Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/UcRTSyEqznCORWSUBIcDRozgfu0.roa
File: UcRTSyEqznCORWSUBIcDRozgfu0.roa (raw, json)
Hash identifier: qx7jKOKbNKAy/1O3eDz7GCq8A9HKwBpZnbAIyurQbxI=
Subject key identifier: 51:C4:53:4B:21:2A:CE:70:8E:45:64:94:04:87:03:46:8C:E0:7E:ED
Certificate issuer: /CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0
Certificate serial: 018659BD6A40C09C394646CB70CF50F7D1F4
Authority key identifier: 9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/UcRTSyEqznCORWSUBIcDRozgfu0.roa
Signing time: Thu 16 Feb 2023 10:20:31 +0000
ROA not before: Thu 16 Feb 2023 10:20:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51825
IP address blocks: 46.31.98.0/23 maxlen: 23
46.31.96.0/21 maxlen: 21
46.31.96.0/23 maxlen: 23
46.31.96.0/24 maxlen: 24
46.31.97.0/24 maxlen: 24
46.31.98.0/24 maxlen: 24
46.31.102.0/23 maxlen: 23
46.31.103.0/24 maxlen: 24
46.31.100.0/23 maxlen: 23
46.31.99.0/24 maxlen: 24
46.31.100.0/24 maxlen: 24
46.31.101.0/24 maxlen: 24
46.31.102.0/24 maxlen: 24
185.24.206.0/23 maxlen: 23
185.24.204.0/24 maxlen: 24
185.24.204.0/22 maxlen: 22
185.24.204.0/23 maxlen: 23
185.24.205.0/24 maxlen: 24
185.24.206.0/24 maxlen: 24
185.24.207.0/24 maxlen: 24
213.137.65.0/24 maxlen: 24
213.137.66.0/24 maxlen: 24
213.137.67.0/24 maxlen: 24
213.137.70.0/24 maxlen: 24
213.137.71.0/24 maxlen: 24
213.137.72.0/23 maxlen: 23
147.234.92.0/22 maxlen: 22
147.234.96.0/21 maxlen: 21
213.137.64.0/24 maxlen: 24
213.137.64.0/20 maxlen: 20
2a02:5080::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:bd:6a:40:c0:9c:39:46:46:cb:70:cf:50:f7:d1:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5895e7f6a6d4aba9c961f713b2e79715f021f0
Validity
Not Before: Feb 16 10:20:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51c4534b212ace708e456494048703468ce07eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2a:f6:26:d2:86:b2:0a:15:a6:ce:99:6f:37:
dc:ac:8e:66:ec:cc:70:64:b6:6e:88:b5:ee:cf:18:
11:b4:60:be:f2:8b:45:6a:69:fb:bd:a7:f4:ab:a3:
0e:1e:82:61:43:d8:3f:d8:d5:eb:b0:60:2d:62:a3:
eb:e7:dc:5d:9c:fb:1d:65:ab:8c:14:d8:9b:de:1c:
49:6e:25:f5:62:4a:86:e2:3e:95:1c:ea:9f:1b:48:
0c:56:b1:0a:23:0a:6d:e2:70:73:75:ee:0d:7b:de:
75:66:11:a4:08:1b:85:59:86:0b:1e:29:ab:e3:b1:
b2:8f:8b:32:d0:f4:63:25:50:28:ed:c7:f9:cb:b2:
99:7c:7e:8c:4a:0a:5a:9c:16:59:69:9f:57:61:6e:
2c:e6:cf:20:b1:b2:ff:6c:cd:f3:ca:9a:5d:a4:67:
75:49:5a:11:c4:23:68:ea:64:5b:3c:a8:ae:97:e4:
d1:06:ff:8d:72:8b:89:0f:c2:21:a0:35:fc:e3:3b:
5a:20:c8:e9:ce:c2:a0:4d:bc:8d:d3:8c:eb:a1:69:
99:ae:36:a4:57:1c:78:e0:39:02:68:f4:c4:0b:8f:
2a:9d:53:a3:7e:e3:86:37:f9:79:0c:8c:40:79:fb:
47:97:8b:a8:9f:a9:7c:6a:d4:5b:58:c3:ac:99:c1:
6c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C4:53:4B:21:2A:CE:70:8E:45:64:94:04:87:03:46:8C:E0:7E:ED
X509v3 Authority Key Identifier:
keyid:9B:58:95:E7:F6:A6:D4:AB:A9:C9:61:F7:13:B2:E7:97:15:F0:21:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1iV5_am1KupyWH3E7LnlxXwIfA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/UcRTSyEqznCORWSUBIcDRozgfu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/134b82-bcfb-445c-bd42-fc2a97b7d53e/1/m1iV5_am1KupyWH3E7LnlxXwIfA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.31.96.0/21
147.234.92.0-147.234.103.255
185.24.204.0/22
213.137.64.0/20
IPv6:
2a02:5080::/32
Signature Algorithm: sha256WithRSAEncryption
65:b6:e2:db:52:22:68:6f:a7:9e:5d:7a:84:6e:db:fc:bc:14:
a5:22:4e:d7:33:a4:96:6c:0c:12:7a:80:bd:10:55:fc:d7:48:
bb:4b:99:df:31:e5:7f:20:cd:cc:35:fb:7f:e8:35:fa:48:44:
ee:a9:9c:f6:5a:d1:7e:60:23:86:f5:17:5f:c9:ba:dc:83:8d:
89:71:8e:47:ce:6d:c2:3e:b3:ee:81:c5:9d:8f:19:63:91:9f:
63:46:b5:af:2f:2c:38:d1:0a:7d:f7:5e:1a:e3:aa:09:fe:13:
03:71:a3:30:83:74:5f:9d:5f:8a:ec:8d:10:62:29:3a:69:24:
b1:2b:55:7f:a5:4f:a2:9d:eb:61:3b:cb:98:f8:bd:65:8e:89:
58:79:a6:f9:a8:d7:bc:75:d2:e1:5a:91:76:89:14:49:a3:86:
9b:9d:3a:85:54:84:fb:bc:a6:f7:5d:c4:00:a0:90:e1:12:eb:
46:3e:a8:a3:c9:cd:21:cf:48:1c:29:cb:4b:71:f2:37:ae:7e:
68:0f:91:df:1d:72:33:16:8a:97:42:11:cc:d4:a0:4d:da:98:
2b:9d:5f:bf:25:b3:e9:b3:67:8a:1f:ba:dd:80:87:6f:da:b9:
8d:71:2c:c6:26:59:8e:78:02:67:f0:04:ab:92:c8:48:c3:5a:
3e:75:2c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:04 2024 by rpki-client on console-fra.rpki-client.org