Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UwuknhV5ttgY--ne7R0jtI0ujf4.roa
File: UwuknhV5ttgY--ne7R0jtI0ujf4.roa (raw, json)
Hash identifier: 8e5YGu7rMA9htxeNGzuhl2rIHPQgv5one/fb0laN8tI=
Subject key identifier: 53:0B:A4:9E:15:79:B6:D8:18:FB:E9:DE:ED:1D:23:B4:8D:2E:8D:FE
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CC50136B79667F87E32633888C8BE39D7
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UwuknhV5ttgY--ne7R0jtI0ujf4.roa
Signing time: Mon 01 Jan 2024 12:30:40 +0000
ROA not before: Mon 01 Jan 2024 12:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.216.184.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
84.32.214.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:36:b7:96:67:f8:7e:32:63:38:88:c8:be:39:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 12:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=530ba49e1579b6d818fbe9deed1d23b48d2e8dfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:14:12:30:b2:5e:1c:dc:00:5e:d1:5f:39:7e:
dc:c5:a5:07:9c:3a:74:00:57:f0:73:da:3c:0f:f1:
67:a1:ce:f7:57:a3:ba:a8:1c:39:ef:33:09:80:a0:
4e:6b:75:23:67:74:96:79:52:b1:9c:cc:8e:72:3f:
bb:22:05:ce:cb:d4:69:a6:37:4a:df:c5:76:f2:94:
ac:3f:69:5d:48:42:5a:83:a7:c3:c5:11:f5:f4:d8:
b9:42:29:b4:55:4d:f1:80:ba:d2:d4:b7:98:b1:8c:
12:bc:a7:00:76:7d:6c:f4:87:63:99:65:a8:9c:64:
db:cd:32:b1:82:69:24:1e:af:67:e9:6a:65:6f:c1:
1f:41:27:52:ce:e1:57:27:5b:fb:96:be:a5:fd:95:
b9:43:3a:d5:8d:23:34:4b:81:8e:bb:0c:b4:f9:c2:
4a:5a:0b:33:37:a5:04:cf:cb:5c:1e:3d:f5:c6:36:
77:01:f8:09:35:8b:94:a7:c5:61:e9:c0:a1:d6:15:
65:ac:e9:89:e0:e0:da:14:0a:63:09:ec:ad:e8:52:
92:2f:8d:be:68:2a:c7:af:6b:ca:26:2c:d8:24:85:
74:ad:8d:75:c8:fd:fe:39:b8:1e:75:ac:10:97:55:
9e:a3:df:0c:d0:1f:65:42:b9:46:42:25:b1:eb:6f:
f2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0B:A4:9E:15:79:B6:D8:18:FB:E9:DE:ED:1D:23:B4:8D:2E:8D:FE
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UwuknhV5ttgY--ne7R0jtI0ujf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.178.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.184.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
17:e1:08:77:05:56:1e:e3:ec:9c:8f:50:d4:c5:0c:75:ba:e5:
e3:64:22:49:27:75:14:38:e9:dc:3f:19:a1:63:70:07:ba:e0:
b1:7a:66:06:4f:b1:7d:92:5b:74:be:55:71:8d:9c:89:50:cc:
79:67:cb:f8:a0:50:8c:2b:56:2a:f7:5f:e9:e3:29:0a:6e:0a:
f1:c9:64:6a:63:f7:17:93:e2:f8:2a:55:15:58:26:bb:92:fe:
ec:40:f8:65:dc:12:6e:48:08:82:54:bc:39:c2:05:54:d1:54:
ea:39:c7:8d:e7:a8:d6:1d:e9:cb:26:7e:23:17:47:4e:67:e8:
1e:03:2c:48:53:22:71:37:b5:9a:34:21:62:14:46:a2:9d:58:
2a:3c:4a:3c:39:ec:55:9b:cd:f0:ce:1f:66:2d:33:ea:94:41:
b1:b0:d6:8f:18:42:ce:b8:f0:8b:c8:9c:6c:e9:71:bf:ba:b5:
af:33:18:db:2c:72:4d:67:f0:82:61:50:4b:04:f3:0f:a1:7b:
f4:5f:93:9e:6c:de:0f:90:6e:ea:9c:d3:4b:fa:ff:25:16:13:
00:86:09:9d:57:3c:44:c3:84:83:8a:fc:2c:e8:c0:46:30:de:
5c:dd:93:eb:d5:96:a6:b7:9d:82:ad:e2:78:2e:cb:fe:4b:17:
a3:2b:84:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:47 2024 by rpki-client on console-ams.rpki-client.org