Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/uAEP6OqHRt5nV78WG3_9MZ13Nnc.roa
File: uAEP6OqHRt5nV78WG3_9MZ13Nnc.roa (raw, json)
Hash identifier: ao27Y8Lp/l9h0q7tlcmX4xqYbWIMonwmn8ezlqiNgiM=
Subject key identifier: B8:01:0F:E8:EA:87:46:DE:67:57:BF:16:1B:7F:FD:31:9D:77:36:77
Certificate issuer: /CN=b05d28d16626bc5dcabf2e915435782b96e14071
Certificate serial: 01918EC50687577E9245DA4E443A0B97D6A1
Authority key identifier: B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/uAEP6OqHRt5nV78WG3_9MZ13Nnc.roa
Signing time: Mon 26 Aug 2024 12:59:22 +0000
ROA not before: Mon 26 Aug 2024 12:59:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212157
IP address blocks: 147.181.0.0/22 maxlen: 24
147.181.24.0/23 maxlen: 24
185.52.4.0/22 maxlen: 24
2a04:9a00:1010::/44 maxlen: 48
2a04:9a00:1040::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:c5:06:87:57:7e:92:45:da:4e:44:3a:0b:97:d6:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b05d28d16626bc5dcabf2e915435782b96e14071
Validity
Not Before: Aug 26 12:59:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8010fe8ea8746de6757bf161b7ffd319d773677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c3:d1:9a:59:c0:56:14:7b:99:da:f5:9d:7f:
36:90:ab:63:63:cd:8e:0b:8c:72:80:6c:a0:c8:8e:
dc:9b:f5:d4:4a:1f:7c:c3:61:9a:fd:c9:7f:98:f7:
6a:22:d2:4b:74:1f:b3:b7:a8:1f:72:f3:84:25:37:
c7:1e:cd:b4:f5:83:93:04:ec:12:f1:dc:14:f7:c3:
c1:8b:1a:3e:13:51:0e:ef:2c:15:94:8d:64:dc:46:
84:0e:81:1b:93:ab:8a:4b:2c:24:42:88:ed:d6:65:
5f:6a:36:39:f8:6d:61:72:b1:4e:1a:08:4a:df:91:
a8:03:1a:07:8b:76:b0:95:f7:64:8e:8a:b2:79:d1:
15:e3:db:d4:74:eb:f0:e8:3d:f0:0c:e6:fb:f1:5e:
df:17:c0:77:66:1d:63:e8:e7:5c:7a:f4:d9:53:7d:
a0:85:b9:da:a7:b5:b0:b2:49:4a:32:69:6c:b5:b0:
41:c4:64:5c:7f:fd:18:fb:2e:3d:e6:b5:6b:28:87:
ac:dd:b4:92:9e:c8:95:73:08:b6:e0:bf:3b:65:8c:
01:54:11:7a:27:9e:1c:c3:6b:b3:5e:b1:d1:99:ae:
c7:b1:02:ca:77:1f:e6:33:8d:d5:e5:04:8d:2a:c0:
8c:af:71:5c:45:44:0d:ce:e2:fa:24:25:67:6c:c8:
8e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:01:0F:E8:EA:87:46:DE:67:57:BF:16:1B:7F:FD:31:9D:77:36:77
X509v3 Authority Key Identifier:
keyid:B0:5D:28:D1:66:26:BC:5D:CA:BF:2E:91:54:35:78:2B:96:E1:40:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/uAEP6OqHRt5nV78WG3_9MZ13Nnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/bba973-7c9f-4b11-b611-ad575522b365/1/sF0o0WYmvF3Kvy6RVDV4K5bhQHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.181.0.0/22
147.181.24.0/23
185.52.4.0/22
IPv6:
2a04:9a00:1010::/44
2a04:9a00:1040::/44
Signature Algorithm: sha256WithRSAEncryption
95:bf:6d:45:10:97:02:ee:44:12:05:a1:38:d2:92:63:ce:79:
8d:e8:a5:14:c0:ba:21:d7:3c:7e:78:18:09:6b:00:86:31:cf:
3d:97:32:e2:eb:ab:b6:dc:fd:77:b5:6f:0a:71:b0:a7:b1:3d:
ee:b3:7a:31:5e:eb:37:9a:dc:56:c2:82:f1:a8:f4:18:bc:05:
78:ea:14:2a:0a:67:c3:3d:a1:e2:7a:68:29:50:2c:a5:5d:47:
23:dd:44:12:3b:40:51:3d:0b:f4:0a:20:12:db:19:55:19:1b:
80:27:d9:4e:02:33:09:ac:50:af:36:77:c0:20:2b:61:0f:38:
95:85:61:b8:e0:61:7a:17:db:cb:78:fe:17:53:14:ab:0e:86:
5e:41:93:82:ca:85:ae:4d:a7:fc:c4:7f:82:32:4f:46:ae:fa:
6b:fc:c2:f4:ee:17:5a:0d:1f:46:f6:b1:c6:43:b5:3e:08:5c:
c9:ab:b0:29:fe:a1:cd:98:0f:7d:97:ce:e6:b7:ea:7e:bb:30:
02:27:7c:3d:58:3f:24:1b:4b:8d:78:3c:81:42:5e:d8:c1:49:
4e:34:aa:2a:57:c7:33:50:66:38:b5:48:69:d5:55:2e:e6:f8:
8c:16:7b:60:9b:fb:63:e3:9d:9b:7f:1b:4d:e7:fd:3b:fb:d1:
24:54:ae:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:33:41 2025 by rpki-client