Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/UtUQp5wpS6yiMq5qgtwA7S7nLbo.roa
File: UtUQp5wpS6yiMq5qgtwA7S7nLbo.roa (raw, json)
Hash identifier: YkgMmk7o9NS5+Gd5KMEiaPyFzIWqHejOr7rCsSYxf7o=
Subject key identifier: 52:D5:10:A7:9C:29:4B:AC:A2:32:AE:6A:82:DC:00:ED:2E:E7:2D:BA
Certificate issuer: /CN=c6583f58c7110ad4cc609f4ffb7cab2f80c83581
Certificate serial: 0192521F318507B9DFD3780EE7211D5D8DF4
Authority key identifier: C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/UtUQp5wpS6yiMq5qgtwA7S7nLbo.roa
Signing time: Thu 03 Oct 2024 11:23:48 +0000
ROA not before: Thu 03 Oct 2024 11:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15659
IP address blocks: 80.202.0.0/16 maxlen: 16
84.48.0.0/18 maxlen: 18
84.49.0.0/16 maxlen: 16
89.10.0.0/16 maxlen: 16
89.11.0.0/17 maxlen: 17
213.145.160.0/19 maxlen: 19
213.187.160.0/19 maxlen: 19
213.187.190.0/24 maxlen: 24
217.13.0.0/19 maxlen: 19
2a04:980::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 07 Oct 2024 08:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:52:1f:31:85:07:b9:df:d3:78:0e:e7:21:1d:5d:8d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6583f58c7110ad4cc609f4ffb7cab2f80c83581
Validity
Not Before: Oct 3 11:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52d510a79c294baca232ae6a82dc00ed2ee72dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:72:37:d9:e0:d9:64:e1:26:8d:1e:fa:d3:8b:
a7:4c:d0:50:c9:09:58:a7:92:d9:80:98:2d:37:34:
10:38:9f:e8:a8:73:f5:cd:f4:fc:db:7c:13:79:00:
f3:2c:ad:d8:2d:3a:ce:bf:9a:39:55:6e:b4:13:dd:
63:fc:61:b6:b1:bc:bb:c1:bc:f2:e4:23:f3:6c:c5:
e8:1a:93:e4:9e:cd:89:45:a5:5e:ef:79:e1:e3:20:
6d:87:21:25:29:8a:ae:2f:b9:98:83:09:41:85:ec:
d2:70:f0:33:a8:ed:14:37:97:31:5c:24:ff:25:b0:
eb:0c:06:c8:52:a1:6c:74:7e:46:90:6e:6a:9f:67:
b1:7b:47:81:73:50:11:20:80:a3:10:39:9a:c3:60:
13:6e:e2:f8:43:42:95:cf:ad:51:f1:54:5e:05:c9:
ea:c2:b7:e6:b0:78:70:63:86:48:43:d6:c2:31:c0:
3f:f7:be:98:bc:20:fe:ce:b9:ba:f3:9e:c9:a3:3d:
5f:cf:e8:79:65:42:6d:46:24:ea:83:6a:1e:ef:18:
ed:b3:24:ca:51:c6:a2:5e:e3:0b:69:c3:96:d1:86:
e6:20:3a:54:d6:61:60:05:ae:49:25:63:b1:ce:56:
8c:02:e3:48:8b:01:3a:e2:4e:ca:cf:1e:8c:65:5f:
f0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D5:10:A7:9C:29:4B:AC:A2:32:AE:6A:82:DC:00:ED:2E:E7:2D:BA
X509v3 Authority Key Identifier:
keyid:C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/UtUQp5wpS6yiMq5qgtwA7S7nLbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.202.0.0/16
84.48.0.0/18
84.49.0.0/16
89.10.0.0-89.11.127.255
213.145.160.0/19
213.187.160.0/19
217.13.0.0/19
IPv6:
2a04:980::/29
Signature Algorithm: sha256WithRSAEncryption
74:c2:4f:2c:47:44:0a:77:2b:fa:ec:9e:85:0e:36:fb:2f:9e:
4d:e0:ff:a3:21:6d:5a:48:39:a4:72:82:47:2b:50:c1:db:9b:
6f:fb:20:72:61:ad:0f:78:1e:c3:a7:db:b7:92:6c:62:f6:9a:
fc:7c:cd:73:07:27:7e:b0:d7:aa:6e:1a:2a:1a:e6:58:aa:67:
da:37:4a:66:2f:a7:e5:66:6f:24:82:72:d8:07:52:ab:ab:1b:
89:ef:f6:67:7f:b8:b0:93:1c:db:6e:60:60:35:ac:4d:c6:41:
52:b5:10:5b:83:48:2e:48:5d:ba:f7:81:8d:34:dc:ef:af:67:
6c:36:c0:66:56:2e:b6:60:4b:d1:eb:6c:8b:50:7b:4a:52:40:
0d:cf:43:4a:87:d3:22:f2:f1:15:2e:37:04:ea:d2:2c:59:be:
50:9d:a2:b4:72:1b:6f:44:93:aa:7f:dd:18:a7:fc:3f:bd:25:
99:b0:da:ca:16:17:f3:8c:30:6c:68:b3:a6:39:4d:f7:eb:bb:
1c:98:21:2d:21:77:85:c9:d8:f0:1c:37:53:8f:69:c3:20:c9:
a8:23:f4:a3:ea:21:be:a4:07:e5:03:19:25:c4:9c:67:fc:55:
74:02:36:08:5b:c3:9d:8d:62:2d:8b:58:7e:2c:48:fa:0e:c2:
e6:90:ce:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:01:50 2025 by rpki-client