Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/UIr0tY1zCfM103VnNHSTZSqkm-Y.roa
File: UIr0tY1zCfM103VnNHSTZSqkm-Y.roa (raw, json)
Hash identifier: Lrukc02Jm0vrQ7IGPhEjpyegoFvgEd093jOKBe5r7io=
Subject key identifier: 50:8A:F4:B5:8D:73:09:F3:35:D3:75:67:34:74:93:65:2A:A4:9B:E6
Certificate issuer: /CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Certificate serial: 0192C2CE0F34016499BC62B4DD9AC1093CA3
Authority key identifier: F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/UIr0tY1zCfM103VnNHSTZSqkm-Y.roa
Signing time: Fri 25 Oct 2024 08:32:16 +0000
ROA not before: Fri 25 Oct 2024 08:32:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61053
IP address blocks: 91.211.244.0/22 maxlen: 22
91.225.104.0/22 maxlen: 22
93.115.11.0/24 maxlen: 24
94.176.188.0/24 maxlen: 24
94.176.189.0/24 maxlen: 24
185.34.52.0/22 maxlen: 22
185.80.128.0/22 maxlen: 22
185.111.180.0/24 maxlen: 24
185.111.181.0/24 maxlen: 24
185.111.182.0/24 maxlen: 24
185.111.183.0/24 maxlen: 24
185.169.140.0/22 maxlen: 22
185.172.156.0/24 maxlen: 24
185.172.157.0/24 maxlen: 24
185.172.158.0/24 maxlen: 24
185.172.159.0/24 maxlen: 24
185.233.204.0/22 maxlen: 22
2a05:7cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c2:ce:0f:34:01:64:99:bc:62:b4:dd:9a:c1:09:3c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f256a9edb2d9ade204d82313cce98b6623a9d8ac
Validity
Not Before: Oct 25 08:32:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=508af4b58d7309f335d37567347493652aa49be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:80:d9:3a:fe:59:8f:71:64:2f:69:4e:5c:24:
52:25:6d:1b:63:60:e7:26:6c:6a:44:54:98:d1:27:
70:9d:34:06:d8:78:bc:ef:a6:3b:3d:70:9b:aa:dc:
11:05:9c:11:db:21:90:c4:84:c0:aa:ed:b0:57:a6:
37:a6:6b:53:a2:0d:e3:1b:00:93:de:16:22:4b:72:
2b:a4:96:d0:13:01:b3:9e:65:9e:39:22:e5:c5:27:
dd:00:eb:31:c2:f4:10:3b:df:02:21:63:7b:44:a7:
e3:0c:95:c1:73:53:9c:4a:dc:29:aa:9e:96:e1:f7:
1c:21:e2:47:67:d0:95:3a:08:a2:85:a7:48:11:3d:
00:8f:55:42:24:f5:5e:4b:dd:1c:e5:7e:2f:c2:36:
c1:3b:d0:fd:61:7c:17:82:c7:b2:58:28:cc:67:17:
92:ad:6e:12:b0:4c:19:b3:fd:c7:68:c1:a8:92:87:
6f:50:8a:b1:35:ec:ab:aa:8a:ca:11:47:e4:82:5d:
71:70:82:ee:26:87:76:1e:48:ef:b7:fc:64:08:ce:
46:30:2d:58:0e:fb:27:93:68:40:fa:84:f1:5b:f1:
5c:b1:72:d5:63:c5:0e:ad:a9:34:db:6f:ff:7a:90:
70:58:45:d7:9d:c9:ee:7e:ce:fd:92:ab:0b:f2:76:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8A:F4:B5:8D:73:09:F3:35:D3:75:67:34:74:93:65:2A:A4:9B:E6
X509v3 Authority Key Identifier:
keyid:F2:56:A9:ED:B2:D9:AD:E2:04:D8:23:13:CC:E9:8B:66:23:A9:D8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lap7bLZreIE2CMTzOmLZiOp2Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/UIr0tY1zCfM103VnNHSTZSqkm-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/126c9e-4fa7-49d4-928c-9107c912d7d8/1/8lap7bLZreIE2CMTzOmLZiOp2Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.244.0/22
91.225.104.0/22
93.115.11.0/24
94.176.188.0/23
185.34.52.0/22
185.80.128.0/22
185.111.180.0/22
185.169.140.0/22
185.172.156.0/22
185.233.204.0/22
IPv6:
2a05:7cc0::/29
Signature Algorithm: sha256WithRSAEncryption
6c:1e:8f:5d:cd:f3:c9:0e:f4:b0:02:ea:a0:6e:b8:b8:11:ea:
40:68:66:08:91:57:dc:20:df:9e:17:63:ea:b1:9a:5e:dc:ab:
62:37:98:b7:de:68:0d:7d:39:64:87:2b:92:bb:cb:e6:6f:41:
71:68:73:21:be:12:2d:33:de:8f:0f:fa:c7:98:e4:c2:a7:90:
ec:a9:9d:d1:e3:7e:98:03:7b:66:5d:c3:b9:db:22:bf:21:9d:
e7:79:b5:0b:53:60:fe:27:79:10:cd:7f:fb:35:71:89:95:65:
f3:ff:41:ab:81:1f:5c:aa:fb:27:19:a8:f5:8f:5d:32:54:d2:
5f:02:db:dc:f2:3e:c3:2b:4d:2c:a9:fc:1a:7b:52:3a:a9:67:
43:f3:9f:62:5c:a1:fb:18:42:25:6d:2a:1e:5d:98:c9:a7:f4:
ad:cb:1d:a4:fe:ef:99:d7:3e:f8:1a:9c:b6:f7:b9:b5:56:2c:
0f:20:d3:cb:3b:2b:c5:c7:06:01:d1:5b:88:b6:12:76:6b:80:
09:c0:5a:d5:42:69:c3:94:7a:25:8f:79:7b:2f:9e:cc:a2:d4:
ad:62:6e:06:cc:0d:8a:50:30:89:21:11:a7:2d:11:d0:1d:ab:
f3:11:44:86:ef:ae:8d:1a:6c:db:9e:f4:c4:24:4e:84:13:4f:
5d:69:b1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:27 2025 by rpki-client