Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/3Uxqi3TVcFM5lNs12SGo4VBgL8U.roa
File: 3Uxqi3TVcFM5lNs12SGo4VBgL8U.roa (raw, json)
Hash identifier: 4Xf8sf+ZgjeminpRbXCfw62bkZutjmVEEOGr5f6ujm8=
Subject key identifier: DD:4C:6A:8B:74:D5:70:53:39:94:DB:35:D9:21:A8:E1:50:60:2F:C5
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 018B149F7272DFCBB0D6B03A327A0FE444A4
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/3Uxqi3TVcFM5lNs12SGo4VBgL8U.roa
Signing time: Mon 09 Oct 2023 13:27:55 +0000
ROA not before: Mon 09 Oct 2023 13:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.120.176.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
103.35.189.0/24 maxlen: 24
103.35.188.0/24 maxlen: 24
103.35.188.0/22 maxlen: 22
103.35.191.0/24 maxlen: 24
103.35.190.0/24 maxlen: 24
193.203.202.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.72.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 09 Oct 2023 13:53:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:9f:72:72:df:cb:b0:d6:b0:3a:32:7a:0f:e4:44:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Oct 9 13:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd4c6a8b74d570533994db35d921a8e150602fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:13:eb:34:7b:88:62:d9:f9:5d:d6:10:42:14:
1f:37:da:83:2b:dc:de:24:7b:45:2e:7f:cc:75:f9:
c4:36:9d:84:b3:81:1a:b0:47:21:12:e3:1f:fb:05:
41:80:8e:80:2d:e2:0c:75:42:d0:38:4a:98:f4:21:
14:b8:92:19:3b:59:d1:af:66:f4:1c:a8:b0:8f:6f:
49:f4:38:ee:dc:f7:b6:97:17:40:23:c2:35:9c:31:
24:4f:86:14:d0:59:81:7c:78:59:a5:a5:41:d3:53:
6a:88:24:d4:66:82:94:3b:21:51:d5:dc:ed:8f:54:
7a:73:a0:db:2e:60:9b:e0:49:c7:da:97:11:3b:05:
b7:86:2c:f3:b8:0a:2a:13:4d:9b:27:4e:48:88:10:
50:61:70:c5:87:76:12:df:18:da:9f:7e:8f:43:0d:
53:b7:d8:79:59:4c:da:48:d6:36:d5:f6:1b:e9:d1:
2c:17:54:58:b1:0a:56:cc:be:dd:9d:43:19:78:59:
71:43:dc:b6:b8:f4:20:a3:df:0f:8e:3e:ee:e3:19:
ef:fa:f9:58:27:95:2a:97:c5:41:92:dd:46:e8:f7:
3e:b1:3a:70:4f:31:fa:76:db:57:ca:ab:e5:af:0a:
8f:f8:37:e6:31:19:e5:8c:d0:37:c8:81:3e:df:82:
44:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4C:6A:8B:74:D5:70:53:39:94:DB:35:D9:21:A8:E1:50:60:2F:C5
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/3Uxqi3TVcFM5lNs12SGo4VBgL8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
45.120.176.0/22
74.119.192.0/22
80.92.204.0-80.92.206.255
103.35.188.0/22
103.113.68.0/22
176.120.64.0/22
176.120.72.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
195.149.87.0/24
IPv6:
2a09:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
25:db:0a:99:ab:5e:a3:57:74:4f:2c:1e:28:2c:7a:c6:5b:ed:
e0:57:4b:26:f1:d4:0a:8b:25:96:6e:e7:7f:33:79:03:1a:44:
4d:30:0b:88:80:fc:b2:c7:51:54:a3:0e:23:2c:0a:65:71:20:
75:d5:45:7d:fb:7d:46:95:77:9d:ed:09:61:88:8b:ba:fc:39:
5f:48:bb:73:ab:a0:48:fb:7c:66:17:80:06:56:5a:e7:41:56:
c2:9f:43:21:8e:12:b4:e4:88:44:47:3b:33:a6:9b:95:c8:ba:
4a:1c:15:57:7f:e8:7e:31:2f:bd:16:28:de:68:ea:d8:e8:46:
27:46:41:4b:b2:29:56:79:61:29:86:51:aa:f0:bf:40:de:a1:
86:ed:6c:2f:95:01:d4:67:25:7f:6a:f3:c2:ce:51:53:cf:16:
c6:8f:0d:6e:16:e7:46:b5:e1:e8:9b:d1:7a:59:bc:83:60:58:
0e:8a:b4:26:17:03:46:27:b3:79:0e:25:6f:9e:a9:14:39:2d:
69:0e:5a:13:ea:2e:84:70:81:12:ae:a2:0e:93:d6:23:b0:1d:
6b:df:b7:3a:eb:cd:af:2d:f0:53:46:c5:a3:57:b1:7a:a4:2c:
18:90:9c:ed:5d:36:8d:7f:72:c9:2b:dc:e3:3c:b3:7d:2c:11:
a0:53:8d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org