Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/ubayIEAEd1iuZX0JPjNiFel8BuI.roa
File: ubayIEAEd1iuZX0JPjNiFel8BuI.roa (raw, json)
Hash identifier: E6NL08oGgBa6oqFY2P0Q0JYcIaGhDgHzeWVJmOseZt4=
Subject key identifier: B9:B6:B2:20:40:04:77:58:AE:65:7D:09:3E:33:62:15:E9:7C:06:E2
Certificate issuer: /CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Certificate serial: 01879A200495C7F2F45654D369EC70B2623E
Authority key identifier: 3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/ubayIEAEd1iuZX0JPjNiFel8BuI.roa
Signing time: Wed 19 Apr 2023 15:26:42 +0000
ROA not before: Wed 19 Apr 2023 15:26:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12678
IP address blocks: 159.253.176.0/22 maxlen: 22
159.253.180.0/24 maxlen: 24
185.153.128.0/22 maxlen: 24
159.253.181.0/24 maxlen: 24
31.222.64.0/22 maxlen: 23
31.222.70.0/24 maxlen: 24
31.222.70.0/23 maxlen: 23
31.222.71.0/24 maxlen: 24
31.222.66.0/23 maxlen: 24
31.222.68.0/23 maxlen: 23
31.222.72.0/22 maxlen: 24
31.222.78.0/23 maxlen: 24
31.222.76.0/23 maxlen: 23
2a00:aea0:213::/48 maxlen: 48
2a00:aea0:113::/48 maxlen: 48
2a00:aea0:211::/48 maxlen: 48
2a00:aea0:111::/48 maxlen: 48
2a00:aea0:212::/48 maxlen: 48
2a00:aea0:112::/48 maxlen: 48
2a00:aea0:6500::/40 maxlen: 40
2a00:aea0:600::/40 maxlen: 40
2a00:aea0:200::/40 maxlen: 40
2a00:aea0:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:20:04:95:c7:f2:f4:56:54:d3:69:ec:70:b2:62:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eecd4caa9a3a57715e3d5d66bccd7185afe40da
Validity
Not Before: Apr 19 15:26:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9b6b22040047758ae657d093e336215e97c06e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:13:49:97:d5:59:30:79:f8:b5:4a:39:e0:1a:
54:f2:fa:9d:6d:a0:89:55:5c:1b:c9:1b:b7:2f:7f:
40:c8:f1:62:a8:3c:21:47:f1:03:71:e2:ba:41:b1:
63:39:85:b1:7e:6e:03:a2:ff:15:77:ac:58:4f:57:
11:0c:85:fe:38:4e:af:c7:f4:b4:8a:46:b6:84:a1:
1e:f0:e4:04:94:1c:ff:5c:b0:8f:46:ac:18:20:a1:
a3:1b:3e:44:53:ec:b5:87:82:6b:c5:90:c7:d9:8a:
5a:d4:8c:dd:ad:88:a8:b9:32:7a:f1:47:d0:95:cc:
7e:c2:4f:9a:df:05:b6:90:08:6a:00:e6:d7:86:d8:
37:91:f6:3a:78:93:87:e5:4e:2c:e3:fc:c5:76:19:
d9:8e:77:05:dd:85:38:73:e8:9a:41:21:06:90:92:
aa:14:e4:9b:4c:0a:85:42:2f:b6:83:28:a4:41:a7:
5c:c3:8f:5c:31:2c:2f:c9:7f:40:b8:bb:99:d9:e0:
15:3a:9e:25:a9:01:c2:28:7e:df:0f:62:f7:24:00:
3b:ad:37:46:b8:7f:87:92:04:a1:5c:ab:ae:09:23:
49:5b:7e:e7:b5:d3:0d:57:b7:e0:9b:71:4b:f4:b6:
87:a6:dc:d4:cb:e3:e8:fe:5f:37:b6:17:75:2e:71:
a4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B6:B2:20:40:04:77:58:AE:65:7D:09:3E:33:62:15:E9:7C:06:E2
X509v3 Authority Key Identifier:
keyid:3E:EC:D4:CA:A9:A3:A5:77:15:E3:D5:D6:6B:CC:D7:18:5A:FE:40:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PuzUyqmjpXcV49XWa8zXGFr-QNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/ubayIEAEd1iuZX0JPjNiFel8BuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/3645b2-af2e-4c0d-9812-69eec5b4b505/1/PuzUyqmjpXcV49XWa8zXGFr-QNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.64.0/20
159.253.176.0-159.253.181.255
185.153.128.0/22
IPv6:
2a00:aea0:100::-2a00:aea0:2ff:ffff:ffff:ffff:ffff:ffff
2a00:aea0:600::/40
2a00:aea0:6500::/40
Signature Algorithm: sha256WithRSAEncryption
37:02:19:81:42:30:d8:3f:88:de:22:30:ad:9a:4b:9a:c5:92:
fe:21:fb:c1:46:2b:8a:a2:7e:d1:35:b1:b9:82:d1:c8:a2:6c:
63:a3:5a:23:32:04:13:96:23:12:0c:8d:ab:7c:bb:fc:f2:a3:
77:7a:55:28:79:33:9f:4a:c7:60:58:0a:1d:43:86:0a:fa:7e:
cb:b2:70:0d:dc:38:f2:3d:15:9f:63:e9:5a:80:7c:49:c2:62:
39:0e:9d:01:b3:2a:e6:f6:48:54:6e:19:8c:94:48:37:dd:aa:
f7:9f:8a:cb:25:46:6d:78:67:10:24:87:ff:e8:1e:d4:a6:98:
30:0c:85:7d:ab:eb:4f:8d:93:ed:2c:15:ea:5d:6d:03:72:de:
4e:ed:15:8d:5e:f1:6b:ea:dd:21:dc:ca:a1:ee:65:1c:78:3f:
62:f6:b7:d3:91:5e:70:59:61:21:7a:f1:1f:fe:5a:1e:09:f8:
f0:1b:7b:19:4e:f5:6f:d6:20:5d:73:44:7e:df:1c:99:d8:6d:
fd:a2:44:9e:ff:b0:98:ea:23:e7:ce:a3:45:5d:9f:c2:ce:26:
7e:6c:fd:2c:af:a1:fa:aa:cc:c8:90:5c:0d:ea:7c:f8:64:0d:
43:f5:3b:6d:91:e1:28:aa:a4:94:76:c5:85:97:59:c4:5f:7c:
e1:b2:51:18
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org