Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/Ulu_sMEBMvGtUjrSnH0qjZevy_0.roa
File: Ulu_sMEBMvGtUjrSnH0qjZevy_0.roa (raw, json)
Hash identifier: egxdg7mcd8Z8y9kF1KvK8vVYDvK3UrU4KyTzzEOM0rg=
Subject key identifier: 52:5B:BF:B0:C1:01:32:F1:AD:52:3A:D2:9C:7D:2A:8D:97:AF:CB:FD
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 018FA7A559FCA87CB183E00DC24BA9C52AED
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/Ulu_sMEBMvGtUjrSnH0qjZevy_0.roa
Signing time: Thu 23 May 2024 22:49:42 +0000
ROA not before: Thu 23 May 2024 22:49:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136258
IP address blocks: 109.104.152.0/24 maxlen: 24
109.104.153.0/24 maxlen: 24
109.104.155.0/24 maxlen: 24
147.78.0.0/24 maxlen: 24
147.78.1.0/24 maxlen: 24
147.78.2.0/24 maxlen: 24
147.78.3.0/24 maxlen: 24
185.126.238.0/24 maxlen: 24
185.126.239.0/24 maxlen: 24
185.213.23.0/24 maxlen: 24
2a11:840:6::/48 maxlen: 48
2a11:840:7::/48 maxlen: 48
2a11:840:8::/48 maxlen: 48
2a11:840:10::/48 maxlen: 48
2a11:840:11::/48 maxlen: 48
2a11:840:12::/48 maxlen: 48
2a11:840:13::/48 maxlen: 48
2a11:840:14::/48 maxlen: 48
2a11:840:17::/48 maxlen: 48
2a11:840:18::/48 maxlen: 48
2a11:840:19::/48 maxlen: 48
2a11:840:20::/48 maxlen: 48
2a11:840:21::/48 maxlen: 48
2a11:840:22::/48 maxlen: 48
2a11:840:24::/48 maxlen: 48
2a11:840:25::/48 maxlen: 48
2a11:840:26::/48 maxlen: 48
2a11:840:30::/48 maxlen: 48
2a11:840:33::/48 maxlen: 48
2a11:840:40::/48 maxlen: 48
2a11:840:41::/48 maxlen: 48
2a11:840:47::/48 maxlen: 48
2a11:840:48::/48 maxlen: 48
2a11:840:54::/48 maxlen: 48
2a11:840:60::/48 maxlen: 48
2a11:840:61::/48 maxlen: 48
2a11:840:62::/48 maxlen: 48
2a11:840:63::/48 maxlen: 48
2a11:840:64::/48 maxlen: 48
2a11:840:65::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 22 Jun 2024 19:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a7:a5:59:fc:a8:7c:b1:83:e0:0d:c2:4b:a9:c5:2a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: May 23 22:49:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=525bbfb0c10132f1ad523ad29c7d2a8d97afcbfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:87:18:e4:2f:c1:00:ea:eb:d9:4d:58:c3:c7:
ef:eb:07:ce:72:f7:8d:6d:00:ca:c0:40:27:24:45:
11:ca:29:ad:ba:c0:8f:ae:69:9c:4c:4e:6f:e7:6a:
68:b4:84:4b:ce:ce:ba:53:83:b1:e6:cd:31:05:8c:
66:08:69:4b:71:51:2f:d7:cf:ae:8f:02:a8:24:a9:
b7:3a:59:7c:4a:3b:2f:fe:73:6e:5d:6d:5b:93:1c:
38:70:7b:74:55:d6:42:0b:44:f5:3f:8d:99:a1:85:
87:35:ee:68:ce:cd:0d:da:ba:b6:3f:11:5b:4b:b2:
38:0f:e2:f8:c7:6c:9e:a4:92:81:ff:5c:c2:57:02:
f3:cc:54:b7:7e:db:fd:ef:01:b7:ab:85:00:58:df:
8a:c7:d0:45:27:b6:33:97:1a:d6:e8:d6:72:fc:34:
f9:2c:d9:1c:00:cf:b9:4b:5d:5d:4f:fa:1d:80:ec:
f9:79:4e:73:f9:b8:89:37:2c:60:3c:10:85:33:cd:
f5:8a:f7:a0:3c:be:c5:55:ca:fb:d6:87:b1:55:49:
9c:cc:e9:c3:1f:8c:e0:43:5e:b2:28:bb:24:45:62:
9e:7d:b6:13:85:57:aa:ec:9a:d1:c6:66:ad:c1:90:
c4:1f:96:8a:45:8a:5b:55:e7:42:15:2d:58:58:57:
08:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5B:BF:B0:C1:01:32:F1:AD:52:3A:D2:9C:7D:2A:8D:97:AF:CB:FD
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/Ulu_sMEBMvGtUjrSnH0qjZevy_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.152.0/23
109.104.155.0/24
147.78.0.0/22
185.126.238.0/23
