maxlen: 32
2a03:6280::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 18 Jul 2023 12:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:19:d2:9e:62:8b:59:7b:3f:33:d3:9e:19:33:7b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=059b86f99e2d6bde14fa8799de71ce41b98020b9
Validity
Not Before: Jun 15 08:09:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb5720542fff8ede9591a7ed978e3dd98ecacfa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0d:b2:27:3b:d8:8a:d7:73:1d:93:9a:8f:51:
1c:e0:80:13:eb:2b:79:00:26:e8:2f:92:09:0d:2f:
34:4d:92:86:5b:e4:50:73:54:b8:fa:d7:1c:ab:9f:
41:34:53:8c:98:85:a4:1a:62:ea:2f:82:6d:48:59:
e1:b2:ca:8c:64:28:51:90:24:cc:02:a0:5b:ab:4d:
b5:99:de:00:f0:48:44:48:d8:75:9b:06:e0:a5:f5:
e6:2a:c6:e2:30:f8:75:e3:f9:ca:04:2d:d4:9f:25:
38:77:8e:b6:eb:38:ad:8a:95:50:cc:f9:81:cd:33:
19:12:bc:2b:bb:a4:ea:76:f9:b0:99:36:6a:ef:a6:
73:1f:bc:da:6f:79:6e:cb:fa:8b:b0:63:22:ec:73:
a5:f6:13:2a:f8:08:14:34:dc:bf:65:03:b0:4a:de:
42:0d:3b:48:39:0d:5b:f8:17:ca:d2:c3:a6:93:ea:
a7:e3:93:8d:bc:13:92:d4:c8:f9:2b:db:30:52:08:
06:4a:91:6c:27:87:0a:fa:c3:4f:60:c3:36:e9:31:
bf:76:e8:a8:d8:13:44:07:90:43:37:71:92:c4:7a:
87:a4:e6:af:f8:88:24:f0:0c:3f:40:64:35:3d:09:
f2:b4:79:c4:95:af:b9:5d:64:45:8c:df:49:84:73:
ac:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:57:20:54:2F:FF:8E:DE:95:91:A7:ED:97:8E:3D:D9:8E:CA:CF:A9
X509v3 Authority Key Identifier:
keyid:05:9B:86:F9:9E:2D:6B:DE:14:FA:87:99:DE:71:CE:41:B9:80:20:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZuG-Z4ta94U-oeZ3nHOQbmAILk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/u1cgVC__jt6Vkaftl4492Y7Kz6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/358416-2752-4159-add6-cc3fb351e336/1/BZuG-Z4ta94U-oeZ3nHOQbmAILk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.248.0/22
185.253.144.0/22
193.39.92.0/22
IPv6:
2a03:6280::/29
2a0c:3cc0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:06:e8:10:30:f3:67:b0:54:2f:c7:f6:95:07:d2:66:b8:de:
a1:7b:df:2f:f0:60:ba:0c:16:71:cf:a9:55:98:db:ca:b0:d9:
5a:d7:77:4e:dd:fe:41:fd:80:f2:ae:1b:29:af:f6:6f:5a:c5:
cb:7f:4e:bb:83:77:9e:dc:2f:42:8d:72:33:d8:24:b5:bc:30:
8e:51:76:84:d2:a0:1c:fb:ce:2b:ad:2a:64:cb:7b:44:32:48:
9c:5d:37:ff:63:bc:38:0c:2e:21:ff:e8:77:77:79:c7:af:07:
19:d2:b8:1d:0e:cb:e9:45:9b:29:9d:92:fe:58:9d:b8:22:fc:
52:dc:24:79:0e:96:1a:52:ef:b4:fe:f1:e7:15:d9:ab:c7:3f:
8a:38:73:0b:12:db:48:27:d9:69:13:4c:f0:e9:da:c9:03:d0:
74:af:ff:ae:a8:7a:0a:99:33:da:d2:ec:74:01:c8:52:40:21:
17:4f:e8:8b:fe:ed:81:3f:c3:79:8d:7a:aa:15:c4:1c:20:46:
e2:68:1a:4a:b4:04:1c:87:c7:b0:e3:71:24:85:73:4d:54:2a:
82:79:2c:14:d3:f6:a4:b9:45:e2:f3:36:0a:90:02:48:62:f7:
dc:f5:61:ff:44:df:a2:97:8c:c8:2d:a9:d8:90:6f:da:5f:f8:
f1:40:11:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:16 2024 by rpki-client on console-fra.rpki-client.org