Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/uHrCo2U38g_3lTtpuHlznX5NC0M.roa
File: uHrCo2U38g_3lTtpuHlznX5NC0M.roa (raw, json)
Hash identifier: NlBXsMlPafJW5FH/7hkKie1hBD3ZM92JbwsnxEA4V5E=
Subject key identifier: B8:7A:C2:A3:65:37:F2:0F:F7:95:3B:69:B8:79:73:9D:7E:4D:0B:43
Certificate issuer: /CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Certificate serial: 0192FB61EEECF25CCC24BE23C45CF0E23A3A
Authority key identifier: BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/uHrCo2U38g_3lTtpuHlznX5NC0M.roa
Signing time: Tue 05 Nov 2024 08:12:32 +0000
ROA not before: Tue 05 Nov 2024 08:12:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57112
IP address blocks: 5.104.112.0/20 maxlen: 20
31.177.32.0/21 maxlen: 21
45.84.40.0/22 maxlen: 24
45.91.56.0/22 maxlen: 22
45.92.224.0/22 maxlen: 22
81.30.64.0/20 maxlen: 20
86.111.208.0/22 maxlen: 22
185.23.140.0/22 maxlen: 22
185.33.152.0/22 maxlen: 22
185.38.152.0/22 maxlen: 22
185.70.236.0/22 maxlen: 22
185.72.160.0/22 maxlen: 22
185.82.192.0/22 maxlen: 22
185.87.104.0/22 maxlen: 22
185.87.116.0/22 maxlen: 22
185.87.156.0/22 maxlen: 22
185.103.236.0/22 maxlen: 22
185.113.172.0/22 maxlen: 22
185.133.108.0/22 maxlen: 22
185.192.144.0/22 maxlen: 24
185.236.16.0/22 maxlen: 22
217.76.16.0/20 maxlen: 20
217.76.16.0/21 maxlen: 21
217.76.24.0/21 maxlen: 21
2a0a:4980::/29 maxlen: 29
2a0e:c40::/29 maxlen: 29
2a0e:9680::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fb:61:ee:ec:f2:5c:cc:24:be:23:c4:5c:f0:e2:3a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfc470e9b58e557ea8c1dbedaeb9c6a5fc455125
Validity
Not Before: Nov 5 08:12:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b87ac2a36537f20ff7953b69b879739d7e4d0b43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7d:7e:e7:2f:49:57:66:d9:ee:62:d4:47:c3:
c4:61:7e:ee:68:41:2f:b2:c2:19:d7:8b:47:ae:dc:
b1:c9:ee:5c:2f:b4:29:4c:92:05:87:2f:ae:d9:4c:
d2:be:25:20:03:ab:00:de:c8:e2:1a:af:c6:a2:ac:
1c:91:b3:d8:c5:11:44:60:10:6f:bf:6a:e8:af:45:
87:e2:33:cd:73:31:db:8b:e3:49:96:c9:fd:1e:e4:
60:7f:ee:04:ba:f0:06:79:16:89:25:d3:66:2c:a6:
f4:2b:f9:b5:a5:a3:54:4c:e0:b0:a2:98:19:a8:ac:
be:94:2c:cb:17:02:08:4b:ec:bf:c1:1c:41:f3:94:
3f:5a:6a:b6:fe:9b:57:07:73:ab:f0:7d:13:25:6d:
92:5b:13:a0:a3:ef:49:8f:90:73:e3:52:af:a5:61:
36:fc:77:21:2b:e8:1b:79:e2:28:2f:81:a8:7b:79:
59:95:5c:90:a0:62:5c:62:39:72:d9:21:2c:e9:be:
6e:fc:67:ba:cd:9c:85:ea:c9:d6:84:48:a1:a8:f5:
2d:dc:10:e6:dd:7f:31:32:c8:2c:ac:11:92:2c:29:
e6:d8:42:de:2c:6b:b9:dd:b8:52:5a:a3:35:13:66:
87:64:84:15:8e:72:5a:9d:6f:91:08:ce:cc:eb:ad:
5a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7A:C2:A3:65:37:F2:0F:F7:95:3B:69:B8:79:73:9D:7E:4D:0B:43
X509v3 Authority Key Identifier:
keyid:BF:C4:70:E9:B5:8E:55:7E:A8:C1:DB:ED:AE:B9:C6:A5:FC:45:51:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8Rw6bWOVX6owdvtrrnGpfxFUSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/uHrCo2U38g_3lTtpuHlznX5NC0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/27b39b-0449-4c64-ba79-a2aa6540f875/1/v8Rw6bWOVX6owdvtrrnGpfxFUSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.112.0/20
