Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/U5YeHX2jBlahrEu6TncBly_Qp68.roa
File: U5YeHX2jBlahrEu6TncBly_Qp68.roa (raw, json)
Hash identifier: iW+mDcYRsKwj9WIUDInoWqIbttR2Ybh8zjt8Jt5NTtw=
Subject key identifier: 53:96:1E:1D:7D:A3:06:56:A1:AC:4B:BA:4E:77:01:97:2F:D0:A7:AF
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018600FEDC98826A127B75C08C7095920EF9
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/U5YeHX2jBlahrEu6TncBly_Qp68.roa
Signing time: Mon 30 Jan 2023 04:45:47 +0000
ROA not before: Mon 30 Jan 2023 04:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 85.204.18.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
188.213.0.0/24 maxlen: 24
89.40.36.0/24 maxlen: 24
86.105.4.0/24 maxlen: 24
46.102.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Feb 2023 17:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:00:fe:dc:98:82:6a:12:7b:75:c0:8c:70:95:92:0e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 30 04:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53961e1d7da30656a1ac4bba4e7701972fd0a7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:6b:c7:c7:f3:27:6f:cd:e1:ac:bd:da:01:
c0:10:6d:54:ee:72:3c:fc:54:88:35:4a:02:af:a2:
b4:fb:a6:ce:68:7f:98:07:20:4a:bb:48:16:99:8d:
ee:20:f5:48:aa:eb:f0:37:01:e5:c4:d0:ef:9d:20:
ef:f7:74:84:7a:46:c4:9b:0a:33:a8:58:55:22:9a:
61:47:ea:72:0f:76:30:5e:64:5a:71:04:47:f8:5b:
12:c2:11:53:0a:7d:f0:6d:a2:25:f2:a1:f4:c9:23:
e2:c4:3a:19:77:9b:59:7c:72:d4:07:3e:ed:7a:f6:
6a:0a:37:2b:5f:d9:40:e8:d2:4e:42:8a:94:6d:7e:
d2:3e:c9:0b:14:39:f5:d4:34:8f:ed:f4:bd:03:a5:
96:86:4e:54:2b:c8:f8:78:44:08:7c:48:3c:f1:ed:
6a:c4:b7:0b:92:79:25:10:4b:ad:07:ee:da:28:ea:
28:41:87:ce:40:6a:bc:8a:70:5b:9a:7f:b0:68:9c:
88:da:5d:2d:73:fc:df:fc:ba:41:b1:8b:db:6c:b1:
42:07:52:ad:8e:a8:45:ce:43:e8:22:ab:0e:60:67:
64:2e:cc:45:b0:d2:c9:d0:8c:26:10:90:08:7f:79:
04:bd:c2:88:6d:05:14:5f:91:0b:65:f5:94:5e:2a:
b4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:96:1E:1D:7D:A3:06:56:A1:AC:4B:BA:4E:77:01:97:2F:D0:A7:AF
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/U5YeHX2jBlahrEu6TncBly_Qp68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
85.204.18.0/24
86.105.4.0/24
89.36.140.0/24
89.40.36.0/24
188.213.0.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:29:71:96:d1:6a:a5:00:a0:39:97:d8:aa:11:5f:6e:01:16:
76:58:02:3d:b9:9e:a7:23:c1:67:b1:1b:9a:18:71:f6:42:dc:
f8:42:09:73:e5:14:a0:a0:52:38:fd:43:7d:d3:77:28:a3:3d:
59:03:84:51:78:a0:78:bc:c9:ea:aa:5b:9a:69:07:17:72:14:
a2:ff:52:da:11:6a:f7:3e:81:68:a8:8e:3d:bb:e3:c4:5b:61:
a0:50:d1:27:be:f0:74:b4:ba:87:4b:9c:dd:d6:5e:d9:43:6b:
ef:cc:31:bd:40:51:c4:72:db:ae:b6:41:64:be:e6:b1:0f:b5:
4c:94:db:1c:5f:e7:c3:e3:0f:aa:72:ba:01:f4:5a:b7:34:af:
17:a5:87:1c:d9:0a:84:1e:8f:51:2f:75:93:49:9a:e2:fe:9a:
45:0f:db:fb:00:4f:5b:33:ab:db:af:3d:c7:ad:d1:fc:b0:96:
ca:fa:e7:0a:30:4d:fb:c0:f3:a6:d6:6e:42:2c:e9:b4:72:f8:
03:6f:27:b9:41:26:d0:99:5a:69:b0:bb:9e:3d:1b:b1:b5:6c:
f7:12:59:54:e3:9d:75:e8:1d:d1:d6:88:59:19:5b:84:36:0f:
1a:71:4a:ac:c9:98:27:3d:71:29:b3:18:66:3e:a4:67:64:43:
b0:f8:df:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org