Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UufmY2Uov2uL6W7SPgfKcY5PqhU.roa
File: UufmY2Uov2uL6W7SPgfKcY5PqhU.roa (raw, json)
Hash identifier: IeIXprX1i7DB5d6QoXMAvN2w3Fq+KMQ9mwAomg8hj2Q=
Subject key identifier: 52:E7:E6:63:65:28:BF:6B:8B:E9:6E:D2:3E:07:CA:71:8E:4F:AA:15
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 018CC3B73D8A955D568ED93A23AF5A289C5C
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UufmY2Uov2uL6W7SPgfKcY5PqhU.roa
Signing time: Mon 01 Jan 2024 06:30:15 +0000
ROA not before: Mon 01 Jan 2024 06:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 328126
IP address blocks: 80.15.255.0/24 maxlen: 32
80.15.254.0/24 maxlen: 32
90.84.143.0/24 maxlen: 32
90.84.148.0/24 maxlen: 32
90.84.153.0/24 maxlen: 32
80.15.243.0/24 maxlen: 32
80.15.244.0/24 maxlen: 32
80.15.245.0/24 maxlen: 32
80.15.246.0/24 maxlen: 32
80.15.242.0/24 maxlen: 32
80.15.247.0/24 maxlen: 32
80.15.251.0/24 maxlen: 32
80.15.248.0/24 maxlen: 32
80.15.252.0/24 maxlen: 32
80.15.249.0/24 maxlen: 32
80.15.253.0/24 maxlen: 32
80.15.250.0/24 maxlen: 32
2a01:c9c0:c008::/48 maxlen: 128
2a01:c9c0:c01e::/48 maxlen: 128
2a01:c9c0:c01c::/48 maxlen: 128
2a01:c9c0:c012::/48 maxlen: 128
2a01:c9c0:c000::/48 maxlen: 128
2a01:c9c0:c016::/48 maxlen: 128
2a01:c9c0:c014::/48 maxlen: 128
2a01:c9c0:c00a::/48 maxlen: 128
2a01:c9c0:c018::/48 maxlen: 128
2a01:c9c0:c00c::/48 maxlen: 128
2a01:c9c0:c002::/48 maxlen: 128
2a01:c9c0:c010::/48 maxlen: 128
2a01:c9c0:c006::/48 maxlen: 128
2a01:c9c0:c004::/48 maxlen: 128
2a01:c9c0:c01a::/48 maxlen: 128
Validation: Failed, certificate revoked on Fri 01 Mar 2024 06:42:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:3d:8a:95:5d:56:8e:d9:3a:23:af:5a:28:9c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 06:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52e7e6636528bf6b8be96ed23e07ca718e4faa15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b6:0b:ca:e0:a6:4c:fa:b1:ad:bd:74:37:4f:
a1:ed:6f:a2:1a:13:51:91:27:be:25:45:69:ee:78:
30:0b:f1:3e:8d:78:56:8c:82:2a:0d:55:48:1c:c0:
e8:0a:a7:dd:2e:04:9d:9b:13:1e:06:6a:c1:24:ce:
51:d6:79:ee:9e:d1:a8:5d:00:77:10:37:68:d2:47:
4a:38:af:62:8d:7a:1d:80:b6:da:46:c3:0e:36:fc:
7a:95:b7:d2:95:78:0d:0a:68:aa:e9:d0:34:b2:60:
2d:2e:14:11:f7:f8:b1:63:83:c8:cd:07:fd:d9:48:
88:c9:d7:39:04:88:83:18:e2:c2:85:32:53:7e:f8:
5e:88:72:3a:92:ce:bc:11:df:2f:e8:b4:f3:bc:b8:
1f:a6:03:18:41:49:26:4e:d5:ec:a5:12:86:41:bd:
a0:0e:29:8a:e7:bc:92:78:37:7d:94:40:be:dc:9e:
f8:2e:db:27:ad:bd:c6:9d:33:e2:85:06:d8:1f:5f:
e1:f9:19:e8:10:c9:06:b2:7b:99:87:d0:45:05:db:
a5:e4:66:85:fb:a8:d9:c7:b7:9d:9e:57:ba:5e:06:
78:da:70:f4:65:74:0e:e9:6f:fb:54:f8:2d:05:e9:
d6:d0:ea:ac:e6:53:4e:8b:9a:07:40:92:ea:62:57:
ca:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E7:E6:63:65:28:BF:6B:8B:E9:6E:D2:3E:07:CA:71:8E:4F:AA:15
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/UufmY2Uov2uL6W7SPgfKcY5PqhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.15.242.0-80.15.255.255
90.84.143.0/24
90.84.148.0/24
90.84.153.0/24
