Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uTlHvAg4iob5aF5uMumbepnuh40.roa
File: uTlHvAg4iob5aF5uMumbepnuh40.roa (raw, json)
Hash identifier: 8ldptIdc/F72uKyGjhCie9REiQi5qeZaUnjMod4jjH0=
Subject key identifier: B9:39:47:BC:08:38:8A:86:F9:68:5E:6E:32:E9:9B:7A:99:EE:87:8D
Certificate issuer: /CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Certificate serial: 0189B19E6AA3B911EDF77BC41DEFBF194CC3
Authority key identifier: 26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uTlHvAg4iob5aF5uMumbepnuh40.roa
Signing time: Tue 01 Aug 2023 15:01:36 +0000
ROA not before: Tue 01 Aug 2023 15:01:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 5.188.12.0/24 maxlen: 24
185.79.112.0/22 maxlen: 22
5.188.13.0/24 maxlen: 24
5.188.14.0/24 maxlen: 24
5.188.15.0/24 maxlen: 24
185.8.176.0/22 maxlen: 22
185.12.12.0/22 maxlen: 24
5.188.12.0/22 maxlen: 22
160.20.152.0/22 maxlen: 22
178.21.16.0/21 maxlen: 24
5.255.64.0/19 maxlen: 24
91.221.69.0/24 maxlen: 24
89.47.1.0/24 maxlen: 24
46.249.32.0/19 maxlen: 24
93.158.200.0/21 maxlen: 24
93.158.208.0/20 maxlen: 24
5.178.64.0/21 maxlen: 24
185.53.160.0/22 maxlen: 22
2a03:3f40::/32 maxlen: 32
2a00:1caa::/32 maxlen: 32
2a00:1ca8:77::/48 maxlen: 48
2a00:1ca8::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Aug 2023 15:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b1:9e:6a:a3:b9:11:ed:f7:7b:c4:1d:ef:bf:19:4c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2631166de785a3531bdc8361f1190a8369a7ed6a
Validity
Not Before: Aug 1 15:01:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b93947bc08388a86f9685e6e32e99b7a99ee878d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:54:b6:92:b7:90:f4:c1:70:61:df:26:0d:
82:76:7c:7b:58:f4:22:82:b8:83:e3:e8:eb:9d:bf:
cd:6b:3c:d0:e1:e6:7f:45:b7:43:d8:2f:78:f8:8c:
88:54:ed:32:e8:3f:b6:12:8d:0b:90:ef:fc:a2:96:
0d:f9:92:1c:05:1d:e2:32:13:4e:b4:b7:b7:e1:54:
2b:7c:8b:1c:b1:ba:43:77:14:f4:a9:7a:6b:59:40:
3c:cb:6d:78:d6:18:e6:15:5d:e4:45:00:e0:e1:78:
4d:bb:75:e8:f8:7f:f1:b3:d5:a5:d9:9d:69:8a:de:
8c:43:14:df:ce:82:90:6a:51:f8:8a:6a:c4:ce:7c:
40:30:d7:7c:20:f3:d5:99:70:8f:a9:27:57:f8:65:
4f:ef:77:77:ac:54:0a:98:2e:1c:c8:cd:04:01:2f:
bd:df:2c:5e:98:ed:e4:60:27:0e:08:5f:f6:8e:bf:
fd:d4:f1:90:f8:e9:eb:25:f3:4b:2e:a7:90:c4:8b:
fb:b1:c9:19:e3:20:12:09:32:77:79:26:ea:ca:aa:
7f:55:10:d3:7a:e4:94:f7:2a:40:ff:0c:0b:94:2d:
9e:4d:3d:6b:31:21:5b:7e:4a:f6:0c:b4:f4:da:3c:
3f:d0:0b:2c:3a:4f:75:d1:6c:26:aa:76:20:46:48:
e5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:39:47:BC:08:38:8A:86:F9:68:5E:6E:32:E9:9B:7A:99:EE:87:8D
X509v3 Authority Key Identifier:
keyid:26:31:16:6D:E7:85:A3:53:1B:DC:83:61:F1:19:0A:83:69:A7:ED:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/uTlHvAg4iob5aF5uMumbepnuh40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/fb0157-6746-4b00-8f8e-b89a26199976/1/JjEWbeeFo1Mb3INh8RkKg2mn7Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.64.0/21
5.188.12.0/22
5.255.64.0/19
46.249.32.0/19
89.47.1.0/24
91.221.69.0/24
93.158.200.0-93.158.223.255
160.20.152.0/22
178.21.16.0/21
185.8.176.0/22
185.12.12.0/22
185.53.160.0/22
185.79.112.0/22
IPv6:
2a00:1ca8::/32
2a00:1caa::/32
2a03:3f40::/32
Signature Algorithm: sha256WithRSAEncryption
10:10:7e:e1:86:e1:0f:9a:0a:e6:1c:36:c1:db:f7:a7:89:e5:
e5:18:3d:ea:ee:f7:21:d8:00:3f:a2:29:33:22:dd:54:35:eb:
dc:16:07:29:69:f1:1c:41:e9:64:9b:0e:db:2e:24:12:6e:27:
be:47:fc:c9:ee:62:05:b3:42:a0:71:5e:af:d5:fd:0a:f2:74:
cd:63:01:1b:7d:73:96:88:97:9e:1f:99:b8:8a:8a:5a:12:7d:
03:a5:18:09:30:b9:4d:56:ac:88:31:e6:4d:9c:b8:dc:5f:3d:
8c:e3:15:ae:43:26:5b:f9:0f:df:cf:b3:aa:4c:69:d4:29:bf:
4d:93:68:d1:cf:4b:e3:9d:29:9e:9a:a0:c5:b5:77:86:d3:9b:
f6:8a:e6:a5:81:8d:99:31:ed:c0:e4:d7:97:0f:d8:f5:93:15:
f6:0a:e2:7f:f7:75:ca:90:82:9f:66:19:25:b8:8a:be:d9:07:
6e:e1:9c:c2:38:4e:01:09:75:f3:9a:c8:82:49:6d:d7:8b:55:
68:f1:37:a1:eb:bc:4c:d8:c7:8f:75:d2:92:c0:4f:f2:57:37:
ed:f1:cc:79:2d:5f:24:c3:54:4e:89:2c:85:a1:b7:16:92:f0:
a7:87:5a:1c:70:35:43:3b:7d:bd:da:f7:3b:1c:ec:38:d5:46:
70:d3:63:0e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:26 2024 by rpki-client on console-ams.rpki-client.org