Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UvHYqPp_V08RFZsLSASs2ZZ6EI8.roa
File: UvHYqPp_V08RFZsLSASs2ZZ6EI8.roa (raw, json)
Hash identifier: is2VVspwuDJFjH3XsYVV+g7KLLexU3I/ey76WZJk3hs=
Subject key identifier: 52:F1:D8:A8:FA:7F:57:4F:11:15:9B:0B:48:04:AC:D9:96:7A:10:8F
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018C6F3D700DB07A9D836BCD855B62BD3175
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UvHYqPp_V08RFZsLSASs2ZZ6EI8.roa
Signing time: Fri 15 Dec 2023 20:49:06 +0000
ROA not before: Fri 15 Dec 2023 20:49:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208392
IP address blocks: 185.112.80.0/24 maxlen: 24
45.132.253.0/24 maxlen: 24
185.112.100.0/24 maxlen: 24
82.115.222.0/24 maxlen: 24
185.17.1.0/24 maxlen: 24
185.114.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6f:3d:70:0d:b0:7a:9d:83:6b:cd:85:5b:62:bd:31:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Dec 15 20:49:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52f1d8a8fa7f574f11159b0b4804acd9967a108f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:a2:2a:57:9a:f7:96:78:94:30:d2:b7:34:
26:24:47:62:69:53:5c:db:9a:1f:24:24:26:92:74:
c6:39:e0:8b:67:fd:cc:98:dd:a0:10:27:56:16:5c:
61:d3:9e:39:a8:be:20:1f:6f:8f:59:ea:5d:d4:f4:
91:2d:ba:62:9b:94:ac:93:49:ef:28:64:eb:4f:86:
7b:d8:35:8b:c4:77:03:c3:81:db:7d:70:b6:a9:25:
e9:57:3b:e5:c2:0c:fe:89:b6:26:d5:c0:cb:e5:e8:
b5:76:fe:bc:f8:25:96:9b:79:96:e7:ac:e2:9f:bf:
78:14:9a:d5:bf:a7:bc:62:ee:3e:73:52:cb:da:c1:
60:96:aa:17:9c:fe:70:34:58:82:6e:ae:29:b6:8a:
9b:7b:3d:83:7b:78:2b:19:d9:5a:c8:05:97:9a:02:
c5:12:93:d4:46:84:a7:e6:2a:d0:f8:46:3b:4c:c2:
0e:34:86:fa:9c:fd:8f:e3:e4:34:d5:8e:40:db:96:
54:de:c4:8f:25:34:51:16:84:f2:4e:f7:94:90:7e:
a1:eb:3b:0c:0f:93:88:06:72:6d:dc:ee:62:06:f0:
97:50:56:15:2a:d2:e0:9a:e5:0a:86:5b:f4:40:17:
01:e1:9f:7f:57:f8:35:07:9b:19:f5:94:3d:c8:88:
22:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F1:D8:A8:FA:7F:57:4F:11:15:9B:0B:48:04:AC:D9:96:7A:10:8F
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/UvHYqPp_V08RFZsLSASs2ZZ6EI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.253.0/24
82.115.222.0/24
185.17.1.0/24
185.112.80.0/24
185.112.100.0/24
185.114.74.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e3:25:a2:cf:b1:ee:47:02:b6:b9:b6:9c:b3:91:69:7a:aa:
c8:66:24:cd:ee:f5:fb:4b:8e:43:24:73:b8:e1:d5:1f:60:96:
3d:9b:a1:4e:bf:0e:ba:5b:f6:e4:04:a6:8c:27:d5:78:a5:87:
94:67:3e:57:74:ca:83:e8:63:69:65:0f:77:8f:42:69:9f:48:
ae:b9:af:72:29:1f:17:87:b0:42:f4:87:e7:c8:2b:ab:5f:da:
25:40:a5:4d:c5:34:25:37:1a:71:70:49:18:69:64:46:ef:e7:
f6:21:dc:4d:a3:bd:da:8e:c4:64:84:2a:31:75:ac:ec:6a:4a:
d6:1d:11:b5:88:07:f2:dc:ec:d6:1c:56:f6:9a:ac:44:10:b8:
0c:b5:13:5b:aa:d3:4e:76:2d:74:5f:f9:25:c9:83:10:73:e1:
6b:62:bc:47:0f:e4:99:7d:71:ae:0f:da:32:44:e2:ad:f5:0a:
ca:55:7d:37:f8:8f:08:74:03:7a:eb:1d:7f:6e:6c:f7:64:d4:
56:8c:d5:fd:07:4c:35:7a:fc:e0:7d:3a:0b:2b:91:70:94:1f:
ed:4a:41:cd:b4:01:e1:95:49:65:13:3d:23:38:1c:15:b2:39:
09:7c:1d:72:84:5e:99:10:27:37:fe:02:e9:51:db:a9:86:77:
24:a7:e2:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org