IPv6:
2a01:c9c0:c000::/48
2a01:c9c0:c002::/48
2a01:c9c0:c004::/48
2a01:c9c0:c006::/48
2a01:c9c0:c008::/48
2a01:c9c0:c00a::/48
2a01:c9c0:c00c::/48
2a01:c9c0:c010::/48
2a01:c9c0:c012::/48
2a01:c9c0:c014::/48
2a01:c9c0:c016::/48
2a01:c9c0:c018::/48
2a01:c9c0:c01a::/48
2a01:c9c0:c01c::/48
2a01:c9c0:c01e::/48
Signature Algorithm: sha256WithRSAEncryption
97:2e:75:71:3f:43:6f:02:94:a7:c7:30:35:be:d6:b3:49:06:
66:1c:7f:ec:4b:b7:fe:99:d9:44:9a:fb:45:92:83:98:07:3c:
cf:aa:a4:1b:c6:33:b1:04:49:26:f6:2c:a1:66:02:8a:6c:dc:
97:22:46:bf:ba:e8:05:f8:77:5b:1a:12:a8:2a:1c:85:b7:90:
6b:85:fc:cc:eb:cc:02:74:e1:ae:19:9e:5d:be:5a:ec:2c:0f:
f7:99:15:50:d1:b7:eb:59:61:a1:36:7e:63:ed:07:9c:59:79:
6e:97:3a:23:cd:59:1b:1c:9c:b5:4f:82:eb:11:b3:f6:9b:11:
e8:6a:ef:d3:99:c0:ab:08:aa:07:c8:73:64:14:78:b4:60:8c:
63:07:68:41:e2:3a:9f:41:1c:83:d2:8f:73:fa:b8:88:13:76:
a3:80:9e:30:08:9c:35:e4:06:9c:89:e2:e8:72:ee:95:98:3a:
41:d3:3d:86:73:69:d5:30:14:01:63:84:18:12:e7:f4:30:da:
d3:17:fa:a5:69:75:25:71:05:d7:4f:d7:77:ab:82:56:9c:e3:
03:54:84:89:6b:13:fa:bc:6c:92:b7:59:86:e8:f4:d5:55:68:
5d:fb:f9:a4:7d:dd:5c:25:50:46:b4:d5:47:24:13:ae:5e:c4:
fb:69:13:64
-----BEGIN CERTIFICATE-----
MIIFqjCCBJKgAwIBAgISAYzDtz2KlV1Wjtk6I69aKJxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZjA5YmEzM2I1YWU1ODFiMGQyOTMyMzI0OTMxNGY3NmFh
MTA1MTEwHhcNMjQwMTAxMDYzMDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmU3ZTY2MzY1MjhiZjZiOGJlOTZlZDIzZTA3Y2E3MThlNGZhYTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLYLyuCmTPqxrb10N0+h7W+iGhNR
kSe+JUVp7ngwC/E+jXhWjIIqDVVIHMDoCqfdLgSdmxMeBmrBJM5R1nnuntGoXQB3
EDdo0kdKOK9ijXodgLbaRsMONvx6lbfSlXgNCmiq6dA0smAtLhQR9/ixY4PIzQf9
2UiIydc5BIiDGOLChTJTfvheiHI6ks68Ed8v6LTzvLgfpgMYQUkmTtXspRKGQb2g
DimK57ySeDd9lEC+3J74Ltsnrb3GnTPihQbYH1/h+RnoEMkGsnuZh9BFBdul5GaF
+6jZx7ednle6XgZ42nD0ZXQO6W/7VPgtBenW0Oqs5lNOi5oHQJLqYlfKBwIDAQAB
o4ICtjCCArIwHQYDVR0OBBYEFFLn5mNlKL9ri+lu0j4HynGOT6oVMB8GA1UdIwQY
MBaAFDrwm6M7WuWBsNKTIySTFPdqoQURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQt
NDU5MzVmNTA2YTEyLzEvVXVmbVkyVW92MnVMNlc3U1BnZktjWTVQcWhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8zM2Q1ZDEtYzQ1MC00MTNiLWFmZTQtNDU5MzVmNTA2YTEy
LzEvT3ZDYm96dGE1WUd3MHBNakpKTVU5MnFoQlJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHLBggrBgEFBQcBBwEB/wSBuzCBuDAlBAIAATAfMAsDBAFQ
D/IDAwRQAAMEAFpUjwMEAFpUlAMEAFpUmTCBjgQCAAIwgYcDBwAqAcnAwAADBwAq
AcnAwAIDBwAqAcnAwAQDBwAqAcnAwAYDBwAqAcnAwAgDBwAqAcnAwAoDBwAqAcnA
wAwDBwAqAcnAwBADBwAqAcnAwBIDBwAqAcnAwBQDBwAqAcnAwBYDBwAqAcnAwBgD
BwAqAcnAwBoDBwAqAcnAwBwDBwAqAcnAwB4wDQYJKoZIhvcNAQELBQADggEBAJcu
dXE/Q28ClKfHMDW+1rNJBmYcf+xLt/6Z2USa+0WSg5gHPM+qpBvGM7EESSb2LKFm
Aops3JciRr+66AX4d1saEqgqHIW3kGuF/MzrzAJ04a4Znl2+WuwsD/eZFVDRt+tZ
YaE2fmPtB5xZeW6XOiPNWRscnLVPgusRs/abEehq79OZwKsIqgfIc2QUeLRgjGMH
aEHiOp9BHIPSj3P6uIgTdqOAnjAInDXkBpyJ4uhy7pWYOkHTPYZzadUwFAFjhBgS
5/Qw2tMX+qVpdSVxBddP13erglac4wNUhIlrE/q8bJK3WYbo9NVVaF37+aR93Vwl
UEa01UckE65exPtpE2Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:19 2024 by rpki-client on console-ams.rpki-client.org