Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/U3HVgxL3fKz7Yno_Yy96eSBYhuU.roa
File: U3HVgxL3fKz7Yno_Yy96eSBYhuU.roa (raw, json)
Hash identifier: jvDLdcFCsvFQ1ouhgRhNd1Y7wuRs67NZ3lZpcataNLk=
Subject key identifier: 53:71:D5:83:12:F7:7C:AC:FB:62:7A:3F:63:2F:7A:79:20:58:86:E5
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 018A6453BEEB4476D8CB87753912C061E80E
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/U3HVgxL3fKz7Yno_Yy96eSBYhuU.roa
Signing time: Tue 05 Sep 2023 07:52:04 +0000
ROA not before: Tue 05 Sep 2023 07:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 87.236.161.0/24 maxlen: 24
5.172.177.0/24 maxlen: 24
45.93.168.0/22 maxlen: 24
213.217.31.0/24 maxlen: 24
77.87.122.0/24 maxlen: 24
193.163.72.0/24 maxlen: 24
185.217.143.0/24 maxlen: 24
213.232.203.0/24 maxlen: 24
45.252.180.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
185.227.136.0/24 maxlen: 24
45.89.236.0/22 maxlen: 24
185.211.79.0/24 maxlen: 24
185.182.105.0/24 maxlen: 24
2a0c:6600:6::/48 maxlen: 48
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:3::/48 maxlen: 48
2a0c:6600:8::/48 maxlen: 48
2a0c:6600:5::/48 maxlen: 48
2a0c:6600:2000::/48 maxlen: 48
2a0c:6600:3000::/48 maxlen: 48
2a0c:6600:4000::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
2a0c:6600:6600::/48 maxlen: 48
2a0c:6600:6000::/48 maxlen: 48
2a0c:6600:1000::/48 maxlen: 48
2a0c:6600:9::/48 maxlen: 48
2a0c:6600:4::/48 maxlen: 48
2a0c:6600:7::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Sep 2023 09:42:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:53:be:eb:44:76:d8:cb:87:75:39:12:c0:61:e8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Sep 5 07:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5371d58312f77cacfb627a3f632f7a79205886e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7f:88:04:4b:75:bb:3d:c5:3a:d5:d0:23:21:
67:34:15:56:4b:40:b0:bd:3a:ac:c8:e4:24:cb:2b:
b6:a3:79:8b:90:28:7b:2d:e8:65:a6:c5:85:52:c7:
77:e6:29:c5:92:89:fd:95:1d:36:46:21:f7:9f:62:
e1:26:b6:2d:0c:32:8e:f8:97:9d:28:1e:b6:81:14:
7c:ed:bb:21:be:ef:2f:a3:f0:f4:ae:45:45:81:c3:
4a:59:10:8b:09:bf:84:ce:12:12:e2:2b:e7:39:1f:
3b:83:8f:be:fc:04:aa:b6:65:7b:27:7c:1e:41:51:
94:24:03:05:9c:f4:fe:97:5c:a9:53:34:b3:1c:59:
a3:44:c9:17:91:47:4d:2a:c8:f1:f3:a2:02:93:e1:
8b:55:57:c8:4b:96:6d:45:76:76:1c:59:3d:52:08:
b0:3b:70:2b:b8:11:d0:8c:83:9c:51:51:1e:16:ed:
6a:0e:2e:df:d9:12:59:61:d1:d1:55:34:ce:bb:04:
7b:e4:61:c3:dc:4c:6b:a9:a0:27:d5:6d:28:9d:7a:
16:6a:76:97:8e:ad:17:9b:df:ee:b5:6c:46:b5:0e:
86:6f:fd:b7:d8:85:3c:60:22:f1:de:b9:7c:c3:d6:
0a:30:4d:c6:ed:5a:d8:ca:82:96:28:10:7f:a0:48:
f4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:71:D5:83:12:F7:7C:AC:FB:62:7A:3F:63:2F:7A:79:20:58:86:E5
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/U3HVgxL3fKz7Yno_Yy96eSBYhuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
45.89.236.0/22
45.93.168.0/22
45.252.180.0/24
77.87.122.0/24
87.236.161.0/24
185.182.105.0/24
185.211.79.0/24
185.217.143.0/24
185.227.136.0/22
193.163.72.0/24
213.217.31.0/24
213.232.203.0/24
IPv6:
2a0c:6600::-2a0c:6600:9:ffff:ffff:ffff:ffff:ffff
2a0c:6600:1000::/48
2a0c:6600:2000::/48
2a0c:6600:3000::/48
2a0c:6600:4000::/48
2a0c:6600:6000::/48
2a0c:6600:6600::/48
Signature Algorithm: sha256WithRSAEncryption
78:86:cb:29:08:fb:07:67:d0:95:03:4c:e0:9f:6c:33:6e:fb:
a6:e2:53:9d:54:f7:48:cf:a9:50:06:56:2a:72:50:fb:c0:1c:
d7:26:c8:34:6f:0f:34:7a:a8:65:27:4c:6b:ba:87:2f:38:95:
fb:06:2e:7b:32:35:32:c5:15:20:bd:01:b8:c7:0b:17:4b:f4:
03:16:5a:55:1a:5f:54:de:55:01:cc:18:5c:7a:5e:27:18:62:
e7:1f:9e:3f:ed:c1:22:11:bb:80:93:d4:41:08:d4:69:16:ed:
ec:12:f8:11:e2:d5:80:1d:e9:4a:5c:a3:9b:6d:cc:8a:ac:3b:
3e:34:55:ff:64:69:54:2c:af:17:85:e5:ab:be:e1:91:30:34:
d8:9b:4c:a9:06:ea:75:e4:89:86:9d:15:e4:ba:50:fb:c9:02:
4f:e2:da:e2:f9:d7:79:06:f1:82:12:4e:a4:c2:26:71:3a:ee:
d1:75:76:82:9d:ab:f7:09:57:d7:f0:25:da:30:fc:b9:71:96:
f3:03:4d:9e:2d:85:ad:56:0e:1d:aa:73:99:c1:7d:94:ac:05:
c7:7d:a8:e2:70:bd:3e:b8:91:a4:94:cd:90:69:c0:13:9d:57:
20:a6:2e:f1:4c:fb:1b:bd:5e:b0:28:dd:c1:05:5e:07:02:ba:
c2:52:d5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org