Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/uAEk9WUm5MKYK_mg52SAKUAG-d8.roa
File: uAEk9WUm5MKYK_mg52SAKUAG-d8.roa (raw, json)
Hash identifier: lGePFyVNlqP9KCovtcBz6RiuqKkZsE6Urk5WRZfdk9E=
Subject key identifier: B8:01:24:F5:65:26:E4:C2:98:2B:F9:A0:E7:64:80:29:40:06:F9:DF
Certificate issuer: /CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Certificate serial: 018BF20F76887E2D35C512EF1F4B740DC015
Authority key identifier: A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/uAEk9WUm5MKYK_mg52SAKUAG-d8.roa
Signing time: Tue 21 Nov 2023 13:26:21 +0000
ROA not before: Tue 21 Nov 2023 13:26:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 94.154.119.0/24 maxlen: 24
195.144.23.0/24 maxlen: 24
80.73.241.0/24 maxlen: 24
195.137.186.0/24 maxlen: 24
195.137.188.0/24 maxlen: 24
185.136.40.0/24 maxlen: 24
185.136.41.0/24 maxlen: 24
185.136.42.0/24 maxlen: 24
185.136.43.0/24 maxlen: 24
185.8.145.0/24 maxlen: 24
185.8.144.0/24 maxlen: 24
176.97.207.0/24 maxlen: 24
185.8.146.0/24 maxlen: 24
185.8.147.0/24 maxlen: 24
176.57.240.0/24 maxlen: 24
176.57.243.0/24 maxlen: 24
176.57.244.0/24 maxlen: 24
176.57.241.0/24 maxlen: 24
176.57.242.0/24 maxlen: 24
176.57.245.0/24 maxlen: 24
176.57.246.0/24 maxlen: 24
176.57.247.0/24 maxlen: 24
195.138.220.0/24 maxlen: 24
194.53.4.0/24 maxlen: 24
194.53.5.0/24 maxlen: 24
194.53.6.0/24 maxlen: 24
194.53.7.0/24 maxlen: 24
195.96.152.0/24 maxlen: 24
2a01:9d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f2:0f:76:88:7e:2d:35:c5:12:ef:1f:4b:74:0d:c0:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00cb4b8d569477512ce57885ba6a2898fbc2d95
Validity
Not Before: Nov 21 13:26:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b80124f56526e4c2982bf9a0e76480294006f9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:25:9c:5d:a8:8b:71:bf:bd:94:e4:1b:6c:
4b:0a:48:c8:88:9c:9c:7a:ae:b1:0a:9b:5f:8b:3e:
5a:38:e3:9e:0b:ae:02:7a:1e:a3:00:80:f3:0d:4f:
09:79:1a:41:cc:5c:53:8c:f9:43:93:f9:15:37:4c:
b8:19:57:d3:b0:00:ce:4c:b8:dc:4c:ab:45:b7:f6:
87:85:8f:95:94:34:fe:71:b2:c9:e5:5e:1b:62:18:
75:2a:4f:ae:0f:2b:78:da:1f:0e:c4:ec:78:5e:b4:
a4:3d:48:4d:e3:dc:02:ee:dd:e1:87:e1:6f:ec:50:
dd:6f:25:9a:ca:68:78:9a:3e:1e:a6:db:7a:f7:ce:
79:83:00:b6:9f:53:29:7f:15:15:73:3e:6c:46:f4:
d6:4a:1a:a8:ea:15:b6:9d:6a:8f:56:a1:5b:90:38:
ee:d6:e8:74:b6:02:2a:46:cc:3e:d9:52:51:5d:6b:
5d:26:6e:17:c7:fd:93:21:ed:ba:4d:93:1d:6a:70:
94:83:cc:1b:6a:e9:c0:5c:26:b3:05:fc:2f:4f:63:
ae:c7:e6:d6:e0:89:8f:f0:03:57:a4:f6:ea:df:2f:
57:da:1a:bf:b6:d0:05:f0:7c:86:f9:fc:30:e4:74:
bb:6f:81:ae:83:1d:f2:af:17:83:21:67:8b:73:60:
f0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:01:24:F5:65:26:E4:C2:98:2B:F9:A0:E7:64:80:29:40:06:F9:DF
X509v3 Authority Key Identifier:
keyid:A0:0C:B4:B8:D5:69:47:75:12:CE:57:88:5B:A6:A2:89:8F:BC:2D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oAy0uNVpR3USzleIW6aiiY-8LZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/uAEk9WUm5MKYK_mg52SAKUAG-d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f8fd59-0115-4db3-bd85-18c70ebf681a/1/oAy0uNVpR3USzleIW6aiiY-8LZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.241.0/24
94.154.119.0/24
176.57.240.0/21
176.97.207.0/24
185.8.144.0/22
185.136.40.0/22
194.53.4.0/22
195.96.152.0/24
195.137.186.0/24
195.137.188.0/24
195.138.220.0/24
195.144.23.0/24
IPv6:
2a01:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
b4:78:1d:ed:75:e7:88:2c:5e:cd:51:5e:0c:8f:bb:bb:01:de:
54:ca:6c:eb:0c:01:b9:fe:d5:9e:07:20:43:e5:88:0a:be:40:
74:df:2a:ca:52:f4:6b:35:ba:1e:bc:d1:7b:5d:d4:01:a3:40:
6d:97:e1:14:32:e7:8a:47:04:52:91:64:c3:61:ad:5b:ec:b7:
6c:c3:fa:c0:64:0f:01:4d:8b:6f:bb:9c:03:62:ba:55:23:99:
d2:e3:f9:b3:2f:f3:fd:b6:83:27:f0:39:8e:1e:7c:81:bf:e3:
17:8a:d6:d2:4c:a3:e9:48:1c:76:78:45:80:7e:8b:89:82:ff:
1e:9a:72:d1:31:c0:95:7c:a7:09:37:23:24:e3:71:b4:57:2c:
f2:8e:e3:9e:e6:b1:ee:6e:30:fe:94:70:60:c5:08:86:85:e3:
6e:97:f5:aa:32:c0:2e:ea:71:fb:da:e9:24:c9:62:8b:9e:f5:
c9:f5:36:b4:41:c0:b1:72:ad:1d:37:cd:21:c6:bc:07:7e:65:
68:f1:11:be:6c:58:89:bb:fa:68:a7:46:5e:b8:0a:11:97:f4:
b0:ab:4d:2f:95:5c:70:92:09:37:9c:f6:64:23:96:57:1c:2a:
9c:6b:54:5f:11:1c:6e:35:07:e5:2e:bb:3b:a7:2a:fa:d7:4a:
ff:ed:1b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:49 2024 by rpki-client on console-ams.rpki-client.org