Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/uyZVcTQ3XYJZCIxcF26ds-Bcbpo.roa
File: uyZVcTQ3XYJZCIxcF26ds-Bcbpo.roa (raw, json)
Hash identifier: wiWUIddoahLvr6t60vvwApwvu6lB6yKrZLf8YjiZwy4=
Subject key identifier: BB:26:55:71:34:37:5D:82:59:08:8C:5C:17:6E:9D:B3:E0:5C:6E:9A
Certificate issuer: /CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Certificate serial: 018F854B235E02C606845F648684421D1F55
Authority key identifier: F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/uyZVcTQ3XYJZCIxcF26ds-Bcbpo.roa
Signing time: Fri 17 May 2024 06:44:05 +0000
ROA not before: Fri 17 May 2024 06:44:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210906
IP address blocks: 86.104.215.0/24 maxlen: 24
86.104.227.0/24 maxlen: 24
89.32.204.0/24 maxlen: 24
89.33.83.0/24 maxlen: 24
89.47.34.0/24 maxlen: 24
162.218.157.0/24 maxlen: 24
162.218.158.0/24 maxlen: 24
193.200.96.0/23 maxlen: 23
194.26.149.0/24 maxlen: 24
194.29.67.0/24 maxlen: 24
194.29.70.0/24 maxlen: 24
194.29.80.0/24 maxlen: 24
212.102.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 13:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:85:4b:23:5e:02:c6:06:84:5f:64:86:84:42:1d:1f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5fb32d2266b1f9bce57cac98bc0247f2c9197f2
Validity
Not Before: May 17 06:44:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb26557134375d8259088c5c176e9db3e05c6e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:24:cf:11:2a:75:5e:2e:65:c7:33:c9:83:2d:
72:5c:1f:ce:21:91:3d:d6:d6:06:0f:98:25:66:db:
87:10:e0:9d:bc:27:ad:be:0e:10:04:5a:9b:78:4d:
03:44:43:48:d8:27:24:8e:98:9c:f2:1f:e0:b7:8f:
03:20:85:c1:51:b3:ed:90:c0:6e:83:49:9a:1f:08:
77:bf:78:4d:85:54:f3:8b:76:9c:b0:11:96:f7:d2:
c2:47:3f:0c:84:1b:fb:bd:7e:a5:cf:0a:dc:f9:b6:
02:7a:fe:9b:b1:00:6b:a3:bb:7b:c3:5e:55:bd:45:
b1:3d:ea:42:1c:15:f5:b5:8c:c1:4b:6d:e7:08:cc:
5d:44:8a:40:9a:7f:30:b1:b3:8a:6d:fb:d3:23:ce:
29:d1:fd:bc:72:da:ff:15:b7:2f:87:22:81:5f:18:
27:91:0c:bb:5f:69:f3:57:03:b8:0c:7b:1d:b8:fb:
98:1f:9e:9e:c2:ad:5d:87:d8:ea:7e:14:84:d3:1d:
9c:32:ed:13:da:44:62:af:fe:27:d1:76:59:4e:70:
41:62:5e:b0:e4:62:98:75:11:ef:de:ff:97:76:51:
af:a1:5f:f4:79:ce:cc:bf:07:a6:d9:70:82:73:7a:
2d:5e:a2:06:63:62:4f:e5:51:7b:be:d1:8a:d7:65:
6f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:26:55:71:34:37:5D:82:59:08:8C:5C:17:6E:9D:B3:E0:5C:6E:9A
X509v3 Authority Key Identifier:
keyid:F5:FB:32:D2:26:6B:1F:9B:CE:57:CA:C9:8B:C0:24:7F:2C:91:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fsy0iZrH5vOV8rJi8AkfyyRl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/uyZVcTQ3XYJZCIxcF26ds-Bcbpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/fb42ec-10b4-4dcf-bef0-2d143d7b853c/1/9fsy0iZrH5vOV8rJi8AkfyyRl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.215.0/24
86.104.227.0/24
89.32.204.0/24
89.33.83.0/24