31.177.32.0/21
45.84.40.0/22
45.91.56.0/22
45.92.224.0/22
81.30.64.0/20
86.111.208.0/22
185.23.140.0/22
185.33.152.0/22
185.38.152.0/22
185.70.236.0/22
185.72.160.0/22
185.82.192.0/22
185.87.104.0/22
185.87.116.0/22
185.87.156.0/22
185.103.236.0/22
185.113.172.0/22
185.133.108.0/22
185.192.144.0/22
185.236.16.0/22
217.76.16.0/20
IPv6:
2a0a:4980::/29
2a0e:c40::/29
2a0e:9680::/29
Signature Algorithm: sha256WithRSAEncryption
7c:43:a7:06:cb:7f:59:9f:52:1d:39:6a:25:d6:5a:6d:42:0d:
53:41:03:25:2f:47:0b:02:8b:be:7b:f8:26:28:0f:af:b0:24:
9a:fa:44:aa:6b:39:12:0e:62:97:03:71:d1:54:93:50:03:c0:
aa:23:de:4e:e8:e8:d6:2d:88:11:7b:80:e2:0d:2f:11:3e:d5:
c5:90:88:3c:f7:21:6f:c1:ad:a7:35:60:32:82:0c:f3:ae:59:
e8:01:5f:3f:e6:c3:dc:5d:e0:d0:55:c0:ca:c7:c8:3a:c0:54:
96:49:4b:ce:49:89:f3:ca:00:a1:2c:f6:b9:47:a8:3d:34:df:
5d:7b:ee:6f:17:ab:d4:ab:72:b1:0f:63:dd:c2:b5:0b:5f:9d:
59:dd:14:01:bc:b8:78:7b:0e:0f:50:22:2f:2c:5a:64:23:f7:
55:88:63:a6:49:bf:fa:9e:0d:19:29:2e:27:a4:8d:25:73:fe:
4b:64:49:9c:b6:2e:9f:1f:79:88:a5:ac:25:58:c6:9b:5b:50:
8b:fe:f5:59:3a:98:19:48:e7:64:95:47:b2:7c:ef:c1:87:b6:
0f:ec:c5:d2:9e:95:be:3f:ce:5b:97:25:8d:41:f2:2a:dd:7a:
47:ef:47:e3:de:be:06:9d:a0:4c:d0:a5:01:24:2e:44:d5:ba:
05:18:43:22
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgISAZL7Ye7s8lzMJL4jxFzw4jo6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYzQ3MGU5YjU4ZTU1N2VhOGMxZGJlZGFlYjljNmE1ZmM0
NTUxMjUwHhcNMjQxMTA1MDgxMjMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODdhYzJhMzY1MzdmMjBmZjc5NTNiNjliODc5NzM5ZDdlNGQwYjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvH1+5y9JV2bZ7mLUR8PEYX7uaEEv
ssIZ14tHrtyxye5cL7QpTJIFhy+u2UzSviUgA6sA3sjiGq/GoqwckbPYxRFEYBBv
v2ror0WH4jPNczHbi+NJlsn9HuRgf+4EuvAGeRaJJdNmLKb0K/m1paNUTOCwopgZ
qKy+lCzLFwIIS+y/wRxB85Q/Wmq2/ptXB3Or8H0TJW2SWxOgo+9Jj5Bz41KvpWE2
/HchK+gbeeIoL4Goe3lZlVyQoGJcYjly2SEs6b5u/Ge6zZyF6snWhEihqPUt3BDm
3X8xMsgsrBGSLCnm2ELeLGu53bhSWqM1E2aHZIQVjnJanW+RCM7M661aAQIDAQAB
o4ICqTCCAqUwHQYDVR0OBBYEFLh6wqNlN/IP95U7abh5c51+TQtDMB8GA1UdIwQY
MBaAFL/EcOm1jlV+qMHb7a65xqX8RVElMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzkt
YTJhYTY1NDBmODc1LzEvdUhyQ28yVTM4Z18zbFR0cHVIbHpuWDVOQzBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yN2IzOWItMDQ0OS00YzY0LWJhNzktYTJhYTY1NDBmODc1
LzEvdjhSdzZiV09WWDZvd2R2dHJybkdwZnhGVVNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG+BggrBgEFBQcBBwEB/wSBrjCBqzCBiwQCAAEwgYQDBAQF
aHADBAMfsSADBAItVCgDBAItWzgDBAItXOADBARRHkADBAJWb9ADBAK5F4wDBAK5
IZgDBAK5JpgDBAK5RuwDBAK5SKADBAK5UsADBAK5V2gDBAK5V3QDBAK5V5wDBAK5
Z+wDBAK5cawDBAK5hWwDBAK5wJADBAK57BADBATZTBAwGwQCAAIwFQMFAyoKSYAD
BQMqDgxAAwUDKg6WgDANBgkqhkiG9w0BAQsFAAOCAQEAfEOnBst/WZ9SHTlqJdZa
bUINU0EDJS9HCwKLvnv4JigPr7AkmvpEqms5Eg5ilwNx0VSTUAPAqiPeTujo1i2I
EXuA4g0vET7VxZCIPPchb8GtpzVgMoIM865Z6AFfP+bD3F3g0FXAysfIOsBUlklL
zkmJ88oAoSz2uUeoPTTfXXvubxer1KtysQ9j3cK1C1+dWd0UAby4eHsOD1AiLyxa
ZCP3VYhjpkm/+p4NGSkuJ6SNJXP+S2RJnLYunx95iKWsJVjGm1tQi/71WTqYGUjn
ZJVHsnzvwYe2D+zF0p6Vvj/OW5cljUHyKt16R+9H496+Bp2gTNClASQuRNW6BRhD
Ig==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:19 2025 by rpki-client