Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uuWcMfll6uTmIrUtykuJrFoRGtA.roa
File: uuWcMfll6uTmIrUtykuJrFoRGtA.roa (raw, json)
Hash identifier: gN9jD33ojGPsQvRDAtcLfp4TebChEWrzJxYD3NyhiQg=
Subject key identifier: BA:E5:9C:31:F9:65:EA:E4:E6:22:B5:2D:CA:4B:89:AC:5A:11:1A:D0
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018BE191F7F2C0264847E47F130D1EFA5601
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uuWcMfll6uTmIrUtykuJrFoRGtA.roa
Signing time: Sat 18 Nov 2023 08:35:21 +0000
ROA not before: Sat 18 Nov 2023 08:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39543
IP address blocks: 195.28.2.0/23 maxlen: 23
89.34.224.0/23 maxlen: 23
193.19.192.0/22 maxlen: 22
193.19.192.0/24 maxlen: 24
89.34.227.0/24 maxlen: 24
193.19.193.0/24 maxlen: 24
193.19.195.0/24 maxlen: 24
193.19.194.0/24 maxlen: 24
93.113.204.0/24 maxlen: 24
93.114.79.0/24 maxlen: 24
89.40.67.0/24 maxlen: 24
89.47.96.0/24 maxlen: 24
89.47.96.0/20 maxlen: 20
89.47.97.0/24 maxlen: 24
89.47.98.0/24 maxlen: 24
89.47.99.0/24 maxlen: 24
89.47.101.0/24 maxlen: 24
93.114.194.0/24 maxlen: 24
89.47.100.0/24 maxlen: 24
89.47.103.0/24 maxlen: 24
89.47.102.0/24 maxlen: 24
89.47.104.0/24 maxlen: 24
89.47.105.0/24 maxlen: 24
89.35.158.0/24 maxlen: 24
89.47.106.0/24 maxlen: 24
89.47.108.0/24 maxlen: 24
89.47.107.0/24 maxlen: 24
89.47.110.0/24 maxlen: 24
89.47.109.0/24 maxlen: 24
89.47.111.0/24 maxlen: 24
89.47.112.0/20 maxlen: 20
89.47.113.0/24 maxlen: 24
89.47.115.0/24 maxlen: 24
89.47.114.0/24 maxlen: 24
89.47.118.0/24 maxlen: 24
89.47.119.0/24 maxlen: 24
89.45.164.0/24 maxlen: 24
89.39.111.0/24 maxlen: 24
89.34.27.0/24 maxlen: 24
2001:4d18::/32 maxlen: 32
2001:4d18::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 18 Nov 2023 17:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e1:91:f7:f2:c0:26:48:47:e4:7f:13:0d:1e:fa:56:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Nov 18 08:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bae59c31f965eae4e622b52dca4b89ac5a111ad0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fa:70:78:32:ad:ac:26:15:05:52:32:b5:5e:
85:64:9d:88:13:c1:44:36:71:c3:87:73:11:9d:cb:
a7:4e:fb:8e:2e:3b:a5:f3:b8:3c:8a:1d:6f:e2:89:
87:28:b3:04:8b:6c:9d:7d:cd:1a:ea:c6:07:a7:60:
c1:c6:1e:37:b4:56:e6:f2:63:2a:12:9e:4f:63:4d:
fa:f9:3e:ac:34:c8:55:ce:63:b0:86:f8:f1:28:69:
56:d6:31:4a:2a:55:d4:77:4a:43:32:fc:70:fb:b0:
eb:27:1b:03:8e:00:5b:ff:73:f9:33:1d:c1:ba:d1:
f8:af:1c:0f:f4:0e:f6:ca:af:e4:5f:bc:f3:ba:fb:
f5:69:ca:65:a1:3b:6b:e6:9b:92:00:c6:67:79:dd:
df:d5:5c:e9:03:6b:5a:78:dd:1f:91:96:4e:80:eb:
89:1a:6e:89:89:8a:e0:84:0b:eb:70:a3:db:c9:b4:
27:b9:a8:66:5b:a2:46:3a:2b:6e:c7:dc:05:91:2e:
ea:6e:80:60:06:9d:53:ff:8b:e2:39:ea:31:25:98:
0b:c0:e6:cc:cd:b8:8f:eb:c1:8d:0c:a3:ad:2c:e2:
80:65:04:04:1d:2c:3b:2b:13:5c:18:7f:52:33:a3:
47:c0:c3:b5:b0:4a:07:be:26:55:1c:03:0e:53:f7:
45:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E5:9C:31:F9:65:EA:E4:E6:22:B5:2D:CA:4B:89:AC:5A:11:1A:D0
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/uuWcMfll6uTmIrUtykuJrFoRGtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.27.0/24
89.34.224.0/23
89.34.227.0/24
89.35.158.0/24
89.39.111.0/24
89.40.67.0/24
89.45.164.0/24
89.47.96.0/19
93.113.204.0/24
93.114.79.0/24
93.114.194.0/24
193.19.192.0/22
195.28.2.0/23
IPv6:
2001:4d18::/32
Signature Algorithm: sha256WithRSAEncryption
14:35:2c:32:23:61:ad:87:f2:ba:0f:e2:50:ad:3c:a9:3c:cd:
01:2b:a2:94:ca:b4:8d:0e:29:a4:64:6d:07:f6:91:c6:86:5f:
45:fa:29:34:e3:1a:34:f0:2b:bd:57:a5:8e:aa:e7:36:35:d3:
26:9c:4d:11:d6:15:5b:45:d2:44:14:c5:3a:82:75:b1:ca:52:
91:e6:61:b9:2a:59:2b:00:b8:c3:e5:91:a7:d9:fc:28:78:a5:
66:ed:9a:3a:d4:b3:ef:95:4a:48:1f:95:c4:33:d2:68:b0:8a:
2e:94:eb:64:90:fb:e2:5b:79:53:21:8f:1b:37:fe:39:d4:cd:
6f:a6:79:33:02:62:dd:a9:64:ed:b1:89:51:cd:9a:6f:40:3d:
95:f9:07:31:df:21:b3:34:55:81:fe:bf:ca:43:a8:de:a3:cf:
0e:f1:61:19:74:44:dd:bf:dd:68:71:e8:e8:3b:89:c0:df:05:
2c:26:28:68:76:01:6a:8d:6e:61:d9:5d:16:ee:ba:15:71:2b:
39:41:42:8f:5e:e0:99:d3:30:c0:f2:9e:6e:2c:01:04:09:c3:
44:50:54:b0:19:5c:3b:84:4e:73:2c:d0:d8:a4:98:df:1b:d9:
75:1d:e1:ed:79:13:f1:bb:e4:2a:d1:d5:f2:d9:76:94:28:f4:
04:c0:10:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:50 2024 by rpki-client on console-ams.rpki-client.org