Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/Uyrx7kAsxg_f3jMny_OtkvMnpuA.roa
File: Uyrx7kAsxg_f3jMny_OtkvMnpuA.roa (raw, json)
Hash identifier: zZabIavUPdXjYMri4Q4Q5l0QAi0FuaUSDUHQlDBHEko=
Subject key identifier: 53:2A:F1:EE:40:2C:C6:0F:DF:DE:33:27:CB:F3:AD:92:F3:27:A6:E0
Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Certificate serial: 0185BF889C02B1010935365D9C947D8AF175
Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/Uyrx7kAsxg_f3jMny_OtkvMnpuA.roa
Signing time: Tue 17 Jan 2023 11:41:19 +0000
ROA not before: Tue 17 Jan 2023 11:41:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34594
IP address blocks: 151.252.224.0/19 maxlen: 19
89.201.128.0/17 maxlen: 17
151.252.224.0/20 maxlen: 20
185.10.40.0/22 maxlen: 22
89.17.0.0/19 maxlen: 19
80.80.48.0/20 maxlen: 20
151.252.208.0/21 maxlen: 21
176.222.32.0/20 maxlen: 20
5.43.160.0/19 maxlen: 19
37.60.128.0/21 maxlen: 21
37.205.96.0/20 maxlen: 20
5.39.128.0/19 maxlen: 19
95.178.128.0/17 maxlen: 17
89.201.175.0/24 maxlen: 24
85.114.32.0/20 maxlen: 20
85.114.32.0/19 maxlen: 19
185.18.60.0/22 maxlen: 22
2a02:ac8::/32 maxlen: 32
2a03:6100::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Sep 2023 13:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:88:9c:02:b1:01:09:35:36:5d:9c:94:7d:8a:f1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280
Validity
Not Before: Jan 17 11:41:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=532af1ee402cc60fdfde3327cbf3ad92f327a6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c4:55:78:af:e1:30:ed:82:21:99:78:7e:5f:
7e:e0:32:6c:9e:4b:65:03:69:3a:d7:a8:35:c5:ea:
2f:5e:d0:b5:eb:be:e9:ca:8d:db:d4:69:61:de:1b:
e0:ce:3d:ff:bb:cc:62:2e:b3:7d:24:ba:48:c6:63:
36:44:7f:34:1e:f6:b8:3d:a4:74:f0:4e:89:ab:41:
7b:c6:e6:14:a3:5c:39:75:92:d9:33:8d:bf:18:15:
83:96:67:21:d1:74:a1:ec:f0:2a:cb:3f:f0:70:fb:
02:68:b1:88:95:bc:84:fc:4b:fc:50:19:1c:9c:54:
8c:7f:4d:2e:49:fb:05:76:7e:6f:3d:b9:8c:fa:67:
20:15:24:68:96:15:76:5b:f0:eb:b3:95:5a:1f:2c:
12:e0:48:74:73:1b:7d:ce:e1:56:bb:02:8f:7e:eb:
14:69:c6:02:e7:0b:84:7d:14:28:d7:d0:0b:fb:a2:
ba:bb:f4:d0:e6:59:c3:36:49:92:6e:87:07:27:74:
a4:3b:6b:ee:9b:12:c4:09:4b:bc:60:16:32:ec:a1:
d4:d5:cf:53:f3:9b:46:40:6d:3e:60:9c:bc:2b:f3:
76:7b:f2:57:7f:e3:1e:d9:e7:9e:e2:08:43:a4:ea:
b2:1e:9c:60:c2:67:c5:52:48:2f:f4:02:a6:ab:44:
5c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:2A:F1:EE:40:2C:C6:0F:DF:DE:33:27:CB:F3:AD:92:F3:27:A6:E0
X509v3 Authority Key Identifier:
keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/Uyrx7kAsxg_f3jMny_OtkvMnpuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.128.0/19
5.43.160.0/19
37.60.128.0/21
37.205.96.0/20
80.80.48.0/20
85.114.32.0/19
89.17.0.0/19
89.201.128.0/17
95.178.128.0/17
151.252.208.0/21
151.252.224.0/19
176.222.32.0/20
185.10.40.0/22
185.18.60.0/22
IPv6:
2a02:ac8::/32
2a03:6100::/32
Signature Algorithm: sha256WithRSAEncryption
93:4b:24:5a:5c:71:36:29:fb:ba:b9:67:8d:1f:d0:8a:95:df:
3d:ea:17:79:07:bc:92:0f:64:25:2f:54:26:02:3f:e2:c2:43:
c9:e5:08:d3:6d:9b:b2:f6:04:66:40:04:a8:af:18:60:c4:14:
08:2a:3a:5a:a9:54:9b:c3:b3:91:75:5c:72:6c:47:0a:f3:fe:
b6:3c:81:1d:7d:f8:02:4a:8d:09:bc:75:a8:01:14:18:19:53:
1b:15:33:1e:74:02:44:46:e1:d5:da:84:d6:24:c2:50:6f:f2:
02:29:f0:86:fc:87:aa:c7:95:ef:6e:3b:db:22:d5:ae:e9:46:
80:89:72:31:54:23:42:01:8f:f9:6d:d5:dd:38:36:c2:1f:76:
4d:ff:a3:5a:5d:12:27:23:4a:1e:44:cd:7f:07:1e:db:3b:dd:
a8:96:ef:02:a8:a8:25:e7:2f:14:fc:ce:2b:b7:5d:93:dc:12:
29:54:c9:ec:39:36:85:4f:ca:89:0d:bf:ed:fa:bd:c6:08:bb:
53:d5:12:92:ad:01:6f:3d:07:e6:64:65:e1:ee:a0:90:2e:ca:
ac:33:2a:df:94:8f:0c:ae:4e:74:1d:52:07:bf:a9:84:2e:24:
6a:ff:7a:b2:74:5e:00:cd:6a:fa:dd:7a:fe:b1:35:92:9d:55:
23:82:e3:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:24 2024 by rpki-client on console-ams.rpki-client.org