Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/um8mbbTx7o_X5RGLRXrwgx2JN2c.roa
File: um8mbbTx7o_X5RGLRXrwgx2JN2c.roa (raw, json)
Hash identifier: PhQDTjUWmgzBv1fFhHGAp+/tRaZEka/TiiCQeA1l/A8=
Subject key identifier: BA:6F:26:6D:B4:F1:EE:8F:D7:E5:11:8B:45:7A:F0:83:1D:89:37:67
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 01880C0366E26CEB790E0E0E6A2CE977921F
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/um8mbbTx7o_X5RGLRXrwgx2JN2c.roa
Signing time: Thu 11 May 2023 18:12:09 +0000
ROA not before: Thu 11 May 2023 18:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209854
IP address blocks: 109.207.129.0/24 maxlen: 24
91.229.18.0/24 maxlen: 24
91.229.19.0/24 maxlen: 24
93.120.24.0/23 maxlen: 24
193.36.203.0/24 maxlen: 24
192.162.184.0/24 maxlen: 24
192.162.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 15:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0c:03:66:e2:6c:eb:79:0e:0e:0e:6a:2c:e9:77:92:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 11 18:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba6f266db4f1ee8fd7e5118b457af0831d893767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:70:bb:4e:60:6d:b7:ed:75:95:fd:dd:30:05:
3c:01:6b:18:56:ae:97:b0:90:79:f9:c2:31:e2:24:
70:e8:7f:56:9c:9c:63:5e:2a:90:2f:79:9c:ec:ed:
17:64:3e:90:28:1b:ec:9e:e9:3c:f4:97:63:0b:7f:
a1:ae:46:ef:7c:7b:51:f9:ae:0b:9c:5d:66:19:80:
d3:28:e8:72:5e:00:ca:ff:bf:f1:a4:36:df:26:b2:
0f:1d:1a:31:55:53:f3:22:5b:e1:1e:cc:2a:b6:51:
cb:c9:f1:a9:f6:69:1b:1c:60:67:b0:3a:17:e5:e1:
76:ed:04:bf:12:19:b4:98:7a:f0:1a:d4:a2:00:27:
f6:1f:9d:32:5b:01:ac:f7:49:1c:00:89:da:8b:1d:
63:69:5d:38:e6:5d:be:5f:e2:d3:1b:22:1e:a5:a8:
8c:e2:f4:2e:b5:2e:0b:cf:e8:94:44:44:e1:00:2e:
f1:ba:20:0d:aa:2f:82:18:3a:ef:ab:c8:15:da:70:
58:76:c0:e3:a6:e3:b1:d5:95:ce:3f:90:0c:1e:b9:
6c:c3:47:f7:2a:1b:0a:07:0d:0e:b0:b8:65:39:a4:
4a:f4:9b:07:56:50:49:ea:d9:29:ba:5b:13:2c:56:
ae:e0:2b:eb:cf:39:79:01:de:e0:61:e7:31:b4:f1:
a8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:6F:26:6D:B4:F1:EE:8F:D7:E5:11:8B:45:7A:F0:83:1D:89:37:67
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/um8mbbTx7o_X5RGLRXrwgx2JN2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.18.0/23
93.120.24.0/23
109.207.129.0/24
192.162.184.0/23
193.36.203.0/24
Signature Algorithm: sha256WithRSAEncryption
31:07:a8:2b:24:68:48:59:64:87:39:6d:65:ee:e5:a7:e2:66:
fb:40:af:28:e4:aa:30:c6:9c:1e:1d:c5:dc:cf:36:6c:6a:58:
03:77:68:bd:b5:f4:02:53:39:60:b8:76:d7:e0:18:73:6a:53:
af:3e:88:6a:ef:ff:50:40:f2:ba:97:22:d4:8c:32:f2:97:3a:
0a:20:3d:cd:2b:12:b3:a5:49:14:9d:83:41:69:83:7f:f9:c1:
b3:30:0a:fe:89:a4:47:28:86:2c:cb:ae:36:23:e2:ae:5c:cb:
7f:15:9d:68:7e:f8:b5:20:f4:8f:1c:d8:de:d8:8a:a6:28:15:
7b:f8:f4:4c:c9:42:58:81:82:d7:72:df:c6:19:5a:ca:43:51:
9c:06:70:a6:7f:fb:64:8c:49:fa:57:8f:00:da:c4:41:d5:90:
d9:24:bc:4e:33:d2:72:08:a6:ca:6e:fc:2e:cc:3f:4e:a6:97:
41:06:92:7e:20:09:1b:df:eb:88:c0:00:ab:50:8f:92:54:a2:
a2:12:2e:09:b8:55:35:08:fd:7b:64:dc:34:43:18:ae:bc:0a:
f6:2b:30:c7:4b:68:d3:af:23:43:43:36:57:19:87:43:03:d8:
00:7f:2c:38:f6:dd:6d:33:4b:50:c5:80:c1:1e:88:7a:11:09:
49:59:a8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org