Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/uaU9isStaYiyuMm26Coel89V31I.roa
File: uaU9isStaYiyuMm26Coel89V31I.roa (raw, json)
Hash identifier: 4WJmSGT2NKD6NbsgS4XKsfbiSHRrpOthaDM3r9UYimU=
Subject key identifier: B9:A5:3D:8A:C4:AD:69:88:B2:B8:C9:B6:E8:2A:1E:97:CF:55:DF:52
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 018E7B7405B763C2436D570408D6482A1E72
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/uaU9isStaYiyuMm26Coel89V31I.roa
Signing time: Tue 26 Mar 2024 15:49:44 +0000
ROA not before: Tue 26 Mar 2024 15:49:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51185
IP address blocks: 45.157.64.0/24 maxlen: 24
45.157.65.0/24 maxlen: 24
45.157.66.0/24 maxlen: 24
45.157.67.0/24 maxlen: 24
94.124.64.0/21 maxlen: 21
94.124.64.0/24 maxlen: 24
94.124.65.0/24 maxlen: 24
94.124.66.0/24 maxlen: 24
94.124.67.0/24 maxlen: 24
94.124.68.0/24 maxlen: 24
94.124.69.0/24 maxlen: 24
94.124.70.0/24 maxlen: 24
178.248.48.0/24 maxlen: 24
178.248.49.0/24 maxlen: 24
178.248.50.0/24 maxlen: 24
178.248.51.0/24 maxlen: 24
178.248.52.0/24 maxlen: 24
178.248.54.0/24 maxlen: 24
185.45.208.0/24 maxlen: 24
185.45.210.0/24 maxlen: 24
185.187.156.0/24 maxlen: 24
185.187.159.0/24 maxlen: 24
2a02:2890:ffff::/48 maxlen: 48
2a02:2891::/48 maxlen: 48
2a02:2891:2::/48 maxlen: 48
2a02:2891:4::/48 maxlen: 48
2a02:2891:9::/48 maxlen: 48
2a02:2891:10::/48 maxlen: 48
2a02:2891:12::/48 maxlen: 48
2a02:2891:13::/48 maxlen: 48
2a02:2891:15::/48 maxlen: 48
2a02:2891:16::/48 maxlen: 48
2a02:2891:18::/48 maxlen: 48
2a02:2891:29::/48 maxlen: 48
2a02:2891:ff::/48 maxlen: 48
2a02:2892:32::/48 maxlen: 48
2a02:2892:40::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 May 2024 09:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7b:74:05:b7:63:c2:43:6d:57:04:08:d6:48:2a:1e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Mar 26 15:49:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9a53d8ac4ad6988b2b8c9b6e82a1e97cf55df52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1e:02:37:63:e5:5a:c0:1a:dd:95:b1:b4:7c:
8c:c7:71:ca:93:d5:7b:0f:37:81:db:cf:6f:e4:5d:
14:3d:d1:e9:72:83:69:cd:a0:60:07:44:c8:90:0d:
7b:ca:56:fa:49:04:df:60:ee:a9:e9:02:2e:06:69:
02:23:7a:cf:1d:ff:55:66:da:a9:7f:3c:78:c2:5f:
84:bc:82:58:91:3b:9c:f2:36:07:f0:f1:77:12:21:
5d:91:f9:cd:e6:0c:f1:b9:22:2b:91:c5:bd:df:88:
2e:99:44:25:96:3c:e9:aa:ab:88:5c:7c:20:93:ba:
74:11:f1:c1:f2:4e:77:6e:a5:1f:c1:6b:de:e0:58:
c8:29:43:3b:09:03:a3:a4:09:92:9a:05:82:28:f2:
af:a3:41:1c:10:30:31:e4:3a:ad:0c:da:be:59:16:
8d:3d:03:59:cf:7d:c9:85:8b:b0:17:a2:60:c2:8b:
e3:4a:59:9f:ae:d4:96:ab:db:14:3e:c5:32:bb:ce:
9c:f9:9e:20:15:cb:ce:de:2b:b3:7f:be:16:14:68:
c6:10:35:75:4a:77:ce:6b:f6:7b:de:48:df:23:63:
c6:6a:cb:0e:e9:20:e0:79:e2:2e:43:ae:7f:bd:4c:
d8:e0:19:3c:72:bf:67:19:c2:15:eb:49:8d:8f:e1:
e9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A5:3D:8A:C4:AD:69:88:B2:B8:C9:B6:E8:2A:1E:97:CF:55:DF:52
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/uaU9isStaYiyuMm26Coel89V31I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.64.0/22
94.124.64.0/21
178.248.48.0-178.248.52.255
178.248.54.0/24
185.45.208.0/24
185.45.210.0/24
185.187.156.0/24
185.187.159.0/24
IPv6:
2a02:2890:ffff::-2a02:2891:0:ffff:ffff:ffff:ffff:ffff
2a02:2891:2::/48
2a02:2891:4::/48
2a02:2891:9::/48
2a02:2891:10::/48
2a02:2891:12::/47
2a02:2891:15::-2a02:2891:16:ffff:ffff:ffff:ffff:ffff
2a02:2891:18::/48
2a02:2891:29::/48
2a02:2891:ff::/48
2a02:2892:32::/48
2a02:2892:40::/48
Signature Algorithm: sha256WithRSAEncryption
a2:82:53:34:ea:d8:36:61:78:d8:31:40:cf:6d:1b:d1:91:2e:
3b:f6:4c:e2:b6:d9:02:ac:87:02:3c:bc:27:26:b0:f3:a5:c8:
14:31:2f:19:37:e9:4d:d5:50:2f:ff:a9:3f:dc:e7:44:cc:5b:
ca:c8:bc:b3:a3:c2:ba:89:98:28:60:a7:cb:58:71:01:db:9e:
05:dc:31:5b:3a:c7:22:72:65:bf:e3:53:5a:44:8a:26:4b:fd:
c4:fb:50:9e:aa:3f:2c:e6:12:e2:d0:87:3d:95:bd:51:4f:cd:
e8:5f:01:68:12:0a:ae:0f:d2:42:78:25:4b:2e:01:c8:0d:ef:
8e:a5:fe:b4:6a:79:c2:6a:3c:4e:d8:ea:19:c2:a2:2e:5f:bd:
4b:c4:4b:9a:60:f0:dc:09:d0:ec:ce:21:27:7c:fe:a6:47:57:
bb:6d:45:05:e3:8f:1a:b1:77:e2:3c:1d:fa:aa:95:83:36:f5:
cb:e7:a0:e1:d8:57:fd:ae:38:4e:c5:7f:00:6f:8d:3a:19:bb:
49:25:ed:df:87:18:5e:2a:bd:a3:16:90:25:00:ac:8b:31:7e:
11:0a:14:48:39:5a:6f:3c:d5:30:2f:18:6b:e2:3d:bf:72:2f:
07:43:99:73:29:bd:00:a6:86:08:c2:53:5f:09:d9:48:6b:3d:
dd:9a:da:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:50 2024 by rpki-client on console-ams.rpki-client.org