Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/uhVo2F5UC-0GNfpK9hJZzVG0Q6Q.roa
File: uhVo2F5UC-0GNfpK9hJZzVG0Q6Q.roa (raw, json)
Hash identifier: LoCe5hLOJoyMMTgCWIbdnIegUPIC9gActhIOsRk+HU8=
Subject key identifier: BA:15:68:D8:5E:54:0B:ED:06:35:FA:4A:F6:12:59:CD:51:B4:43:A4
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018CC8DCDBD578648B9A0634A14B3F7E3CCE
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/uhVo2F5UC-0GNfpK9hJZzVG0Q6Q.roa
Signing time: Tue 02 Jan 2024 06:29:26 +0000
ROA not before: Tue 02 Jan 2024 06:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25003
IP address blocks: 94.188.130.0/23 maxlen: 23
94.188.128.0/17 maxlen: 17
94.188.128.0/22 maxlen: 22
94.188.138.0/23 maxlen: 23
94.188.133.0/24 maxlen: 24
94.188.140.0/24 maxlen: 24
94.188.152.0/22 maxlen: 22
94.188.158.0/24 maxlen: 24
94.188.155.0/24 maxlen: 24
91.143.226.0/23 maxlen: 23
91.143.224.0/20 maxlen: 20
91.143.224.0/23 maxlen: 23
91.143.224.0/22 maxlen: 22
91.143.232.0/23 maxlen: 23
91.143.232.0/22 maxlen: 22
91.143.228.0/24 maxlen: 24
92.61.224.0/20 maxlen: 20
92.61.234.0/23 maxlen: 23
94.188.221.0/24 maxlen: 24
80.74.96.0/22 maxlen: 22
80.74.96.0/23 maxlen: 23
80.74.96.0/19 maxlen: 19
80.74.104.0/22 maxlen: 22
80.74.100.0/22 maxlen: 22
80.74.100.0/23 maxlen: 23
80.74.112.0/22 maxlen: 22
80.74.110.0/23 maxlen: 23
94.188.246.0/23 maxlen: 23
94.188.244.0/23 maxlen: 23
94.188.242.0/24 maxlen: 24
80.74.108.0/23 maxlen: 23
80.74.108.0/22 maxlen: 22
80.74.106.0/23 maxlen: 23
94.188.252.0/23 maxlen: 23
80.74.118.0/24 maxlen: 24
80.74.116.0/22 maxlen: 22
80.74.116.0/23 maxlen: 23
94.188.248.0/23 maxlen: 23
94.188.248.0/22 maxlen: 22
80.74.124.0/22 maxlen: 22
94.188.254.0/23 maxlen: 23
80.74.120.0/22 maxlen: 22
94.188.162.0/24 maxlen: 24
94.188.161.0/24 maxlen: 24
94.188.165.0/24 maxlen: 24
94.188.166.0/24 maxlen: 24
94.188.163.0/24 maxlen: 24
94.188.178.0/23 maxlen: 23
94.188.178.0/24 maxlen: 24
94.188.176.0/23 maxlen: 23
94.188.175.0/24 maxlen: 24
94.188.173.0/24 maxlen: 24
94.188.191.0/24 maxlen: 24
94.188.192.0/24 maxlen: 24
94.188.199.0/24 maxlen: 24
94.188.197.0/24 maxlen: 24
2a02:23b8::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 18 Jan 2024 10:50:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:db:d5:78:64:8b:9a:06:34:a1:4b:3f:7e:3c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Jan 2 06:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba1568d85e540bed0635fa4af61259cd51b443a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:96:45:2e:97:1a:2f:60:84:a6:9a:f9:83:b6:
a5:23:0a:8f:45:53:a9:40:3e:e4:c0:4e:16:af:e0:
00:ca:6b:4a:a4:f9:f6:4b:0a:6c:87:b1:64:66:76:
99:d8:b3:3b:76:7d:d9:e3:13:01:40:72:85:61:40:
08:22:6f:e0:08:dd:01:f8:e6:e2:68:b2:0e:b5:a8:
bf:7e:29:76:d8:85:7d:9d:ac:ea:bd:66:1c:8f:21:
96:3e:5b:e6:d1:4f:a2:cb:b3:4b:bb:db:c7:1c:e1:
8a:7f:dd:2b:70:42:e5:fd:bc:fc:df:3f:7b:72:d7:
6a:6b:c2:5b:8e:91:bc:cf:ac:17:05:6c:7d:45:4c:
97:69:03:ce:dc:ef:74:4a:82:fe:16:38:94:cb:d0:
e8:54:1a:eb:b2:9b:c5:a4:22:61:d2:6e:1e:cd:3b:
9e:a3:65:77:bf:1e:01:73:e4:1e:74:35:02:94:49:
33:08:6f:78:f3:aa:c7:1b:b1:6d:c2:3b:45:0c:68:
96:6a:e5:d6:0d:8f:35:08:30:be:c5:4e:c3:1c:8f:
bc:a6:f3:86:28:74:7b:52:22:ef:eb:cf:2c:99:3b:
27:0b:ba:5d:c5:db:fc:d2:65:6c:80:4c:ca:26:a7:
52:e6:6e:55:77:fe:6c:16:4f:72:48:75:24:0e:4d:
43:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:15:68:D8:5E:54:0B:ED:06:35:FA:4A:F6:12:59:CD:51:B4:43:A4
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/uhVo2F5UC-0GNfpK9hJZzVG0Q6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.74.96.0/19
91.143.224.0/20
92.61.224.0/20
94.188.128.0/17
IPv6:
2a02:23b8::/32
Signature Algorithm: sha256WithRSAEncryption
86:d3:0d:93:8f:87:ba:d1:63:62:40:35:80:2a:f0:f2:41:36:
a1:3d:74:36:c4:05:74:96:e9:71:1f:be:d8:69:66:83:78:c6:
a6:29:23:69:e0:a5:24:4d:e8:4c:46:6c:98:b9:e6:98:88:05:
6f:c2:be:1e:71:c3:67:87:d0:31:ba:e4:e4:b4:e4:4a:8c:4e:
b2:76:26:f9:f1:27:46:c5:2b:59:1e:0e:6c:60:e9:ed:71:bf:
1c:3a:30:e2:3a:16:e8:f1:74:c7:8e:03:17:ad:ea:e3:16:9f:
ef:1a:89:81:b6:a8:ac:ec:5b:b8:7e:eb:fc:a5:8b:c8:6f:f2:
60:f8:1f:c4:9a:4a:01:15:48:07:0e:88:63:30:03:0f:6e:00:
d2:35:55:5f:52:85:86:71:a7:58:c7:3e:7e:39:38:c7:44:cc:
7a:2e:80:00:6b:1e:1a:a4:5f:0e:2c:f1:4e:fd:5c:2f:f4:d8:
04:1b:af:db:eb:47:1b:40:c8:12:6b:f1:cd:02:7b:48:43:33:
dc:0a:16:15:90:3c:d2:c8:f9:d9:fb:1d:7d:fe:c1:c3:ce:25:
e7:5f:44:df:f0:88:2e:05:85:44:77:9b:b2:e7:25:31:ad:a9:
43:d0:14:c9:9c:1d:b9:43:52:02:1d:1a:a8:5d:f9:c1:7b:60:
c0:dd:13:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:07 2025 by rpki-client