Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/uCjl3V9vpfDDhIoQ4ys_YurQwY8.roa
File: uCjl3V9vpfDDhIoQ4ys_YurQwY8.roa (raw, json)
Hash identifier: IaTBuW9ZH0AYVdp1XTUza7toJr/8ZvdduCgEtUtqUUU=
Subject key identifier: B8:28:E5:DD:5F:6F:A5:F0:C3:84:8A:10:E3:2B:3F:62:EA:D0:C1:8F
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 01884CF01DC9C811025FA06AF0F896244B6E
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/uCjl3V9vpfDDhIoQ4ys_YurQwY8.roa
Signing time: Wed 24 May 2023 08:46:24 +0000
ROA not before: Wed 24 May 2023 08:46:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61102
IP address blocks: 185.18.206.0/24 maxlen: 24
185.18.205.0/24 maxlen: 24
89.33.29.0/24 maxlen: 24
185.18.204.0/24 maxlen: 24
89.33.28.0/24 maxlen: 24
185.18.207.0/24 maxlen: 24
176.223.65.0/24 maxlen: 24
185.217.98.0/24 maxlen: 24
185.217.97.0/24 maxlen: 24
185.217.96.0/24 maxlen: 24
185.217.99.0/24 maxlen: 24
107.150.179.0/24 maxlen: 24
107.150.178.0/24 maxlen: 24
188.210.255.0/24 maxlen: 24
185.37.150.0/24 maxlen: 24
185.37.149.0/24 maxlen: 24
185.37.148.0/24 maxlen: 24
185.37.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 08:58:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:f0:1d:c9:c8:11:02:5f:a0:6a:f0:f8:96:24:4b:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: May 24 08:46:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b828e5dd5f6fa5f0c3848a10e32b3f62ead0c18f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0e:7e:06:be:39:b4:14:10:4d:38:56:e7:f1:
1f:13:f1:d5:40:32:bc:c2:03:04:06:07:6b:d3:0d:
4f:fa:3c:bb:cb:ae:f4:14:85:89:d6:d5:c7:a3:86:
3a:ce:d9:c7:ff:d4:99:fb:6a:ab:bf:1d:5f:e0:d5:
5d:1a:1b:8a:09:13:62:6f:ce:45:8a:79:2f:da:89:
c4:25:88:48:23:ea:65:d0:33:26:c1:dd:61:40:72:
6d:48:c1:fe:56:59:3b:f0:ac:32:a2:7b:15:22:5a:
08:e8:25:44:78:8a:fd:32:fd:84:77:fe:74:3a:33:
1c:61:e1:08:41:cc:b4:8a:d6:9a:46:12:72:11:f1:
32:de:ec:b5:8b:09:5b:a1:b8:98:35:fe:97:fc:ed:
4e:e5:8f:5b:ad:8c:59:f9:00:56:b8:e4:d9:d0:d6:
34:ff:93:4f:47:ef:c1:16:52:a7:89:a6:f0:78:b7:
a6:e0:74:0f:9c:c9:f8:04:36:6e:54:69:58:53:6d:
e4:ab:e9:aa:77:9e:7d:de:75:f1:a9:24:28:2a:bf:
21:84:53:65:39:11:15:0a:a4:0d:84:ca:18:26:cc:
6b:f6:23:f1:cc:5d:6d:7d:53:6c:e0:f0:94:1c:b5:
5a:29:92:4d:c6:bb:3b:c7:1b:ab:85:48:33:5f:91:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:28:E5:DD:5F:6F:A5:F0:C3:84:8A:10:E3:2B:3F:62:EA:D0:C1:8F
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/uCjl3V9vpfDDhIoQ4ys_YurQwY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.33.28.0/23
107.150.178.0/23
176.223.65.0/24
185.18.204.0/22
185.37.148.0/22
185.217.96.0/22
188.210.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e8:1f:ca:03:d5:d8:e3:fd:df:de:2d:56:a1:b9:7e:c9:e6:
b8:67:8e:70:bc:fa:68:50:e7:03:e8:e8:8c:1b:8f:d4:14:e3:
d1:25:20:75:8d:07:18:89:53:02:97:ea:62:66:db:48:90:e1:
f3:85:3f:e0:36:12:39:be:0b:b2:8b:f5:e0:ca:84:67:e8:d7:
29:45:c7:ed:3a:fa:93:25:b1:9c:52:93:a6:79:93:19:91:5a:
b5:64:ca:b5:da:a2:7a:fb:7d:3d:90:14:45:b9:a2:e5:77:e5:
81:e6:7d:bb:e1:e6:52:24:43:e3:24:d2:c6:16:89:4d:da:91:
3c:65:17:fa:85:0d:51:1a:43:c5:e1:32:de:64:47:d4:b5:a6:
53:af:4a:94:be:7c:a1:c1:01:37:18:8d:55:fe:6c:47:02:83:
c8:6c:46:a5:23:c2:8c:70:11:ce:a9:a9:ab:d0:56:8e:fb:52:
76:58:43:36:3c:af:4b:72:d4:c9:67:12:ce:db:2d:b1:24:4d:
89:a1:5e:d5:91:64:79:71:27:ac:2b:a0:0f:39:d8:e1:19:ed:
85:50:2e:96:b9:5b:2c:c9:ac:f2:19:dc:3b:b1:a7:20:61:62:
a5:b0:ca:6b:36:1d:2d:b9:fc:e6:3a:80:6e:5c:f5:f8:15:bb:
f5:1c:9d:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:37 2024 by rpki-client on console-ams.rpki-client.org