Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/uEHRtlSjeYQFvi3DhBpPRZtXhBI.roa
File: uEHRtlSjeYQFvi3DhBpPRZtXhBI.roa (raw, json)
Hash identifier: JnbZEkIyP3e5RyPt+WdouEl5lK5og4Z7xs/koFGiyhI=
Subject key identifier: B8:41:D1:B6:54:A3:79:84:05:BE:2D:C3:84:1A:4F:45:9B:57:84:12
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018A312E1A10868A457E56D8A0BE83E35333
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/uEHRtlSjeYQFvi3DhBpPRZtXhBI.roa
Signing time: Sat 26 Aug 2023 09:30:19 +0000
ROA not before: Sat 26 Aug 2023 09:30:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30938
IP address blocks: 45.12.216.0/24 maxlen: 24
45.12.217.0/24 maxlen: 24
45.12.219.0/24 maxlen: 24
45.12.218.0/24 maxlen: 24
5.39.248.0/24 maxlen: 24
5.39.251.0/24 maxlen: 24
5.39.252.0/24 maxlen: 24
5.39.250.0/24 maxlen: 24
5.39.253.0/24 maxlen: 24
185.5.36.0/22 maxlen: 22
31.192.240.0/21 maxlen: 21
5.178.97.0/24 maxlen: 24
5.178.96.0/24 maxlen: 24
5.178.99.0/24 maxlen: 24
5.144.183.0/24 maxlen: 24
5.178.100.0/24 maxlen: 24
5.178.105.0/24 maxlen: 24
5.178.104.0/24 maxlen: 24
5.178.106.0/24 maxlen: 24
5.178.109.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.178.108.0/24 maxlen: 24
5.39.254.0/24 maxlen: 24
5.39.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:2e:1a:10:86:8a:45:7e:56:d8:a0:be:83:e3:53:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Aug 26 09:30:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b841d1b654a3798405be2dc3841a4f459b578412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:03:d5:db:f1:18:af:37:2c:74:1b:ac:46:42:
73:ef:6a:19:33:ad:4d:76:a1:53:e3:5e:66:3e:b1:
75:20:7c:ab:5b:68:dc:ef:23:6a:fa:77:22:4b:2c:
dc:52:0f:d7:83:d6:b7:0d:51:a0:7c:d6:15:46:35:
31:2f:72:40:25:b4:84:25:52:b4:a4:2c:fc:c0:0f:
fe:1f:d4:73:76:34:66:ed:19:a5:31:93:58:10:ed:
2b:c4:d2:c7:4e:49:25:48:9a:8a:b4:d6:ff:dc:f9:
31:cb:0b:e5:14:c1:1a:dc:b3:70:5f:6b:af:df:a9:
d2:d6:a7:65:f3:45:d1:77:88:7e:53:92:36:57:db:
12:6e:74:35:f3:c9:64:20:f3:c8:5f:18:61:0e:48:
c3:41:7a:b6:a7:26:54:03:9a:b6:b6:46:f3:65:94:
0d:db:31:0d:b3:a8:09:47:42:75:88:bd:48:6c:fb:
a2:57:cb:a3:26:b6:d6:6f:af:a6:e6:8c:c8:f3:18:
1d:72:5b:99:43:e3:6d:fe:62:6b:7b:24:a9:02:2a:
41:90:4f:ef:09:a6:38:ab:71:a7:5b:14:bc:7d:df:
1d:e2:a5:56:12:b2:9a:35:9f:82:9e:de:df:83:19:
af:37:b7:41:cf:fb:cc:4f:c4:1a:58:79:6d:2f:4c:
dc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:D1:B6:54:A3:79:84:05:BE:2D:C3:84:1A:4F:45:9B:57:84:12
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/uEHRtlSjeYQFvi3DhBpPRZtXhBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/24
