Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/UJrp26eDr1P-J7k1HujycCmb2gM.roa
File: UJrp26eDr1P-J7k1HujycCmb2gM.roa (raw, json)
Hash identifier: mckiXa6b9gPJQ9kha22WEDCtFmCbSKi2qWzJmiaE088=
Subject key identifier: 50:9A:E9:DB:A7:83:AF:53:FE:27:B9:35:1E:E8:F2:70:29:9B:DA:03
Certificate issuer: /CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Certificate serial: 018CCEB37CA83015B16CCE4A2C759A48C916
Authority key identifier: 16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/UJrp26eDr1P-J7k1HujycCmb2gM.roa
Signing time: Wed 03 Jan 2024 09:41:58 +0000
ROA not before: Wed 03 Jan 2024 09:41:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203847
IP address blocks: 185.206.52.0/23 maxlen: 23
62.112.200.0/21 maxlen: 21
193.162.128.0/24 maxlen: 24
185.122.44.0/22 maxlen: 22
45.142.15.0/24 maxlen: 24
2a01:57e0:200::/39 maxlen: 39
2a01:57e0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 19 Jan 2024 12:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ce:b3:7c:a8:30:15:b1:6c:ce:4a:2c:75:9a:48:c9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Validity
Not Before: Jan 3 09:41:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=509ae9dba783af53fe27b9351ee8f270299bda03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:d5:7c:c5:b2:fd:95:7f:02:b8:2b:af:d8:
2d:ce:21:31:5d:b1:dc:0d:80:9e:b6:67:f6:3a:8a:
37:41:d5:32:9d:94:1b:e6:9b:1e:7c:84:c0:be:11:
f8:7d:34:e0:08:a9:b2:06:11:09:3d:48:68:32:60:
00:b4:85:3d:4e:4e:a7:db:c9:02:3a:14:d2:2f:2c:
6a:17:1a:f7:93:c4:64:98:cd:28:ec:c0:08:4f:6e:
b2:11:d5:74:62:11:5a:bd:00:82:63:09:cb:7d:d1:
f7:a4:fd:84:10:3d:30:6e:1b:73:a8:18:74:f7:44:
ef:eb:f1:98:4f:74:6e:f7:bb:4f:ed:6a:dd:c5:a6:
f0:72:19:09:c3:cd:aa:68:73:11:74:a3:95:15:fa:
41:f2:83:e6:d5:f2:f8:ce:74:83:77:f7:b4:74:74:
b7:cf:65:fe:23:11:b7:68:74:08:17:67:20:f3:d5:
24:5c:d5:6d:ae:95:43:2e:13:32:4e:d6:8e:35:f9:
5c:09:d9:13:4a:38:a5:4b:34:d8:9c:a7:94:60:90:
58:1d:7b:38:c3:37:7c:3e:9a:ab:f9:bc:e4:1f:92:
01:89:be:23:f3:47:df:87:01:3a:83:c2:3a:86:02:
23:f6:d3:d1:44:4e:33:44:e9:0c:eb:a4:fc:7e:1a:
2e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9A:E9:DB:A7:83:AF:53:FE:27:B9:35:1E:E8:F2:70:29:9B:DA:03
X509v3 Authority Key Identifier:
keyid:16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/UJrp26eDr1P-J7k1HujycCmb2gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.15.0/24
62.112.200.0/21
185.122.44.0/22
185.206.52.0/23
193.162.128.0/24
IPv6:
2a01:57e0::/29
Signature Algorithm: sha256WithRSAEncryption
9b:e6:fb:73:4f:81:77:53:78:59:c6:d5:63:db:94:ed:ef:c2:
a4:0e:ba:58:e6:f0:4b:1e:94:23:a9:a0:ae:38:c5:15:18:e2:
46:45:5d:99:9c:c1:62:3f:11:c8:87:e8:c2:f7:7f:70:13:1d:
55:e9:6f:f2:e5:70:b5:8b:ed:ba:c9:f2:5b:1d:a9:0b:a1:f1:
ef:2a:ef:f0:d1:9d:59:60:68:c1:50:19:a6:32:ea:19:c5:fa:
4c:6f:fc:0e:60:df:00:c9:82:bd:aa:b9:a6:af:7b:ac:c3:50:
31:41:d5:05:63:55:9d:63:55:ba:68:52:35:d9:ab:28:fa:03:
ee:e1:3e:fe:2f:19:b6:d8:2a:4a:7e:5e:7d:60:37:ed:28:dd:
c6:41:ba:c0:1f:42:97:a7:ae:ff:04:ca:3e:e6:a7:79:9c:78:
02:1f:30:c8:69:83:db:9b:b5:ab:be:4c:6f:8b:5e:0e:ed:81:
61:ea:89:e5:64:eb:40:7d:69:0b:af:64:5c:91:d4:2c:97:a6:
b1:86:7d:a1:43:bb:64:74:9b:1c:9c:66:81:43:1e:ff:b5:3d:
a7:1c:72:ba:36:7e:80:13:02:7a:31:0e:b4:03:13:d7:70:a6:
5b:34:41:92:1d:22:08:f1:e8:17:fe:70:65:8b:f9:7c:9f:1d:
24:00:9d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:19 2024 by rpki-client on console-ams.rpki-client.org