89.47.34.0/24
162.218.157.0-162.218.158.255
193.200.96.0/23
194.26.149.0/24
194.29.67.0/24
194.29.70.0/24
194.29.80.0/24
212.102.116.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:9c:b9:85:01:82:a4:1d:4d:da:1b:51:c2:cf:5b:90:a7:b2:
bc:36:66:f2:4e:b4:ee:45:46:a6:83:c1:6d:1b:49:83:c3:f4:
59:60:4a:1b:3f:4b:92:a3:df:e9:01:bc:f3:e8:db:9d:2f:ae:
a1:b8:4c:37:3a:4b:2f:2e:c9:3e:df:c3:fb:0f:e2:ed:07:ac:
f2:7e:97:fe:a7:47:63:91:5e:6e:8d:a0:45:10:20:c0:ab:20:
b4:ba:a5:f6:43:63:ba:5d:13:e3:4d:14:8f:12:2b:1a:b5:a6:
97:33:16:1a:b6:71:90:9f:96:bb:c3:8c:8b:79:41:52:a8:ea:
1b:13:52:9d:f7:aa:01:17:e3:29:66:ab:ae:db:b1:3b:a7:8f:
89:8d:20:87:d5:d2:53:7b:80:09:b7:38:62:fa:62:7a:46:fd:
1d:be:bb:cc:e4:32:a7:3b:ef:9e:1c:09:81:f7:eb:80:5b:68:
37:6a:87:e7:c1:d9:21:c8:47:2c:77:89:34:50:ce:48:93:ea:
02:a0:d4:ea:f2:7b:67:53:96:27:86:b1:62:51:f6:d0:26:aa:
2f:cf:5e:22:a7:a2:70:e3:99:99:cb:75:66:67:e4:3c:2f:50:
f7:9d:5f:6a:4c:23:4c:53:52:48:36:c1:f3:0d:3c:88:17:73:
a1:bc:e5:2b
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAY+FSyNeAsYGhF9khoRCHR9VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZmIzMmQyMjY2YjFmOWJjZTU3Y2FjOThiYzAyNDdmMmM5
MTk3ZjIwHhcNMjQwNTE3MDY0NDA1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjI2NTU3MTM0Mzc1ZDgyNTkwODhjNWMxNzZlOWRiM2UwNWM2ZTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySTPESp1Xi5lxzPJgy1yXB/OIZE9
1tYGD5glZtuHEOCdvCetvg4QBFqbeE0DRENI2Cckjpic8h/gt48DIIXBUbPtkMBu
g0maHwh3v3hNhVTzi3acsBGW99LCRz8MhBv7vX6lzwrc+bYCev6bsQBro7t7w15V
vUWxPepCHBX1tYzBS23nCMxdRIpAmn8wsbOKbfvTI84p0f28ctr/FbcvhyKBXxgn
kQy7X2nzVwO4DHsduPuYH56ewq1dh9jqfhSE0x2cMu0T2kRir/4n0XZZTnBBYl6w
5GKYdRHv3v+XdlGvoV/0ec7Mvwem2XCCc3otXqIGY2JP5VF7vtGK12VvBQIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFLsmVXE0N12CWQiMXBdunbPgXG6aMB8GA1UdIwQY
MBaAFPX7MtImax+bzlfKyYvAJH8skZfyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWZzeTBpWnJINXZPVjhySmk4QWtmeXlSbF9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mYjQyZWMtMTBiNC00ZGNmLWJlZjAt
MmQxNDNkN2I4NTNjLzEvdXlaVmNUUTNYWUpaQ0l4Y0YyNmRzLUJjYnBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9mYjQyZWMtMTBiNC00ZGNmLWJlZjAtMmQxNDNkN2I4NTNj
LzEvOWZzeTBpWnJINXZPVjhySmk4QWtmeXlSbF9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDBWBAIAATBQAwQAVmjXAwQA
VmjjAwQAWSDMAwQAWSFTAwQAWS8iMAwDBACi2p0DBACi2p4DBAHByGADBADCGpUD
BADCHUMDBADCHUYDBADCHVADBADUZnQwDQYJKoZIhvcNAQELBQADggEBAJycuYUB
gqQdTdobUcLPW5Cnsrw2ZvJOtO5FRqaDwW0bSYPD9FlgShs/S5Kj3+kBvPPo250v
rqG4TDc6Sy8uyT7fw/sP4u0HrPJ+l/6nR2ORXm6NoEUQIMCrILS6pfZDY7pdE+NN
FI8SKxq1ppczFhq2cZCflrvDjIt5QVKo6hsTUp33qgEX4ylmq67bsTunj4mNIIfV
0lN7gAm3OGL6YnpG/R2+u8zkMqc7754cCYH364BbaDdqh+fB2SHIRyx3iTRQzkiT
6gKg1Orye2dTlieGsWJR9tAmqi/PXiKnonDjmZnLdWZn5DwvUPedX2pMI0xTUkg2
wfMNPIgXc6G85Ss=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:35 2024 by rpki-client on console-ams.rpki-client.org