Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/UZs3vug0LFpcRL0pJgcnBYCPa8I.roa
File: UZs3vug0LFpcRL0pJgcnBYCPa8I.roa (raw, json)
Hash identifier: Qnlc77IoF7spVh8Sk0IFEla5ZbhOiTvCtV5iold24/k=
Subject key identifier: 51:9B:37:BE:E8:34:2C:5A:5C:44:BD:29:26:07:27:05:80:8F:6B:C2
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 018692E45FEE4642B54001C3C745A82286CD
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/UZs3vug0LFpcRL0pJgcnBYCPa8I.roa
Signing time: Mon 27 Feb 2023 12:41:25 +0000
ROA not before: Mon 27 Feb 2023 12:41:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15802
IP address blocks: 5.30.32.0/19 maxlen: 19
94.201.251.0/24 maxlen: 24
5.30.64.0/19 maxlen: 19
87.201.176.0/22 maxlen: 22
87.201.180.0/22 maxlen: 22
87.201.184.0/22 maxlen: 22
94.201.196.0/22 maxlen: 22
5.30.0.0/19 maxlen: 19
5.30.8.0/22 maxlen: 22
91.73.216.0/23 maxlen: 23
5.30.0.0/15 maxlen: 15
5.32.64.0/19 maxlen: 19
91.72.204.0/24 maxlen: 24
5.32.96.0/19 maxlen: 19
91.72.205.0/24 maxlen: 24
91.72.206.0/24 maxlen: 24
5.32.0.0/17 maxlen: 19
94.203.204.0/22 maxlen: 22
5.32.32.0/19 maxlen: 19
80.227.200.0/22 maxlen: 22
94.200.248.0/22 maxlen: 22
91.73.0.0/20 maxlen: 20
5.31.96.0/19 maxlen: 19
94.203.44.0/23 maxlen: 23
94.206.152.0/23 maxlen: 23
94.203.62.0/23 maxlen: 23
5.31.128.0/19 maxlen: 19
94.206.181.0/24 maxlen: 24
5.31.64.0/19 maxlen: 19
94.206.112.0/23 maxlen: 23
94.200.0.0/13 maxlen: 19
5.31.224.0/19 maxlen: 19
5.31.160.0/19 maxlen: 19
87.200.0.0/15 maxlen: 19
80.227.0.0/16 maxlen: 19
91.72.0.0/14 maxlen: 19
5.31.192.0/19 maxlen: 19
5.30.160.0/19 maxlen: 19
5.30.96.0/19 maxlen: 19
5.30.128.0/19 maxlen: 19
91.74.78.0/23 maxlen: 23
5.31.0.0/19 maxlen: 19
213.132.32.0/19 maxlen: 19
5.31.32.0/19 maxlen: 19
94.206.74.0/23 maxlen: 23
5.30.192.0/19 maxlen: 19
5.30.224.0/19 maxlen: 19
94.206.16.0/23 maxlen: 23
94.206.21.0/24 maxlen: 24
2a00:f2e::/32 maxlen: 32
2a00:f2c::/32 maxlen: 32
2a00:f2d::/32 maxlen: 32
2a00:f29::/32 maxlen: 32
2a00:f2b::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 28 Feb 2023 04:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:e4:5f:ee:46:42:b5:40:01:c3:c7:45:a8:22:86:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Feb 27 12:41:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=519b37bee8342c5a5c44bd2926072705808f6bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bf:89:14:0a:9e:26:6a:55:29:2f:8b:85:a1:
7e:84:a9:4c:de:8b:ec:2b:30:3d:cb:7d:ec:fe:e2:
62:76:28:d5:19:ce:d6:df:6f:9f:cf:cc:85:4e:fb:
46:83:f9:e7:1e:9f:b1:c0:c7:90:65:eb:2c:cd:09:
99:f8:4d:6c:a6:83:05:cc:2f:9d:4e:ef:34:7d:8c:
a5:6a:9b:44:09:70:39:7e:10:bb:57:3e:50:6b:a1:
42:fd:25:5e:7a:c0:e0:c8:e4:ba:ff:97:a6:2a:1d:
58:5c:28:09:8c:1e:3b:5e:69:1a:c9:e9:bb:38:3f:
01:ae:06:09:75:5f:92:6c:4a:5a:57:ef:86:33:d3:
7d:48:92:99:77:40:82:59:e7:0f:7e:d3:20:49:b6:
fc:d6:20:09:0c:64:5c:e0:ed:de:c6:14:28:f4:d5:
b9:04:a1:b1:30:3b:1b:4e:fc:eb:92:ac:6c:04:95:
e2:b6:6e:b6:ce:98:b0:e6:f3:41:5f:1c:7c:7d:6d:
f1:db:c2:2e:2b:5b:6a:33:c3:93:62:b6:27:05:2a:
06:69:b0:69:c7:33:aa:09:a0:46:e6:a1:df:62:b9:
38:9a:31:df:09:4f:d1:9d:f3:e9:8c:c1:16:0c:b9:
b7:68:13:7b:9f:80:94:be:c3:d1:32:40:63:60:bc:
14:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9B:37:BE:E8:34:2C:5A:5C:44:BD:29:26:07:27:05:80:8F:6B:C2
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/UZs3vug0LFpcRL0pJgcnBYCPa8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.30.0.0-5.32.127.255
80.227.0.0/16
87.200.0.0/15
91.72.0.0/14
94.200.0.0/13
213.132.32.0/19
IPv6:
2a00:f29::/32
2a00:f2b::-2a00:f2e:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
56:1f:c1:73:05:83:31:9a:cf:5e:52:a1:77:0d:c6:e8:39:23:
d7:3f:cc:ab:e8:e4:bd:79:af:d6:a0:ba:98:5e:8c:67:ac:41:
83:8e:c3:bd:5f:db:46:9f:9a:90:33:39:ff:48:28:69:d0:61:
ad:b7:84:78:26:2f:d5:35:95:95:0a:70:6f:42:05:19:5b:79:
42:d3:9c:8d:fe:89:77:a6:e8:06:41:dd:83:4b:5d:73:39:7f:
34:29:6e:69:36:1c:0c:9e:a3:da:91:d3:93:65:be:60:a2:db:
bb:03:8e:f7:68:8c:28:1e:97:97:a9:07:9a:60:5a:23:3f:5e:
3b:43:b9:44:b9:cc:d4:29:ba:ec:06:96:48:ff:4f:83:28:4f:
d7:b9:82:53:b6:44:c7:80:4f:3c:1e:c1:e1:c5:80:3f:b6:f3:
11:0d:a6:68:f8:d7:bd:fc:f1:b9:e2:83:3e:86:1b:93:78:bc:
87:0d:7b:0d:78:22:c7:a1:3f:ff:24:43:0e:60:b4:a3:06:ad:
0d:9f:ab:84:e2:ef:d0:49:10:64:5d:32:bc:94:04:b1:bf:ba:
bd:a1:3d:7e:f9:45:34:ae:26:46:20:a0:c5:17:87:e4:76:29:
bf:cd:51:8d:49:f3:57:4f:ba:5b:5b:01:81:b8:94:e8:5e:45:
56:f3:19:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org