Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Uqxgu5SEXorNXct5F0I2rN6FWTM.roa
File: Uqxgu5SEXorNXct5F0I2rN6FWTM.roa (raw, json)
Hash identifier: YD2E/VTgo5NmMA0q3SXeWrnktMOioLliT2ow7s0u7no=
Subject key identifier: 52:AC:60:BB:94:84:5E:8A:CD:5D:CB:79:17:42:36:AC:DE:85:59:33
Certificate issuer: /CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Certificate serial: 018989120A675AEBC37511B02238796D7101
Authority key identifier: 6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Uqxgu5SEXorNXct5F0I2rN6FWTM.roa
Signing time: Mon 24 Jul 2023 18:03:28 +0000
ROA not before: Mon 24 Jul 2023 18:03:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 91.225.15.0/24 maxlen: 24
146.66.209.0/24 maxlen: 24
146.66.208.0/24 maxlen: 24
146.66.220.0/24 maxlen: 24
146.66.223.0/24 maxlen: 24
146.66.222.0/24 maxlen: 24
146.66.221.0/24 maxlen: 24
188.74.245.0/24 maxlen: 24
178.157.124.0/24 maxlen: 24
178.157.126.0/24 maxlen: 24
37.35.39.0/24 maxlen: 24
37.35.37.0/24 maxlen: 24
37.35.36.0/24 maxlen: 24
188.74.128.0/24 maxlen: 24
188.119.166.0/24 maxlen: 24
188.119.165.0/24 maxlen: 24
188.119.181.0/24 maxlen: 24
188.74.190.0/24 maxlen: 24
188.74.209.0/24 maxlen: 24
188.74.208.0/24 maxlen: 24
178.157.94.0/24 maxlen: 24
62.216.93.0/24 maxlen: 24
62.216.92.0/24 maxlen: 24
188.74.152.0/24 maxlen: 24
188.74.155.0/24 maxlen: 24
188.74.171.0/24 maxlen: 24
188.74.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:89:12:0a:67:5a:eb:c3:75:11:b0:22:38:79:6d:71:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b233d75508b4e85cccf44349a7cb703198d1d26
Validity
Not Before: Jul 24 18:03:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ac60bb94845e8acd5dcb79174236acde855933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:f9:83:98:84:2a:d3:86:1b:b1:71:cf:ed:
d4:b9:8f:8b:b2:81:4d:2a:6b:38:87:42:77:02:b8:
8e:c5:28:97:46:fc:9e:4e:bc:48:96:03:65:a3:2e:
7c:54:96:7f:72:74:91:bc:d2:fd:69:67:50:4c:07:
06:d0:4c:00:f6:8d:51:8e:62:34:84:89:fc:e1:4e:
17:1d:b2:5c:b5:fb:f3:f6:07:ab:d0:08:88:59:46:
62:4e:96:4f:45:90:16:ef:dd:3a:64:de:e4:da:01:
b1:46:fa:9e:ba:ba:9c:99:44:96:e4:00:01:db:d0:
c8:c7:30:a4:8c:74:98:57:3e:9d:67:eb:a3:d5:7e:
31:b8:ae:00:68:1a:cb:51:b6:3f:06:7a:af:fa:2d:
46:24:3d:73:54:76:96:56:09:b2:92:91:ec:a0:a9:
1f:15:d0:ab:fa:d7:d1:10:25:92:47:ab:cf:9e:6a:
3f:1a:8e:51:36:78:e7:7c:ae:e3:fd:37:8d:28:43:
fe:53:36:a3:b3:79:f5:f8:1a:25:82:44:f1:cc:cf:
4e:5e:4b:4c:1f:39:0b:0b:67:0c:a7:c1:1d:a2:7c:
72:bc:68:85:04:3c:d5:13:49:0b:54:d8:7f:52:14:
9b:55:7e:5d:4c:7f:19:2a:93:96:e8:08:26:43:f0:
ac:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AC:60:BB:94:84:5E:8A:CD:5D:CB:79:17:42:36:AC:DE:85:59:33
X509v3 Authority Key Identifier:
keyid:6B:23:3D:75:50:8B:4E:85:CC:CF:44:34:9A:7C:B7:03:19:8D:1D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayM9dVCLToXMz0Q0mny3AxmNHSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/Uqxgu5SEXorNXct5F0I2rN6FWTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9d9192-273c-4ca9-b2ba-fa9cb51cd0f1/1/ayM9dVCLToXMz0Q0mny3AxmNHSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.35.36.0/23
37.35.39.0/24
62.216.92.0/23
91.225.15.0/24
146.66.208.0/23
146.66.220.0/22
178.157.94.0/24
178.157.124.0/24
178.157.126.0/24
188.74.128.0/24
188.74.152.0/24
188.74.155.0/24
188.74.171.0/24
188.74.181.0/24
188.74.190.0/24
188.74.208.0/23
188.74.245.0/24
188.119.165.0-188.119.166.255
188.119.181.0/24
Signature Algorithm: sha256WithRSAEncryption
17:83:95:5b:38:a0:69:54:55:96:e9:aa:a0:37:96:4a:b9:06:
a6:af:6b:b7:03:d6:fb:24:2e:ca:3c:ba:cb:98:d1:77:14:e8:
b1:26:69:2a:84:29:3b:99:10:12:d7:17:dd:9c:c7:dd:c5:14:
bf:f8:60:b2:98:9d:1b:96:44:12:24:f8:a1:34:eb:2b:af:e6:
0e:97:15:c8:13:85:38:98:77:aa:48:10:bc:82:e7:46:32:ea:
06:71:8b:23:0c:60:29:fe:0e:0e:50:3f:b0:72:ad:10:b6:e6:
24:15:41:0f:39:ad:3b:08:0c:ef:ac:bc:81:bb:f3:db:d3:5c:
2e:89:92:ab:ca:ae:32:0c:00:68:f0:c2:d6:52:2e:ae:a1:18:
a2:dc:b2:71:f9:c9:1e:43:6c:01:b5:e1:52:ec:11:29:0e:ad:
99:17:10:7a:b7:da:49:c3:f5:69:e6:70:98:8c:8f:55:a6:26:
ac:30:9f:12:21:3d:7e:6d:dd:b8:3e:fa:12:a1:60:12:21:61:
5e:35:57:4b:ca:63:8e:6f:4d:9a:44:11:34:9d:e4:8f:95:a2:
a7:5a:64:9e:13:08:2d:ea:b8:95:7c:15:f1:3e:f6:49:43:11:
6f:2f:19:7d:72:90:a5:e6:9f:fd:65:06:51:0b:1d:15:d4:95:
85:4c:6d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org