Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/6ac685-196b-41f1-9144-99d1ec9672b5/1/uHopFuuDP7u1tahi7_SP4qW6qlc.roa
File: uHopFuuDP7u1tahi7_SP4qW6qlc.roa (raw, json)
Hash identifier: bnYvkaf48tPj1FgnCmcMASTMHzUSfq3curA8ScXxr44=
Subject key identifier: B8:7A:29:16:EB:83:3F:BB:B5:B5:A8:62:EF:F4:8F:E2:A5:BA:AA:57
Certificate issuer: /CN=ab6eb3155e2cd53521199ba7f628c3cdbba7cf79
Certificate serial: 01929AE1D1AE0B7F204BC6B5D90BC9EEB96E
Authority key identifier: AB:6E:B3:15:5E:2C:D5:35:21:19:9B:A7:F6:28:C3:CD:BB:A7:CF:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q26zFV4s1TUhGZun9ijDzbunz3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/6ac685-196b-41f1-9144-99d1ec9672b5/1/uHopFuuDP7u1tahi7_SP4qW6qlc.roa
Signing time: Thu 17 Oct 2024 14:29:03 +0000
ROA not before: Thu 17 Oct 2024 14:29:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12552
IP address blocks: 82.96.0.0/18 maxlen: 18
82.96.28.0/22 maxlen: 22
82.96.43.0/24 maxlen: 24
83.140.0.0/16 maxlen: 16
83.140.30.0/24 maxlen: 24
83.140.95.0/24 maxlen: 24
83.140.96.0/23 maxlen: 23
83.140.99.0/24 maxlen: 24
83.140.108.0/22 maxlen: 22
83.140.113.0/24 maxlen: 24
83.140.156.0/23 maxlen: 23
83.140.171.0/24 maxlen: 24
83.140.220.0/24 maxlen: 24
83.140.221.0/24 maxlen: 24
83.140.231.0/24 maxlen: 24
83.140.249.0/24 maxlen: 24
93.158.64.0/18 maxlen: 18
93.158.68.0/22 maxlen: 22
93.158.76.0/24 maxlen: 24
93.158.78.0/24 maxlen: 24
93.158.88.0/22 maxlen: 22
93.158.92.0/23 maxlen: 23
93.158.95.0/24 maxlen: 24
93.158.98.0/23 maxlen: 23
93.158.100.0/24 maxlen: 24
93.158.102.0/23 maxlen: 23
93.158.107.0/24 maxlen: 24
93.158.108.0/23 maxlen: 23
185.165.172.0/22 maxlen: 22
185.165.172.0/24 maxlen: 24
195.140.200.0/22 maxlen: 22
217.75.96.0/19 maxlen: 19
2001:16d8::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9a:e1:d1:ae:0b:7f:20:4b:c6:b5:d9:0b:c9:ee:b9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab6eb3155e2cd53521199ba7f628c3cdbba7cf79
Validity
Not Before: Oct 17 14:29:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b87a2916eb833fbbb5b5a862eff48fe2a5baaa57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:5d:bc:af:c4:d8:1d:13:69:a2:68:bf:7c:46:
75:33:e4:f9:e8:81:45:76:67:74:a3:44:71:78:1d:
5b:f6:a2:44:00:1a:c8:69:c1:20:82:f0:e8:be:10:
9a:27:fb:c2:d3:48:a1:47:9e:d5:d2:61:e9:72:98:
6d:0f:bb:4a:5b:a4:f5:3e:80:87:3b:49:70:43:47:
b5:9f:1a:fa:08:f8:a4:83:46:3f:70:16:ef:d9:7b:
4e:d2:3b:58:3c:7d:fc:3c:84:90:e4:07:5f:f1:f1:
30:2e:54:17:62:48:bd:bf:7c:56:80:b8:1f:d1:fb:
6f:ad:a3:22:1b:a5:fc:cb:da:cf:3f:96:a4:56:64:
cb:a7:6b:1d:e1:62:2f:ad:79:17:f2:5b:bb:70:78:
02:17:8f:27:56:52:78:17:60:28:b7:21:b0:88:84:
e0:a8:25:b5:58:22:25:cc:97:c6:28:1e:a4:9d:92:
4e:8e:62:18:a7:9b:12:60:ef:fe:de:11:63:94:10:
18:a6:6f:86:60:02:61:a6:8b:a3:82:6b:9c:db:89:
69:e6:33:99:0d:e6:b5:e2:dc:cf:32:2c:e9:7d:a1:
c0:b9:01:99:51:f8:1b:83:dc:2f:20:60:0e:bd:3c:
fd:79:d0:85:a3:ff:e2:ca:5b:f4:7a:23:06:07:cd:
28:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7A:29:16:EB:83:3F:BB:B5:B5:A8:62:EF:F4:8F:E2:A5:BA:AA:57
X509v3 Authority Key Identifier:
keyid:AB:6E:B3:15:5E:2C:D5:35:21:19:9B:A7:F6:28:C3:CD:BB:A7:CF:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q26zFV4s1TUhGZun9ijDzbunz3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/6ac685-196b-41f1-9144-99d1ec9672b5/1/uHopFuuDP7u1tahi7_SP4qW6qlc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/6ac685-196b-41f1-9144-99d1ec9672b5/1/q26zFV4s1TUhGZun9ijDzbunz3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.96.0.0/18
83.140.0.0/16
93.158.64.0/18
185.165.172.0/22
195.140.200.0/22
217.75.96.0/19
IPv6:
2001:16d8::/32
Signature Algorithm: sha256WithRSAEncryption
5e:f9:57:93:40:c3:ec:91:b9:3f:8c:df:57:c8:1a:31:7f:7b:
eb:cb:76:c7:86:88:45:69:36:06:97:4d:7f:a3:53:1c:29:f4:
ff:0a:11:c6:75:a0:22:8b:65:a2:de:fd:ad:58:48:5c:4a:c2:
c1:e9:ec:55:82:62:41:5f:c2:6c:83:29:e8:32:8b:7c:85:e1:
69:6c:e8:10:5a:c7:80:c7:3c:5d:b0:7c:f7:fe:9f:fd:21:6f:
eb:6a:35:1c:70:e1:61:61:6d:30:95:03:d6:cd:00:82:1c:2e:
5e:c0:a4:5b:11:63:cc:c1:9a:a2:1b:bc:4a:1c:29:cb:fa:5a:
e4:37:e8:fa:d6:f6:dd:98:7c:9b:f4:03:cf:f8:a2:18:39:7f:
20:8b:cd:1b:a6:19:f6:5f:57:55:a8:c4:8b:84:8c:d8:f9:c4:
f6:ca:9f:89:d3:8f:1c:23:f8:fc:1d:86:f9:70:20:45:0b:19:
2d:d0:72:ec:58:bd:90:39:b5:f2:4d:7b:af:f1:81:96:37:34:
cb:9c:d6:b8:ae:d9:28:d4:17:83:0a:28:c7:05:79:56:27:5f:
5c:c2:42:a9:b4:03:3b:c0:90:e6:14:3d:68:65:5e:e5:68:a9:
e4:37:98:1d:d5:da:7f:84:ff:8f:0c:8f:b5:ab:a3:30:de:d3:
76:67:dd:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:37 2025 by rpki-client