Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/uir0-euBF-1BxlNPjmJK_xOMaJo.roa
File: uir0-euBF-1BxlNPjmJK_xOMaJo.roa (raw, json)
Hash identifier: rorPawNz2tU9YW051g0mp9BburzO5YBgL9xMmMr/mqY=
Subject key identifier: BA:2A:F4:F9:EB:81:17:ED:41:C6:53:4F:8E:62:4A:FF:13:8C:68:9A
Certificate issuer: /CN=b169a49700e0c3b8e39a79130c987a5000ccffe2
Certificate serial: 01856D787DBF26E9A5CFFAF1BF7B68D9EB36
Authority key identifier: B1:69:A4:97:00:E0:C3:B8:E3:9A:79:13:0C:98:7A:50:00:CC:FF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sWmklwDgw7jjmnkTDJh6UADM_-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/uir0-euBF-1BxlNPjmJK_xOMaJo.roa
Signing time: Sun 01 Jan 2023 13:14:51 +0000
ROA not before: Sun 01 Jan 2023 13:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16302
IP address blocks: 217.119.32.0/20 maxlen: 20
77.246.192.0/20 maxlen: 20
79.134.96.0/19 maxlen: 19
80.248.240.0/20 maxlen: 20
185.163.14.0/23 maxlen: 23
188.127.192.0/19 maxlen: 19
185.9.8.0/22 maxlen: 22
2a00:1190::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Jul 2023 05:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:7d:bf:26:e9:a5:cf:fa:f1:bf:7b:68:d9:eb:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b169a49700e0c3b8e39a79130c987a5000ccffe2
Validity
Not Before: Jan 1 13:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba2af4f9eb8117ed41c6534f8e624aff138c689a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:d1:72:6e:12:be:3c:2d:45:1a:b1:56:6b:
92:13:33:c9:6b:3e:86:c5:df:7f:5b:4e:09:0b:04:
9c:0b:67:63:97:6f:b0:ad:a9:c5:bb:e8:d9:73:ce:
5b:80:8c:6d:85:d1:7e:e9:40:c2:6e:70:1e:cf:37:
21:08:ba:9c:c0:af:e7:db:e7:ab:cd:f1:57:c4:47:
e4:ad:bd:a9:b7:02:cf:3a:7e:a6:4a:30:c9:89:80:
cc:34:99:a6:40:fa:7f:64:c4:bd:da:6c:06:8f:73:
5c:a2:9c:a7:d6:93:86:e3:8a:f1:f5:12:03:15:93:
01:c7:7b:c7:5a:41:f6:4c:ba:0c:79:9e:bc:5d:3f:
05:8a:f5:8c:79:3d:1b:6a:d7:e1:d7:e5:d6:ed:12:
ea:76:53:c8:66:da:19:69:4c:2b:7f:ec:93:ea:2f:
82:27:60:a8:db:2f:89:4f:c1:8c:52:f9:e0:63:11:
92:b2:ac:e5:9f:47:36:25:c6:9b:6a:e6:ac:a7:2f:
93:6e:15:b9:f6:a7:62:b8:51:61:9b:21:a1:98:89:
27:0a:47:8c:6e:fa:0b:27:ba:d7:5f:04:e6:99:4b:
89:09:f6:02:a1:2d:5a:d8:f2:19:f2:aa:6c:4d:67:
ea:19:89:78:46:2b:35:00:bc:50:01:5f:f7:43:3d:
10:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2A:F4:F9:EB:81:17:ED:41:C6:53:4F:8E:62:4A:FF:13:8C:68:9A
X509v3 Authority Key Identifier:
keyid:B1:69:A4:97:00:E0:C3:B8:E3:9A:79:13:0C:98:7A:50:00:CC:FF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sWmklwDgw7jjmnkTDJh6UADM_-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/uir0-euBF-1BxlNPjmJK_xOMaJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/39081f-5003-41ed-b80a-3fae034c489e/1/sWmklwDgw7jjmnkTDJh6UADM_-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.192.0/20
79.134.96.0/19
80.248.240.0/20
185.9.8.0/22
185.163.14.0/23
188.127.192.0/19
217.119.32.0/20
IPv6:
2a00:1190::/32
Signature Algorithm: sha256WithRSAEncryption
5d:6e:e0:cd:fe:df:c4:0f:34:32:fc:ea:74:56:ab:be:5f:bd:
d7:30:ca:4d:b4:a0:7f:77:79:ce:7c:92:02:e8:d6:1e:bc:21:
87:d0:0f:59:55:73:00:b6:38:45:13:9f:50:35:d4:ee:63:16:
c8:32:3e:66:84:48:e3:e1:9c:d2:69:5f:ca:bb:4e:18:85:60:
fc:ed:4b:85:e5:25:7a:61:0a:0b:8f:b3:19:bd:bb:61:73:96:
3d:e7:f1:f1:16:e2:ab:76:4e:6f:e1:10:d4:13:39:10:f9:3a:
2b:58:eb:c5:33:42:cc:d0:16:d5:fb:73:0d:bc:85:1f:a9:ce:
9c:7c:f2:01:6b:54:5f:dd:c9:1f:6b:64:30:bf:8d:27:04:7e:
e7:6b:91:a9:c5:97:b3:c3:42:d1:fa:a6:e4:06:95:31:9f:ac:
2a:9a:e3:7f:26:56:67:69:97:21:54:fa:9a:c8:46:ba:da:42:
3b:d7:e3:f9:b1:3e:43:7b:5c:04:2c:10:b6:38:f4:ce:bd:a3:
73:3e:6a:f7:e2:80:e9:8f:87:9d:62:b5:36:c3:1f:28:03:1d:
e4:ea:c3:65:1d:d9:32:dc:49:cd:16:a2:74:1e:27:4b:4a:d2:
ae:e0:29:9a:4a:cf:b3:d5:e5:af:52:f8:07:9a:7f:a9:4b:7e:
76:87:a9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:58 2024 by rpki-client on console-fra.rpki-client.org