Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/UOJYA5kVrwldKm-vOdMBELyKNjo.roa
File: UOJYA5kVrwldKm-vOdMBELyKNjo.roa (raw, json)
Hash identifier: e72rg3hSJ9UhxuId4gkIpSESYvyQOdRjUYsSE3tYLxM=
Subject key identifier: 50:E2:58:03:99:15:AF:09:5D:2A:6F:AF:39:D3:01:10:BC:8A:36:3A
Certificate issuer: /CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Certificate serial: 01924248C4E5D1A8CA8FA7222652661614F5
Authority key identifier: 6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/UOJYA5kVrwldKm-vOdMBELyKNjo.roa
Signing time: Mon 30 Sep 2024 09:35:18 +0000
ROA not before: Mon 30 Sep 2024 09:35:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200845
IP address blocks: 5.187.38.0/24 maxlen: 24
5.187.39.0/24 maxlen: 24
185.104.153.0/24 maxlen: 24
185.122.186.0/24 maxlen: 24
185.122.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 18:15:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:42:48:c4:e5:d1:a8:ca:8f:a7:22:26:52:66:16:14:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bc5de7d7255b7d58260c65a120b164ef10ef903
Validity
Not Before: Sep 30 09:35:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50e258039915af095d2a6faf39d30110bc8a363a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bd:e2:58:e3:e7:c4:32:b2:2f:77:81:47:e1:
21:99:ea:8b:b7:50:92:b9:fe:16:f0:a5:59:0c:d2:
82:6e:b4:94:7d:34:7c:d3:51:20:fb:47:38:65:63:
e2:71:e6:f5:f0:e6:70:83:2b:bc:a5:b7:f7:c8:e3:
52:ad:dd:13:4d:ec:ba:94:0d:32:36:fe:af:6e:cd:
ed:b2:12:c6:55:c8:16:63:60:c2:13:86:58:18:43:
25:6c:ea:fa:18:5a:eb:80:7e:be:ae:3e:f2:a6:ad:
d3:ba:09:7d:aa:6c:ae:fa:82:85:88:eb:08:89:e2:
68:ba:1d:25:f7:76:71:fc:7d:79:f6:0a:6b:64:0b:
b9:36:03:e2:dd:9e:05:3a:83:85:48:b6:37:e6:92:
00:23:b0:11:cd:3e:4b:02:2c:02:81:59:fa:dd:75:
ba:58:55:11:8e:92:3c:7f:6c:8f:ec:34:7d:02:b7:
c6:7a:ef:66:ba:6b:d0:4d:05:68:4e:85:bb:7d:07:
3d:1a:9b:c0:eb:06:1e:1f:6c:d3:ce:01:a9:7c:45:
03:de:ca:aa:3f:e2:55:60:50:f4:27:54:d8:c0:d9:
a8:da:10:a3:27:9f:c4:25:09:f9:c0:a1:b8:83:c4:
d4:89:2d:5a:e4:6d:9c:5e:3d:4e:79:00:7d:62:35:
f3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E2:58:03:99:15:AF:09:5D:2A:6F:AF:39:D3:01:10:BC:8A:36:3A
X509v3 Authority Key Identifier:
keyid:6B:C5:DE:7D:72:55:B7:D5:82:60:C6:5A:12:0B:16:4E:F1:0E:F9:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8XefXJVt9WCYMZaEgsWTvEO-QM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/UOJYA5kVrwldKm-vOdMBELyKNjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32109e-24c9-4c88-a8e8-fdf6638d2c04/1/a8XefXJVt9WCYMZaEgsWTvEO-QM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.187.38.0/23
185.104.153.0/24
185.122.186.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:5e:a8:0c:f1:70:c1:ac:95:07:62:44:57:ef:71:f3:04:0b:
aa:a2:88:3d:d4:16:3f:b0:60:42:f9:43:56:c8:93:e3:96:5c:
fa:61:ec:b9:80:d0:3b:69:f5:da:9e:40:53:29:81:b9:30:fc:
98:a1:ac:f6:7c:87:3d:0f:09:1c:3b:88:af:6b:02:ef:cf:bb:
cf:db:f7:2d:2b:f2:07:83:f6:78:14:9a:ff:30:48:83:a9:de:
70:a0:cb:33:e2:99:53:69:5f:b5:78:4e:54:18:fe:d6:3e:07:
9e:7f:22:e8:15:94:a5:89:55:32:32:9d:fe:1c:09:07:a6:c2:
72:86:ff:87:d1:d9:36:a9:70:b7:dd:05:6d:42:46:be:a2:3c:
87:e3:4c:68:e0:bd:7f:bf:fd:1d:2a:c0:33:a6:6d:61:b4:ff:
02:ae:62:d1:d0:f7:87:69:4b:43:b7:8b:09:36:fc:88:ef:36:
ae:d6:12:ba:44:e4:e2:af:d2:e6:2e:0c:a9:2d:15:b0:e8:3e:
1b:bc:e9:fb:a2:af:39:85:54:dc:95:95:17:8e:07:df:41:5a:
be:75:4d:8d:30:79:ff:ba:f4:41:71:85:22:78:dd:a4:7a:4f:
d4:4a:ae:f9:df:a0:4d:34:59:f9:4a:24:bf:45:37:52:09:2e:
4e:80:81:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 23:07:56 2024 by rpki-client on console-ams.rpki-client.org