Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/0_ULpJ6mScaPtdLRHTtGVW2Yd3Q.roa
File: 0_ULpJ6mScaPtdLRHTtGVW2Yd3Q.roa (raw, json)
Hash identifier: Aibv8+ZmMlbzIr60leCpRU9WFRO3QO8vS7AL2hbeyqA=
Subject key identifier: D3:F5:0B:A4:9E:A6:49:C6:8F:B5:D2:D1:1D:3B:46:55:6D:98:77:74
Certificate issuer: /CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Certificate serial: 018B1E6BFE2F9C7F3E43719CFC1EAE9514BF
Authority key identifier: 65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/0_ULpJ6mScaPtdLRHTtGVW2Yd3Q.roa
Signing time: Wed 11 Oct 2023 11:07:55 +0000
ROA not before: Wed 11 Oct 2023 11:07:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50304
IP address blocks: 193.28.1.0/24 maxlen: 24
193.28.4.0/24 maxlen: 24
193.28.7.0/24 maxlen: 24
178.255.144.0/21 maxlen: 32
91.90.40.0/21 maxlen: 24
91.199.193.0/24 maxlen: 24
194.99.40.0/22 maxlen: 24
185.41.240.0/22 maxlen: 24
193.138.6.0/23 maxlen: 24
176.125.232.0/22 maxlen: 22
134.90.144.0/21 maxlen: 32
134.90.148.0/24 maxlen: 24
94.124.74.0/24 maxlen: 24
194.127.198.0/23 maxlen: 23
194.127.199.0/24 maxlen: 24
91.205.184.0/22 maxlen: 22
193.27.45.0/24 maxlen: 24
37.202.56.0/21 maxlen: 24
31.169.48.0/21 maxlen: 32
185.35.200.0/22 maxlen: 24
185.35.200.0/24 maxlen: 24
185.12.56.0/22 maxlen: 24
194.35.228.0/22 maxlen: 24
213.163.240.0/23 maxlen: 23
185.152.32.0/23 maxlen: 23
185.152.32.0/22 maxlen: 24
217.197.164.0/22 maxlen: 24
45.152.48.0/22 maxlen: 22
91.227.248.0/22 maxlen: 24
2a02:ed01::/32 maxlen: 32
2a02:ed00::/32 maxlen: 32
2a02:ed03::/32 maxlen: 32
2a02:ed04:100::/44 maxlen: 44
2a02:ed04:4700::/44 maxlen: 44
2a02:ed04:4600::/44 maxlen: 44
2a02:ed04:4500::/44 maxlen: 44
2a02:ed04:4400::/44 maxlen: 44
2a02:ed04:3400::/44 maxlen: 44
2a02:ed04:3580::/44 maxlen: 44
2a02:ed06::/32 maxlen: 32
2a02:20c8::/32 maxlen: 48
2a07:7d80::/29 maxlen: 29
2a04:8d40::/29 maxlen: 32
2a02:ed05::/32 maxlen: 32
2a02:ed00::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:6b:fe:2f:9c:7f:3e:43:71:9c:fc:1e:ae:95:14:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65bdcff77bf060d5da12de45e2072e1cff4560a7
Validity
Not Before: Oct 11 11:07:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3f50ba49ea649c68fb5d2d11d3b46556d987774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b8:54:fc:1e:19:71:ec:1a:f2:9c:58:a0:07:
63:12:75:35:76:13:8f:21:6a:5d:ab:a0:3d:fd:c5:
e1:b4:bd:03:a9:10:c2:18:7c:ac:cb:90:6c:2f:45:
ae:81:ae:c3:54:11:c7:5c:b3:07:2f:84:65:e0:11:
2f:7e:ac:66:d1:a3:0d:db:e8:3b:6f:2b:d6:39:d9:
