Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UcDUddoalq-zc3ttI4D4oeHyeww.roa
File: UcDUddoalq-zc3ttI4D4oeHyeww.roa (raw, json)
Hash identifier: F8L6Lsqt91Tlcdz478W4eWUdZn5KIvEMVjCKoq6m4e4=
Subject key identifier: 51:C0:D4:75:DA:1A:96:AF:B3:73:7B:6D:23:80:F8:A1:E1:F2:7B:0C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DE40A9B417719D1051D70595527E6B3E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UcDUddoalq-zc3ttI4D4oeHyeww.roa
Signing time: Mon 23 Jan 2023 10:50:57 +0000
ROA not before: Mon 23 Jan 2023 10:50:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58057
IP address blocks: 45.131.184.0/22 maxlen: 24
45.136.136.0/22 maxlen: 24
94.177.122.0/24 maxlen: 24
194.50.92.0/24 maxlen: 24
194.50.94.0/24 maxlen: 24
85.202.203.0/24 maxlen: 24
45.12.68.0/22 maxlen: 24
139.28.96.0/22 maxlen: 24
31.42.183.0/24 maxlen: 24
2a0e:97c0:260::/44 maxlen: 44
2a0c:3b80::/29 maxlen: 48
2a0e:97c1:200::/40 maxlen: 48
2001:7f8:119::/48 maxlen: 48
2a10:cc46:1000::/36 maxlen: 48
2a10:2f00:18f::/48 maxlen: 48
2a0e:97c0:170::/48 maxlen: 48
2a10:cc40:250::/44 maxlen: 48
2a0f:e404:102::/48 maxlen: 48
2a09:4c0::/29 maxlen: 64
2a10:cc41:800::/37 maxlen: 48
2a0e:97c4:100::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Jan 2023 16:09:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:40:a9:b4:17:71:9d:10:51:d7:05:95:52:7e:6b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 23 10:50:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51c0d475da1a96afb3737b6d2380f8a1e1f27b0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6d:f6:3f:03:2d:ee:e8:81:ad:1f:10:f6:60:
b4:5a:d2:1f:11:f3:88:c1:17:bb:ac:21:39:30:04:
0f:38:a8:b2:95:3c:61:c5:8a:54:2b:ea:d8:55:ed:
1f:07:8a:ce:1e:84:7a:9c:21:6c:93:0b:c5:6f:cf:
62:08:27:ff:f8:34:73:c9:98:f5:5a:fb:3c:d6:f7:
52:57:56:76:11:18:7b:27:43:79:66:c2:82:ec:63:
62:a0:b7:c6:6a:98:a6:75:da:b6:f5:b5:2d:dd:f3:
67:d4:c7:9f:c5:bc:0b:22:a5:26:00:f3:ed:8e:b3:
85:16:6d:eb:ed:4b:b0:37:61:d9:45:57:60:4c:33:
31:07:84:99:9a:d2:3b:f9:5a:b9:cb:62:e1:67:ce:
70:62:74:3f:59:e8:2a:f4:70:3e:e9:37:b5:c3:42:
12:ef:bb:0e:c0:52:c7:78:3c:fc:8f:0c:d5:03:f5:
a3:f2:21:3f:c6:c9:52:b0:9c:b3:e1:d2:58:3d:6c:
0e:14:41:e3:d8:4e:fc:2b:6d:d8:6c:02:2c:83:7e:
b8:77:e1:e9:65:63:d8:a2:ad:ce:fd:44:e2:5b:3f:
5a:33:f6:53:7f:f8:53:f9:48:63:e5:80:1b:84:6c:
ff:d8:34:bb:12:35:73:3f:a5:59:ec:9a:32:13:ee:
d4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C0:D4:75:DA:1A:96:AF:B3:73:7B:6D:23:80:F8:A1:E1:F2:7B:0C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/UcDUddoalq-zc3ttI4D4oeHyeww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.183.0/24
45.12.68.0/22
45.131.184.0/22
45.136.136.0/22
85.202.203.0/24
94.177.122.0/24
139.28.96.0/22
194.50.92.0/24
194.50.94.0/24
IPv6:
2001:7f8:119::/48
2a09:4c0::/29
2a0c:3b80::/29
2a0e:97c0:170::/48
2a0e:97c0:260::/44
2a0e:97c1:200::/40
2a0e:97c4:100::/44
2a0f:e404:102::/48
2a10:2f00:18f::/48
2a10:cc40:250::/44
2a10:cc41:800::/37
2a10:cc46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
bd:04:f4:88:2e:a5:31:25:35:6a:1c:40:1c:25:27:83:3e:2b:
17:81:34:1d:ff:6c:f9:59:26:8f:fa:ef:31:dd:4b:20:10:d6:
13:ee:5d:bb:a3:45:b5:d2:d4:76:21:b3:e0:7c:df:7e:1e:b8:
47:a4:8d:ab:eb:fc:ca:55:3a:58:e2:18:cb:78:cb:84:90:e9:
08:0b:76:55:fc:58:c4:73:af:62:bb:a2:e3:9b:91:c8:b4:f6:
00:8b:b5:08:3f:0c:77:22:84:a7:4a:c0:7d:ae:ed:b1:49:24:
c4:45:49:34:cf:a8:ab:bc:f9:69:c3:18:5a:b1:74:d8:c3:11:
4b:25:90:49:c0:12:13:d9:ab:50:88:1d:c7:d3:81:64:1a:c7:
8d:42:4b:fa:72:eb:4d:3e:48:9b:a8:f9:00:5c:75:db:14:0b:
48:b6:81:cf:22:16:23:bc:73:8e:a1:06:03:be:3d:93:8a:d3:
e3:22:6c:5c:3b:e8:a4:3d:42:cf:d7:7b:d4:8c:d5:c2:6b:a6:
88:80:18:62:78:ec:a1:b6:93:95:73:1c:65:61:8c:9d:a7:79:
f6:4c:8f:72:a0:07:fa:a7:8f:c0:46:33:77:9e:8f:00:4b:7a:
2a:04:83:4b:33:ea:5c:af:f9:30:35:db:8b:3e:bd:a0:8c:db:
ce:f2:b4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:32 2024 by rpki-client on console-fra.rpki-client.org