5.39.250.0-5.39.255.255
5.144.183.0/24
5.178.96.0/23
5.178.99.0-5.178.100.255
5.178.104.0-5.178.106.255
5.178.108.0-5.178.110.255
31.192.240.0/21
45.12.216.0/22
185.5.36.0/22
Signature Algorithm: sha256WithRSAEncryption
41:e1:df:37:24:e1:dd:5d:05:76:7f:28:7d:8b:2a:ed:40:db:
85:8b:8c:72:5c:e8:ee:75:97:74:bb:1f:03:45:a7:e3:5c:d3:
41:b6:04:0c:e2:08:28:60:b7:a4:14:76:d3:52:54:9d:21:44:
a4:49:9c:fd:9e:e2:08:8c:7d:2a:5e:f3:04:d9:af:99:16:5b:
e6:78:49:14:2b:7d:a7:dc:0e:0a:59:91:07:e3:4b:c7:93:ad:
ef:0d:f4:a3:7b:82:32:36:bc:c8:e1:06:84:18:37:d3:6e:8c:
ba:45:64:ec:b1:ca:b4:78:c9:3d:d5:bf:a9:0d:1c:be:33:79:
07:32:81:fa:f8:d5:ce:5e:b2:16:b8:5e:33:49:4e:0e:9e:bc:
62:58:40:8a:3e:79:35:c7:e9:48:b5:4e:c8:cc:18:21:cc:9b:
64:a9:73:6b:2d:92:19:e4:e6:e8:f4:8d:dc:f2:95:95:47:86:
d1:d1:1a:8f:58:4e:0b:2b:7f:8b:3a:67:f4:ca:53:12:d8:85:
d5:56:35:65:93:75:ce:f4:ac:de:97:76:96:62:29:9f:ca:89:
26:07:6c:2c:e2:a6:b1:05:15:17:67:72:b0:54:58:32:39:ef:
fd:c7:c3:82:d7:d2:07:c0:50:7b:c0:26:ce:99:6a:12:16:0c:
72:3f:f5:92
-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgISAYoxLhoQhopFflbYoL6D41MzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMwODI2MDkzMDE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODQxZDFiNjU0YTM3OTg0MDViZTJkYzM4NDFhNGY0NTliNTc4NDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQPV2/EYrzcsdBusRkJz72oZM61N
dqFT415mPrF1IHyrW2jc7yNq+nciSyzcUg/Xg9a3DVGgfNYVRjUxL3JAJbSEJVK0
pCz8wA/+H9RzdjRm7RmlMZNYEO0rxNLHTkklSJqKtNb/3PkxywvlFMEa3LNwX2uv
36nS1qdl80XRd4h+U5I2V9sSbnQ188lkIPPIXxhhDkjDQXq2pyZUA5q2tkbzZZQN
2zENs6gJR0J1iL1IbPuiV8ujJrbWb6+m5ozI8xgdcluZQ+Nt/mJreySpAipBkE/v
CaY4q3GnWxS8fd8d4qVWErKaNZ+Cnt7fgxmvN7dBz/vMT8QaWHltL0zcXwIDAQAB
o4ICXjCCAlowHQYDVR0OBBYEFLhB0bZUo3mEBb4tw4QaT0WbV4QSMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvdUVIUnRsU2plWVFGdmkzRGhCcFBSWnRYaEJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHQGCCsGAQUFBwEHAQH/BGUwYzBhBAIAATBbAwQABSf4MAsD
BAEFJ/oDAwMFIAMEAAWQtwMEAQWyYDAMAwQABbJjAwQABbJkMAwDBAMFsmgDBAAF
smowDAMEAgWybAMEAAWybgMEAx/A8AMEAi0M2AMEArkFJDANBgkqhkiG9w0BAQsF
AAOCAQEAQeHfNyTh3V0Fdn8ofYsq7UDbhYuMclzo7nWXdLsfA0Wn41zTQbYEDOII
KGC3pBR201JUnSFEpEmc/Z7iCIx9Kl7zBNmvmRZb5nhJFCt9p9wOClmRB+NLx5Ot
7w30o3uCMja8yOEGhBg3026MukVk7LHKtHjJPdW/qQ0cvjN5BzKB+vjVzl6yFrhe
M0lODp68YlhAij55NcfpSLVOyMwYIcybZKlzay2SGeTm6PSN3PKVlUeG0dEaj1hO
Cyt/izpn9MpTEtiF1VY1ZZN1zvSs3pd2lmIpn8qJJgdsLOKmsQUVF2dysFRYMjnv
/cfDgtfSB8BQe8AmzplqEhYMcj/1kg==
-----END CERTIFICATE-----
Generated at Sat Aug 26 10:30:38 2023 by rpki-client on console-ams.rpki-client.org