Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UOnyC66EGLbZUiaHxUML7XhsEjg.roa
File: UOnyC66EGLbZUiaHxUML7XhsEjg.roa (raw, json)
Hash identifier: lZY1sGuvduTePc5F7D9USD8Wb83bH6z57cIovoDXyfk=
Subject key identifier: 50:E9:F2:0B:AE:84:18:B6:D9:52:26:87:C5:43:0B:ED:78:6C:12:38
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018C7A547C0E778169617FAF974DA019FA77
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UOnyC66EGLbZUiaHxUML7XhsEjg.roa
Signing time: Mon 18 Dec 2023 00:30:06 +0000
ROA not before: Mon 18 Dec 2023 00:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52041
IP address blocks: 185.248.134.0/24 maxlen: 24
82.215.64.0/24 maxlen: 24
2a12:bec0:7004::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:d0::/44 maxlen: 48
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7a:54:7c:0e:77:81:69:61:7f:af:97:4d:a0:19:fa:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Dec 18 00:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50e9f20bae8418b6d9522687c5430bed786c1238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:b1:4e:80:6b:35:fc:29:77:92:78:91:89:
1d:a8:68:6f:2b:14:17:3f:f6:e5:44:c3:4c:d1:5d:
cf:af:51:35:04:00:dc:4a:42:0b:74:2f:19:ed:46:
24:13:da:53:92:5d:c3:d0:6f:bb:3d:fc:4e:78:05:
02:87:aa:9a:81:c0:8c:b2:cc:68:6b:7d:fa:b7:47:
ae:da:56:3e:d1:94:15:bb:7b:a7:27:fa:79:4a:6b:
96:3d:e3:bc:24:5e:a1:1e:66:a1:c3:0e:e6:1c:f2:
1a:8d:4b:07:46:5c:8e:2e:85:44:f7:d5:af:ec:63:
ce:a7:b2:5c:52:fd:62:89:0b:df:5e:a9:09:f9:2e:
55:2b:f1:a7:6c:1a:05:6f:e6:06:3d:b3:8e:61:ac:
0d:9d:f9:81:1f:8b:c2:0b:bf:e8:29:c6:63:97:e6:
b8:c1:ed:a5:20:f5:26:c6:5a:7d:46:f7:d5:43:9b:
18:f8:0e:5a:5e:2a:65:8e:50:53:51:ab:cf:37:42:
fc:08:3c:fe:88:15:f7:41:6e:e1:b0:32:49:5d:9c:
cd:25:7e:dd:45:43:00:c8:73:92:e6:e6:37:30:b8:
14:af:b2:9a:3d:c9:56:0b:3a:a9:1e:4e:e7:5a:24:
40:b0:6c:7e:a7:01:41:74:fd:a2:70:88:b6:22:a1:
e3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E9:F2:0B:AE:84:18:B6:D9:52:26:87:C5:43:0B:ED:78:6C:12:38
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/UOnyC66EGLbZUiaHxUML7XhsEjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::/47
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
28:a4:7b:e3:7b:9a:9d:47:bd:68:e7:87:01:5a:ab:48:c8:02:
d6:83:1a:ec:ba:cc:38:53:50:b9:e4:c9:71:21:fc:9d:62:a8:
1f:c2:b1:8c:4e:1f:55:0a:a7:4d:b4:5e:89:88:73:b9:eb:9d:
3d:2b:cf:95:76:da:ed:ba:88:9e:d3:b3:29:1c:90:e7:d2:0f:
73:bb:fd:e4:70:9a:22:53:5c:5b:60:7a:2e:da:8e:1c:9c:45:
1f:30:15:e2:4d:2c:04:25:7e:ac:03:1c:60:cc:0c:1f:c3:c0:
a1:22:ab:4a:75:2f:eb:7f:c2:07:8f:45:ea:6a:eb:d8:bd:81:
4d:5a:89:f8:79:87:1c:f8:71:9d:b6:b3:8f:f4:e1:67:a3:5a:
2f:72:09:a8:de:e2:32:cb:43:dc:29:24:f9:5d:83:b3:d8:63:
ef:50:a7:2f:40:a8:55:31:97:85:e9:ad:43:21:e8:9a:3b:5e:
91:73:31:fc:5f:e0:38:2c:54:74:37:81:4e:51:02:df:e2:49:
1c:9b:bb:0d:f5:ad:b4:35:a4:00:95:70:da:06:4d:85:b1:10:
2a:62:a2:02:71:8f:66:89:e3:32:74:0a:5c:87:0f:39:f3:dd:
2b:8e:12:0c:76:d7:83:2d:18:be:c1:0e:ce:0a:12:7c:97:78:
5c:17:ad:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org