Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/u-FoJveLSl_VlA1viKZE-wD7Lj4.roa
File: u-FoJveLSl_VlA1viKZE-wD7Lj4.roa (raw, json)
Hash identifier: paT2OUSZ1kS7Uo8GF0JMeBx8IZtlffAyoWx5+7bgVBI=
Subject key identifier: BB:E1:68:26:F7:8B:4A:5F:D5:94:0D:6F:88:A6:44:FB:00:FB:2E:3E
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 018968AB571FFF1BDB7E37BA7D93423430B7
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/u-FoJveLSl_VlA1viKZE-wD7Lj4.roa
Signing time: Tue 18 Jul 2023 11:03:26 +0000
ROA not before: Tue 18 Jul 2023 11:03:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3561
IP address blocks: 82.112.171.0/24 maxlen: 24
82.112.172.0/24 maxlen: 24
82.112.169.0/24 maxlen: 24
82.112.170.0/24 maxlen: 24
82.112.168.0/24 maxlen: 24
82.112.174.0/24 maxlen: 24
82.112.175.0/24 maxlen: 24
185.143.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:ab:57:1f:ff:1b:db:7e:37:ba:7d:93:42:34:30:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jul 18 11:03:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbe16826f78b4a5fd5940d6f88a644fb00fb2e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:8c:cb:11:c0:97:5e:5e:ad:47:2a:ed:60:
6c:21:80:a5:8f:37:40:37:13:6c:1b:45:c8:82:dc:
7e:9b:c7:e0:65:26:03:2f:df:a6:03:0f:2f:12:34:
c5:50:dc:85:f9:4f:77:e5:e4:3c:70:68:c7:f1:b1:
b0:4d:ec:84:c5:7f:1d:9b:87:14:c8:f3:3b:3d:d4:
88:5a:16:0d:8b:1b:e2:1b:d3:6a:0a:1f:d1:9a:0d:
6e:65:50:65:6d:b6:38:27:f7:2d:fd:79:0f:3f:e8:
86:e2:80:a6:0d:14:20:9f:da:b6:ae:14:39:1d:08:
c5:71:f8:6e:3f:0d:c0:86:a4:c4:c9:87:47:29:b5:
58:40:f5:68:ba:27:31:84:ca:fe:e1:15:3a:d8:a0:
a5:6c:ec:a7:ed:be:28:d1:a3:12:37:8b:d1:31:37:
f5:3e:fc:e2:16:4a:43:80:98:de:63:f4:2c:b2:0b:
14:86:47:3b:c2:b0:97:2c:33:dd:d7:f8:24:d7:4e:
6b:f6:87:99:95:5c:db:c4:ae:07:ee:24:64:43:05:
62:b2:ff:5a:89:50:6f:7b:73:47:27:7e:98:1c:06:
0e:c9:67:e3:e0:2e:b0:a8:54:0b:92:82:ef:79:12:
26:b5:67:2f:13:68:6f:ba:c1:1d:2b:7f:4f:05:83:
b8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:E1:68:26:F7:8B:4A:5F:D5:94:0D:6F:88:A6:44:FB:00:FB:2E:3E
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/u-FoJveLSl_VlA1viKZE-wD7Lj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.112.168.0-82.112.172.255
82.112.174.0/23
185.143.76.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a1:cd:f4:f5:93:41:6a:a7:28:ff:64:31:37:d1:4f:85:3e:
84:3c:63:b9:ce:a4:11:b8:d2:ed:41:cf:e6:ba:4b:ab:44:6d:
ec:7b:3f:bc:bf:6a:95:9d:e8:59:51:c8:e4:b2:84:cf:60:4e:
11:c0:51:1d:f3:d3:29:14:1d:4b:f6:e1:3b:9d:8a:4a:e6:ea:
9b:42:61:ee:16:da:b9:32:54:c5:18:32:08:15:a6:e9:8c:69:
f9:cb:c0:b9:a8:ad:d6:4c:d1:27:49:b6:97:a2:17:4e:15:ee:
05:89:55:a7:67:c7:ea:b8:f4:b6:3a:3d:bd:90:9b:34:48:23:
39:67:07:2e:4f:73:81:65:5c:3a:9b:08:eb:dc:fb:92:a4:89:
ea:c0:1f:9e:0e:da:01:21:f2:88:76:5b:71:2a:39:1a:96:db:
c7:ec:2b:37:b4:4a:3a:42:07:fe:a0:a9:2a:8c:e9:f4:df:3f:
5f:13:30:43:df:af:be:d0:72:cd:54:59:b2:d3:e9:d9:1e:08:
93:36:b2:ca:cf:9e:48:47:85:e8:bf:2f:01:a4:37:e0:64:c5:
04:db:56:0b:83:2f:30:f8:f9:cf:9e:54:00:f2:57:3b:2b:37:
44:f3:19:68:73:10:ee:af:71:ec:4d:27:3d:f3:64:88:30:be:
a1:53:69:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:53 2024 by rpki-client on console-fra.rpki-client.org