13:5f:92:f8:12:e9:e1:a7:09:50:00:4b:c1:7f:ec:
ad:44:60:80:98:ab:27:ce:49:73:59:41:fb:ed:83:
53:1f:9d:16:98:37:45:31:5c:ac:8a:26:8f:fb:60:
63:cc:d5:93:b1:05:c6:b9:09:8e:c5:20:f9:39:1f:
64:eb:14:81:f3:2e:ff:7f:ac:85:08:d0:e2:99:53:
d0:65:13:af:36:a7:84:bf:61:84:ed:2f:17:88:fd:
b9:33:3e:b3:38:5e:5e:37:76:29:8a:e9:fb:19:bd:
05:b1:fc:be:70:48:ce:50:fd:81:f2:ea:bf:9d:f9:
81:4d:71:71:45:6a:34:65:fb:17:1b:70:11:fb:85:
b2:84:66:0f:d2:5f:c0:66:bf:15:f6:e8:1a:b1:da:
00:a6:d2:ae:bb:99:74:35:4f:a0:0d:d7:2d:51:11:
3b:6a:a1:a6:0d:5f:14:82:98:40:92:32:22:b8:85:
55:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F5:0B:A4:9E:A6:49:C6:8F:B5:D2:D1:1D:3B:46:55:6D:98:77:74
X509v3 Authority Key Identifier:
keyid:65:BD:CF:F7:7B:F0:60:D5:DA:12:DE:45:E2:07:2E:1C:FF:45:60:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zb3P93vwYNXaEt5F4gcuHP9FYKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/0_ULpJ6mScaPtdLRHTtGVW2Yd3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/195f3d-a851-455a-9b0f-d70cd97f4857/1/Zb3P93vwYNXaEt5F4gcuHP9FYKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.48.0/21
37.202.56.0/21
45.152.48.0/22
91.90.40.0/21
91.199.193.0/24
91.205.184.0/22
91.227.248.0/22
94.124.74.0/24
134.90.144.0/21
176.125.232.0/22
178.255.144.0/21
185.12.56.0/22
185.35.200.0/22
185.41.240.0/22
185.152.32.0/22
193.27.45.0/24
193.28.1.0/24
193.28.4.0/24
193.28.7.0/24
193.138.6.0/23
194.35.228.0/22
194.99.40.0/22
194.127.198.0/23
213.163.240.0/23
217.197.164.0/22
IPv6:
2a02:20c8::/32
2a02:ed00::/29
2a04:8d40::/29
2a07:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
79:7f:22:fb:93:6b:ef:4f:fa:eb:f1:ad:04:cc:f5:1b:db:82:
9e:42:77:6f:fc:76:94:ea:85:cc:99:52:68:de:ba:a8:ff:0e:
e0:6a:3a:4a:41:4c:d9:00:79:cc:fa:1d:aa:53:e3:cc:ca:87:
08:c0:29:9b:6e:45:63:7a:5d:65:3e:6b:b6:1a:af:4d:f2:52:
39:4f:39:84:54:e1:bd:bf:b0:dc:46:2c:23:d8:1c:18:a4:20:
0f:95:45:b2:9c:66:0c:96:c1:26:7f:91:a8:41:61:0d:7b:17:
a9:e5:d3:47:12:15:0d:0d:46:30:3d:fd:d1:74:f3:ed:7e:b9:
7e:83:41:cf:60:01:7c:e3:be:d2:31:d8:09:77:e8:bd:ff:99:
21:84:a4:42:ba:0b:9c:70:b4:4b:5b:92:86:17:d5:66:ea:35:
89:77:6d:f5:81:c1:de:24:12:42:53:d2:1a:fc:1f:19:ba:e2:
ca:25:a2:9f:d5:38:ba:fe:e8:63:89:be:b5:84:45:07:76:84:
ff:5d:c6:65:b5:88:27:75:2c:17:ae:e1:dc:38:87:04:e4:e4:
3f:83:6a:72:33:f8:ed:6a:21:24:82:44:c1:57:b4:32:70:0d:
72:27:9b:9b:2e:26:ed:8e:7a:2b:e3:d1:e4:61:0c:46:61:ad:
c4:2f:b7:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:19 2024 by rpki-client on console-ams.rpki-client.org