185.213.23.0/24
IPv6:
2a11:840:6::-2a11:840:8:ffff:ffff:ffff:ffff:ffff
2a11:840:10::-2a11:840:14:ffff:ffff:ffff:ffff:ffff
2a11:840:17::-2a11:840:19:ffff:ffff:ffff:ffff:ffff
2a11:840:20::-2a11:840:22:ffff:ffff:ffff:ffff:ffff
2a11:840:24::-2a11:840:26:ffff:ffff:ffff:ffff:ffff
2a11:840:30::/48
2a11:840:33::/48
2a11:840:40::/47
2a11:840:47::-2a11:840:48:ffff:ffff:ffff:ffff:ffff
2a11:840:54::/48
2a11:840:60::-2a11:840:65:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
23:9a:25:25:c4:a1:a0:89:b2:03:f7:71:d0:01:56:19:e2:fa:
0a:59:56:7c:a6:08:33:3e:75:c4:fa:87:6f:49:b0:39:0c:5f:
72:df:d1:69:14:5e:b7:c0:9b:72:19:97:bf:32:3e:09:5c:78:
22:c5:5c:0e:ae:1a:3b:a3:4c:00:ac:f4:a9:07:53:ed:df:d9:
0d:ad:e4:aa:4e:e6:e2:38:18:30:49:2f:a2:b3:6b:45:36:0f:
bf:46:b9:af:de:5c:5c:39:e1:56:02:ab:59:19:e2:e0:9a:ed:
b4:a4:d0:5e:ad:f5:2f:e3:25:ee:84:cc:52:62:ee:63:cb:cb:
6f:80:6b:61:15:f3:b8:e4:06:d8:d3:84:a8:a1:11:f4:8a:0b:
32:9d:c5:12:37:d2:27:68:ed:4b:f6:77:78:c7:05:ad:03:ea:
e0:da:12:31:f1:8f:3a:0a:b1:bb:8e:76:45:b1:45:cc:ce:66:
97:db:0c:cc:be:21:07:4c:1a:12:fb:6e:7b:a6:e9:3e:f8:15:
a0:45:09:b9:72:48:28:db:6f:30:db:91:59:1f:99:fe:0e:33:
88:8c:cb:ca:53:7f:26:08:63:84:80:0e:40:4e:7b:3b:b5:7e:
f8:4c:a2:fe:68:8d:e2:e6:79:f6:b2:40:a1:89:02:96:a6:09:
9d:9d:f8:f4
-----BEGIN CERTIFICATE-----
MIIF0jCCBLqgAwIBAgISAY+npVn8qHyxg+ANwkupxSrtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5MDU2ZmE5NjI1YjZjODc0MDQyNjdjNmRjMjE5OTI0YWMx
NjAwNDUwHhcNMjQwNTIzMjI0OTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjViYmZiMGMxMDEzMmYxYWQ1MjNhZDI5YzdkMmE4ZDk3YWZjYmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34cY5C/BAOrr2U1Yw8fv6wfOcveN
bQDKwEAnJEURyimtusCPrmmcTE5v52potIRLzs66U4Ox5s0xBYxmCGlLcVEv18+u
jwKoJKm3Oll8Sjsv/nNuXW1bkxw4cHt0VdZCC0T1P42ZoYWHNe5ozs0N2rq2PxFb
S7I4D+L4x2yepJKB/1zCVwLzzFS3ftv97wG3q4UAWN+Kx9BFJ7YzlxrW6NZy/DT5
LNkcAM+5S11dT/odgOz5eU5z+biJNyxgPBCFM831ivegPL7FVcr71oexVUmczOnD
H4zgQ16yKLskRWKefbYThVeq7JrRxmatwZDEH5aKRYpbVedCFS1YWFcIzQIDAQAB
o4IC3jCCAtowHQYDVR0OBBYEFFJbv7DBATLxrVI60px9Ko2Xr8v9MB8GA1UdIwQY
MBaAFIkFb6liW2yHQEJnxtwhmSSsFgBFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQt
NTE5MjAzNzMzNTNjLzEvVWx1X3NNRUJNdkd0VWpyU25IMHFqWmV2eV8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85OWFlMmYtMzljYy00M2YzLTk0MWQtNTE5MjAzNzMzNTNj
LzEvaVFWdnFXSmJiSWRBUW1mRzNDR1pKS3dXQUVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHzBggrBgEFBQcBBwEB/wSB4zCB4DAkBAIAATAeAwQBbWiY
AwQAbWibAwQCk04AAwQBuX7uAwQAudUXMIG3BAIAAjCBsDASAwcBKhEIQAAGAwcA
KhEIQAAIMBIDBwQqEQhAABADBwAqEQhAABQwEgMHACoRCEAAFwMHASoRCEAAGDAS
AwcFKhEIQAAgAwcAKhEIQAAiMBIDBwIqEQhAACQDBwAqEQhAACYDBwAqEQhAADAD
BwAqEQhAADMDBwEqEQhAAEAwEgMHACoRCEAARwMHACoRCEAASAMHACoRCEAAVDAS
AwcFKhEIQABgAwcBKhEIQABkMA0GCSqGSIb3DQEBCwUAA4IBAQAjmiUlxKGgibID
93HQAVYZ4voKWVZ8pggzPnXE+odvSbA5DF9y39FpFF63wJtyGZe/Mj4JXHgixVwO
rho7o0wArPSpB1Pt39kNreSqTubiOBgwSS+is2tFNg+/Rrmv3lxcOeFWAqtZGeLg
mu20pNBerfUv4yXuhMxSYu5jy8tvgGthFfO45AbY04SooRH0igsyncUSN9InaO1L
9nd4xwWtA+rg2hIx8Y86CrG7jnZFsUXMzmaX2wzMviEHTBoS+257puk++BWgRQm5
ckgo228w25FZH5n+DjOIjMvKU38mCGOEgA5ATns7tX74TKL+aI3i5nn2skChiQKW
pgmdnfj0
-----END CERTIFICATE-----
Generated at Sat Jun 22 21:01:09 2024 by rpki-client on console-ams.rpki-client.org