Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/UGaEJYohytqvK_gAWXXnYdv2Ozg.roa
File: UGaEJYohytqvK_gAWXXnYdv2Ozg.roa (raw, json)
Hash identifier: 21ZvSHABMjBGWAoKhbIVuA1tJUG8VBpV0ul06e0H2Wo=
Subject key identifier: 50:66:84:25:8A:21:CA:DA:AF:2B:F8:00:59:75:E7:61:DB:F6:3B:38
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 018CC3B71795D457E2FBFEDCF7CA8D438D85
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/UGaEJYohytqvK_gAWXXnYdv2Ozg.roa
Signing time: Mon 01 Jan 2024 06:30:05 +0000
ROA not before: Mon 01 Jan 2024 06:30:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 212.23.0.0/19 maxlen: 19
82.71.240.0/20 maxlen: 20
88.97.64.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.172.0/22 maxlen: 22
88.98.170.0/23 maxlen: 23
88.98.176.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
51.148.0.0/16 maxlen: 16
88.97.128.0/17 maxlen: 17
62.3.64.0/18 maxlen: 18
51.170.0.0/16 maxlen: 18
88.97.96.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.22.0/23 maxlen: 23
88.98.21.0/24 maxlen: 24
88.98.18.0/24 maxlen: 24
88.96.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
217.155.0.0/16 maxlen: 16
82.68.0.0/14 maxlen: 14
88.98.128.0/19 maxlen: 19
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 09 Jan 2024 10:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:17:95:d4:57:e2:fb:fe:dc:f7:ca:8d:43:8d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Jan 1 06:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=506684258a21cadaaf2bf8005975e761dbf63b38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:ab:cc:0a:41:66:93:94:f7:06:b2:10:de:
db:3f:18:29:ea:65:d6:0b:b3:c8:8c:ed:1f:8d:53:
12:97:ff:22:16:ae:0f:ac:26:31:7b:91:0c:2d:46:
19:82:59:56:c7:07:49:78:78:27:1d:67:23:2f:86:
56:cd:55:e5:0d:b1:14:4f:6d:a2:e7:2e:42:71:04:
16:78:db:08:ca:fc:c3:57:1f:f0:07:0d:8c:98:5a:
a8:1a:c0:78:40:89:a4:0f:1c:71:6d:e5:1b:ef:9e:
22:d8:4e:af:41:04:22:0c:a7:73:b8:25:68:4d:f0:
0d:87:6a:4f:34:b7:db:cb:84:d7:15:92:8e:80:d2:
5f:4c:95:45:af:64:d5:d0:0b:dd:58:aa:3c:c5:65:
a7:b6:88:0e:50:e1:15:55:c2:f9:41:a0:ad:d9:73:
fc:fc:4b:c8:45:ad:12:d1:4f:bb:e0:e4:b7:d7:74:
e5:1e:f5:8b:36:d3:8b:d7:28:87:3d:74:c5:f9:31:
cd:e7:05:c4:41:41:d7:d4:71:2c:86:c5:99:f1:72:
6c:59:39:b9:0f:75:7d:2d:a0:ee:f4:f3:34:7c:6f:
58:69:64:8c:97:82:cc:e6:06:e7:29:03:ea:5e:2d:
dd:8b:88:82:e1:a6:ce:52:af:d2:82:21:01:85:cc:
dc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:66:84:25:8A:21:CA:DA:AF:2B:F8:00:59:75:E7:61:DB:F6:3B:38
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/UGaEJYohytqvK_gAWXXnYdv2Ozg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
51.170.0.0/16
62.3.64.0/18
82.68.0.0/14
88.96.0.0-88.97.111.255
88.97.128.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
50:fb:d2:81:53:7e:8b:54:8d:fd:84:a3:1e:e6:33:60:53:97:
27:49:1b:8a:e0:85:bd:05:e5:9c:cb:5c:60:0c:3c:3c:18:16:
ae:5b:d0:45:20:c0:f0:e0:91:37:af:78:23:cd:bd:7c:96:ae:
10:3c:68:fb:eb:fa:56:7c:e1:36:02:82:92:0e:f5:44:d3:e8:
eb:3f:ae:76:a3:30:18:e3:34:be:0f:9b:52:66:0a:52:10:31:
5c:56:80:d2:48:b5:8b:75:06:32:21:34:9b:c6:96:b9:72:ba:
ad:25:9c:ff:bc:c3:3e:61:fe:46:90:68:cf:e3:72:7b:06:d3:
0c:d4:ab:7f:f8:1e:2f:3b:e8:5c:14:1a:cc:a2:80:b7:a5:c1:
04:2b:c2:7c:29:a5:52:66:6b:2c:15:17:7f:4c:3c:28:b1:9d:
84:ff:82:6a:60:bd:ad:9d:a3:47:59:2a:62:09:b4:bc:7d:63:
75:a0:c4:7c:59:a4:47:5c:dc:ef:06:79:99:ce:7a:83:2a:e7:
eb:d9:e7:04:23:75:66:01:92:f6:e5:23:52:44:24:da:6c:6c:
25:d6:f7:63:08:92:3e:03:d8:dc:83:2f:0f:dd:d6:6e:97:75:
b6:63:98:96:04:35:41:de:86:e3:13:6e:6f:40:c2:71:9f:82:
0e:41:8b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 15:36:44 2024 by rpki-client on console-fra.rpki-client.org