Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/UnfHUsxYknL-mNuJMnLfIzEQT5Y.roa
File: UnfHUsxYknL-mNuJMnLfIzEQT5Y.roa (raw, json)
Hash identifier: wCK3pE9qwakgnxpC/RvSyuyPBwvF7Vpsr5DRxz4fm80=
Subject key identifier: 52:77:C7:52:CC:58:92:72:FE:98:DB:89:32:72:DF:23:31:10:4F:96
Certificate issuer: /CN=78e7ba8c08853be554c594ded156a6983eba1055
Certificate serial: 0185713083144394ED986865379A1908BB7D
Authority key identifier: 78:E7:BA:8C:08:85:3B:E5:54:C5:94:DE:D1:56:A6:98:3E:BA:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eOe6jAiFO-VUxZTe0VammD66EFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/UnfHUsxYknL-mNuJMnLfIzEQT5Y.roa
Signing time: Mon 02 Jan 2023 06:34:42 +0000
ROA not before: Mon 02 Jan 2023 06:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48479
IP address blocks: 151.252.111.0/24 maxlen: 24
151.252.110.0/24 maxlen: 24
151.252.109.0/24 maxlen: 24
151.252.108.0/24 maxlen: 24
151.252.107.0/24 maxlen: 24
151.252.106.0/24 maxlen: 24
185.52.31.0/24 maxlen: 24
185.52.30.0/24 maxlen: 24
185.52.29.0/24 maxlen: 24
185.52.28.0/24 maxlen: 24
151.252.104.0/21 maxlen: 21
151.252.105.0/24 maxlen: 24
151.252.104.0/24 maxlen: 24
46.18.202.0/24 maxlen: 24
46.18.200.0/24 maxlen: 24
46.18.200.0/21 maxlen: 21
46.18.203.0/24 maxlen: 24
46.18.201.0/24 maxlen: 24
46.18.206.0/24 maxlen: 24
46.18.205.0/24 maxlen: 24
46.18.204.0/23 maxlen: 23
46.18.204.0/24 maxlen: 24
46.18.207.0/24 maxlen: 24
185.52.77.0/24 maxlen: 24
185.52.76.0/24 maxlen: 24
185.52.78.0/24 maxlen: 24
185.52.79.0/24 maxlen: 24
2a03:aa80::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:83:14:43:94:ed:98:68:65:37:9a:19:08:bb:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78e7ba8c08853be554c594ded156a6983eba1055
Validity
Not Before: Jan 2 06:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5277c752cc589272fe98db893272df2331104f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:a0:6f:b3:96:64:0f:ef:b7:19:5c:b0:ce:
8d:f7:ad:a2:bd:cd:c9:8a:7e:8f:d9:1b:40:78:04:
ec:d3:f2:1a:c6:c3:23:0c:0b:e9:9c:a8:26:76:14:
cb:46:68:3a:42:59:60:01:00:7c:78:44:30:e2:30:
93:36:8d:cc:eb:15:0f:0f:81:47:7e:af:6a:3e:44:
1a:1c:06:ef:a0:68:59:a2:e7:40:cf:41:0e:a7:2b:
1f:ec:81:f6:f6:fd:aa:2a:6a:87:f6:d8:dc:b8:ef:
e5:ff:5f:48:ed:69:75:e9:23:2f:9e:13:2f:5f:f8:
b6:33:ab:41:86:19:20:bc:a4:7c:87:2c:d3:58:ac:
20:28:81:44:a1:d6:d7:a9:1e:6c:f2:6d:82:79:da:
c6:6b:95:45:3f:17:61:b0:8e:71:d9:28:8e:ae:f7:
7a:4c:46:5b:ee:8f:89:a1:c0:fc:b7:5f:a4:45:09:
21:91:13:3a:bf:57:4d:b5:a6:40:e3:0a:74:73:89:
9c:16:7a:50:a4:46:99:6c:94:90:39:8e:00:74:1a:
26:b6:cc:70:6d:6e:93:72:d6:ca:dd:dc:ad:69:1b:
88:db:2e:71:f5:ea:d1:d7:87:ed:a5:83:9f:61:6d:
22:9a:53:a5:c3:bc:02:0a:b6:52:4c:b2:11:b3:35:
af:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:77:C7:52:CC:58:92:72:FE:98:DB:89:32:72:DF:23:31:10:4F:96
X509v3 Authority Key Identifier:
keyid:78:E7:BA:8C:08:85:3B:E5:54:C5:94:DE:D1:56:A6:98:3E:BA:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eOe6jAiFO-VUxZTe0VammD66EFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/UnfHUsxYknL-mNuJMnLfIzEQT5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/325481-5ce6-456e-94a2-5eaf9e10d85c/1/eOe6jAiFO-VUxZTe0VammD66EFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.200.0/21
151.252.104.0/21
185.52.28.0/22
185.52.76.0/22
IPv6:
2a03:aa80::/32
Signature Algorithm: sha256WithRSAEncryption
34:df:ab:38:e8:67:80:95:d5:db:75:1d:43:f3:ca:50:67:90:
55:30:eb:4d:0f:de:e4:72:c4:b0:0b:06:15:a4:13:0d:77:1f:
a8:fe:08:69:5a:81:5f:3b:e5:e1:7c:4d:e8:ae:5f:e8:a7:84:
78:12:4b:a6:0a:7d:10:a1:6f:ef:ba:ad:fa:b4:c8:3b:aa:5c:
d7:7c:d5:19:bb:8b:e9:b9:31:54:d6:83:f7:6b:c5:36:8a:ca:
1b:02:72:eb:bb:ab:ae:d4:0b:44:bf:25:93:0f:46:f8:69:71:
b2:8e:47:14:13:ac:b3:d5:b1:8a:d6:f6:2a:0d:72:f9:7e:c4:
3c:0a:90:a0:19:9b:f4:f0:b7:2f:2e:36:ed:ce:eb:32:bf:d9:
db:23:fd:af:01:98:0a:5d:e9:7a:8a:8a:5d:de:13:eb:35:a0:
a4:45:1b:8e:94:d9:32:03:5d:d8:44:1b:bf:5b:c0:e9:94:83:
ca:ce:6e:43:e9:bb:61:2f:f7:04:1f:9c:5d:df:4f:fc:a1:62:
7c:c3:51:1a:93:5e:81:15:35:3d:d3:47:94:79:84:25:84:ce:
35:fe:cb:6c:1e:54:27:d1:28:10:72:9e:ff:09:87:c9:cf:6c:
30:a8:06:db:fd:58:7f:7e:ec:d7:9a:fd:63:0f:fe:c0:b6:f8:
5e:2e:36:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:24 2024 by rpki-client on console-fra.rpki-client.org