Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/uPP8u73XE4xTWGa758GACJ5bDzI.roa
File: uPP8u73XE4xTWGa758GACJ5bDzI.roa (raw, json)
Hash identifier: O7fAK1WR7TyLJOJ23FQ2aUSpL6ek3PvV4jS+86mg1HA=
Subject key identifier: B8:F3:FC:BB:BD:D7:13:8C:53:58:66:BB:E7:C1:80:08:9E:5B:0F:32
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 0188FCE74C84B560880525C422CF2A9240A7
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/uPP8u73XE4xTWGa758GACJ5bDzI.roa
Signing time: Tue 27 Jun 2023 12:49:56 +0000
ROA not before: Tue 27 Jun 2023 12:49:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 185.228.124.0/22 maxlen: 24
185.176.104.0/22 maxlen: 24
185.10.248.0/22 maxlen: 24
109.235.16.0/21 maxlen: 24
185.83.132.0/22 maxlen: 24
185.70.152.0/22 maxlen: 24
89.40.84.0/22 maxlen: 24
37.122.219.0/24 maxlen: 24
185.5.84.0/22 maxlen: 24
46.28.160.0/21 maxlen: 24
91.242.148.0/22 maxlen: 24
176.56.64.0/19 maxlen: 24
193.246.154.0/23 maxlen: 24
193.246.156.0/23 maxlen: 24
185.4.32.0/22 maxlen: 24
31.25.176.0/21 maxlen: 24
185.239.160.0/22 maxlen: 24
185.205.253.0/24 maxlen: 24
185.205.254.0/24 maxlen: 24
2a09:eac0::/29 maxlen: 29
2a05:9b00::/29 maxlen: 29
2a0b:c40::/29 maxlen: 29
2a02:5fc0::/32 maxlen: 48
2a05:a800::/29 maxlen: 29
2a02:5dc0::/32 maxlen: 32
2a06:3c00::/29 maxlen: 29
2a03:440::/32 maxlen: 32
2a0a:1280::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 18 Jul 2023 09:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fc:e7:4c:84:b5:60:88:05:25:c4:22:cf:2a:92:40:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Jun 27 12:49:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8f3fcbbbdd7138c535866bbe7c180089e5b0f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:7a:e4:a3:5a:ff:49:8c:73:5e:7e:51:5f:af:
a6:35:3e:fc:f1:d8:69:1a:17:6c:48:a3:14:d3:5f:
1f:dd:e9:ed:74:3d:f2:bb:b4:d8:dd:5d:89:13:d4:
2e:d6:9d:78:23:63:aa:74:2c:70:07:8d:9b:86:60:
55:70:b2:a6:7a:2d:4b:0d:b1:4c:0a:07:23:56:2f:
1f:64:74:98:2c:2c:a9:db:58:d1:f5:9e:2e:e6:1d:
59:90:79:57:6b:26:29:10:79:c9:db:61:84:91:82:
8d:7f:52:e7:34:c4:b9:34:64:dd:54:fc:5d:ef:2f:
ed:7c:1c:04:55:53:79:2a:03:cd:3c:92:99:4f:57:
c7:0a:ab:5c:8d:e8:4b:98:30:be:3f:10:04:de:28:
a5:e8:d1:87:05:1a:e8:fb:64:ac:c5:e5:d4:67:90:
74:8f:13:ea:12:9c:95:59:cf:d6:25:0d:6c:9c:0e:
40:9a:30:13:59:77:63:41:c6:ed:4e:ea:dc:a8:2f:
18:c0:7f:54:5a:cf:c7:96:13:0a:b9:82:a5:71:70:
11:1d:47:6c:d4:66:0a:3e:6d:13:3c:d6:0f:69:00:
30:a1:de:1d:a8:03:d9:00:1b:e7:d2:ee:af:5b:eb:
d2:fe:76:96:65:62:a1:b9:4a:51:02:63:62:24:ef:
13:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F3:FC:BB:BD:D7:13:8C:53:58:66:BB:E7:C1:80:08:9E:5B:0F:32
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/uPP8u73XE4xTWGa758GACJ5bDzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.25.176.0/21
37.122.219.0/24
46.28.160.0/21
89.40.84.0/22
91.242.148.0/22
109.235.16.0/21
176.56.64.0/19
185.4.32.0/22
185.5.84.0/22
185.10.248.0/22
185.70.152.0/22
185.83.132.0/22
185.176.104.0/22
