Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/UnUo29_eKKNc2eZdj8lqXFCvt6Y.roa
File: UnUo29_eKKNc2eZdj8lqXFCvt6Y.roa (raw, json)
Hash identifier: 6TYWmjBPeW/hynafE+164SZP9kpY3azxMj4ds4X0BcY=
Subject key identifier: 52:75:28:DB:DF:DE:28:A3:5C:D9:E6:5D:8F:C9:6A:5C:50:AF:B7:A6
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 018C6D12A2142636E63DF671937121AC29AD
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/UnUo29_eKKNc2eZdj8lqXFCvt6Y.roa
Signing time: Fri 15 Dec 2023 10:43:06 +0000
ROA not before: Fri 15 Dec 2023 10:43:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34762
IP address blocks: 85.158.252.0/23 maxlen: 23
185.76.236.0/22 maxlen: 24
46.21.224.0/20 maxlen: 24
85.10.156.0/22 maxlen: 24
2a01:7c8:f0::/46 maxlen: 64
Validation: Failed, certificate revoked on Tue 19 Dec 2023 09:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:12:a2:14:26:36:e6:3d:f6:71:93:71:21:ac:29:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Dec 15 10:43:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=527528dbdfde28a35cd9e65d8fc96a5c50afb7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0f:c7:84:ea:c7:62:12:b0:76:0a:71:30:24:
60:37:45:14:bd:e5:04:6d:e7:e7:e5:80:e6:48:19:
3f:95:e5:ba:e1:35:c4:80:cd:8b:42:d5:ba:50:07:
96:b2:9d:e7:87:8e:f9:c4:14:9c:65:c1:d6:5e:a3:
86:3a:45:44:53:c0:04:5d:55:42:23:49:f1:d5:22:
6f:2d:07:90:a7:54:cf:b2:af:0d:cb:a6:90:16:e0:
60:e7:af:2e:98:47:bd:95:ad:cf:43:25:bd:89:01:
91:ed:89:e1:a5:e1:1d:aa:c9:f7:04:f1:81:02:67:
37:b0:6b:95:d2:3a:5e:e3:13:7e:ed:4a:de:49:9f:
f2:7a:a6:22:bd:d8:13:79:1f:29:7c:b4:d2:fd:f1:
54:23:6e:f0:60:c3:09:8f:4a:89:27:1c:b9:03:64:
76:3e:d1:93:44:9c:67:f9:f4:07:d0:f0:17:f9:e7:
eb:57:8e:42:8b:48:76:f4:3b:30:10:fa:b2:f7:33:
46:24:5f:df:24:49:97:89:18:4c:7d:ee:ec:84:cc:
33:49:01:47:31:f6:b6:69:43:a1:d0:ca:15:43:1d:
d8:65:98:59:fa:5b:77:82:ed:ea:c6:81:07:1f:6c:
9c:97:80:ca:01:77:fc:c6:b5:a3:dd:1a:35:7d:96:
d6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:75:28:DB:DF:DE:28:A3:5C:D9:E6:5D:8F:C9:6A:5C:50:AF:B7:A6
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/UnUo29_eKKNc2eZdj8lqXFCvt6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.224.0/20
85.10.156.0/22
85.158.252.0/23
185.76.236.0/22
IPv6:
2a01:7c8:f0::/46
Signature Algorithm: sha256WithRSAEncryption
bd:7c:8e:45:07:99:c6:19:23:01:e2:8c:42:ef:7f:1a:62:eb:
5c:b2:3e:f8:8f:1b:6d:f2:6a:0a:d6:4f:07:cc:fb:cf:78:76:
d1:cd:2d:e6:99:43:52:99:d1:da:85:ec:c4:7f:2d:c9:50:3c:
fe:99:4e:0f:a2:af:72:ab:3f:83:67:92:97:89:23:3a:07:a1:
0e:77:5c:9e:7d:82:f9:53:ae:5e:34:50:9c:13:6e:13:24:8a:
60:bd:f8:c0:21:f6:40:35:43:0a:c3:64:9a:d7:58:56:e8:18:
0d:c7:dc:04:3f:6d:a8:c3:8c:e3:b9:03:51:9e:ce:73:ff:30:
4d:2f:06:6a:fe:a1:e8:05:fb:70:a5:d9:46:51:f2:11:16:8a:
1e:6d:41:b5:bc:24:42:ce:05:b1:0c:62:7e:58:58:6d:f5:e6:
43:f2:d9:8e:08:da:2d:84:e4:11:eb:cc:1c:28:96:2b:e8:58:
f1:c6:b3:34:8e:10:1c:3a:ea:00:d8:6a:a1:3a:e8:8d:d3:a0:
6f:83:3c:d0:c5:79:87:b0:71:d5:2a:4e:8f:a5:44:1e:dd:32:
04:45:cf:45:32:cf:39:fa:5a:2b:28:0e:62:28:a9:24:68:42:
fd:28:4d:80:50:fd:46:f6:5b:40:6a:98:f1:69:60:bf:4e:8d:
0d:62:7b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:04 2024 by rpki-client on console-ams.rpki-client.org