185.205.253.0-185.205.254.255
185.228.124.0/22
185.239.160.0/22
193.246.154.0-193.246.157.255
IPv6:
2a02:5dc0::/32
2a02:5fc0::/32
2a03:440::/32
2a05:9b00::/29
2a05:a800::/29
2a06:3c00::/29
2a09:eac0::/29
2a0a:1280::/29
2a0b:c40::/29
Signature Algorithm: sha256WithRSAEncryption
4c:58:b7:42:5a:aa:25:f5:be:43:2b:46:1e:96:47:9d:14:f5:
97:c4:57:ba:86:fe:01:3d:17:22:6f:4f:b7:2b:f1:3f:a4:5e:
b9:c8:2d:7e:10:16:47:fe:d2:3c:28:1c:b5:70:f7:8d:8f:7f:
a0:b1:21:0b:1a:e7:98:26:39:92:63:44:a8:0d:7c:c6:1c:f6:
04:a2:0a:e3:62:66:47:00:e8:fd:db:62:cb:e6:ff:94:03:82:
f7:4f:8d:fb:d4:f3:3c:9c:a8:0b:38:27:1c:21:cf:da:5a:0f:
70:da:bb:34:2a:f4:0f:39:f0:90:ff:26:40:8e:02:f4:2c:1f:
30:79:e8:3b:ac:6d:35:95:5d:80:e0:89:9f:4e:76:38:33:78:
ee:df:82:8b:b1:41:07:b6:ac:30:44:7d:0d:2c:17:19:64:83:
05:62:d4:7e:76:30:45:ac:43:02:d1:03:d1:b5:c4:a2:5a:7d:
92:5a:08:23:23:c8:78:1d:ce:96:2e:a1:e6:12:be:78:da:e4:
00:51:47:4a:41:ff:bd:1e:9b:6f:b2:04:1a:6a:c3:9c:f7:80:
59:91:fa:1f:aa:2a:b5:f8:79:fd:41:d5:f2:31:ec:cc:d4:8c:
65:0e:36:bb:cc:56:0d:90:bc:b6:8b:92:2f:41:8e:11:02:89:
8c:61:8c:50
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAYj850yEtWCIBSXEIs8qkkCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YjMwMTExYjBiNzIwYTIwOWY3ODhjOGI5MGY2MDM4MGI0
NjVjMmUwHhcNMjMwNjI3MTI0OTU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGYzZmNiYmJkZDcxMzhjNTM1ODY2YmJlN2MxODAwODllNWIwZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgnrko1r/SYxzXn5RX6+mNT788dhp
GhdsSKMU018f3entdD3yu7TY3V2JE9Qu1p14I2OqdCxwB42bhmBVcLKmei1LDbFM
CgcjVi8fZHSYLCyp21jR9Z4u5h1ZkHlXayYpEHnJ22GEkYKNf1LnNMS5NGTdVPxd
7y/tfBwEVVN5KgPNPJKZT1fHCqtcjehLmDC+PxAE3iil6NGHBRro+2SsxeXUZ5B0
jxPqEpyVWc/WJQ1snA5AmjATWXdjQcbtTurcqC8YwH9UWs/HlhMKuYKlcXARHUds
1GYKPm0TPNYPaQAwod4dqAPZABvn0u6vW+vS/naWZWKhuUpRAmNiJO8TeQIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFLjz/Lu91xOMU1hmu+fBgAieWw8yMB8GA1UdIwQY
MBaAFJWzARGwtyCiCfeIyLkPYDgLRlwuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmIt
OTE2NDZiZjAxNTNkLzEvdVBQOHU3M1hFNHhUV0dhNzU4R0FDSjViRHpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmItOTE2NDZiZjAxNTNk
LzEvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHYBggrBgEFBQcBBwEB/wSByDCBxTB8BAIAATB2AwQDHxmw
AwQAJXrbAwQDLhygAwQCWShUAwQCW/KUAwQDbesQAwQFsDhAAwQCuQQgAwQCuQVU
AwQCuQr4AwQCuUaYAwQCuVOEAwQCubBoMAwDBAC5zf0DBAC5zf4DBAK55HwDBAK5
76AwDAMEAcH2mgMEAcH2nDBFBAIAAjA/AwUAKgJdwAMFACoCX8ADBQAqAwRAAwUD
KgWbAAMFAyoFqAADBQMqBjwAAwUDKgnqwAMFAyoKEoADBQMqCwxAMA0GCSqGSIb3
DQEBCwUAA4IBAQBMWLdCWqol9b5DK0YelkedFPWXxFe6hv4BPRcib0+3K/E/pF65
yC1+EBZH/tI8KBy1cPeNj3+gsSELGueYJjmSY0SoDXzGHPYEogrjYmZHAOj922LL
5v+UA4L3T4371PM8nKgLOCccIc/aWg9w2rs0KvQPOfCQ/yZAjgL0LB8weeg7rG01
lV2A4ImfTnY4M3ju34KLsUEHtqwwRH0NLBcZZIMFYtR+djBFrEMC0QPRtcSiWn2S
WggjI8h4Hc6WLqHmEr542uQAUUdKQf+9HptvsgQaasOc94BZkfofqiq1+Hn9QdXy
MezM1IxlDja7zFYNkLy2i5IvQY4RAomMYYxQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:18 2024 by rpki-client on console-fra.rpki-client.org