Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/uPmNL6ylySHkIMqFoQRNyZSFmiE.roa
File: uPmNL6ylySHkIMqFoQRNyZSFmiE.roa (raw, json)
Hash identifier: VEbQbzZstrEHWsfhrCGz0mwgE4svNABjC+W4KGBep7Y=
Subject key identifier: B8:F9:8D:2F:AC:A5:C9:21:E4:20:CA:85:A1:04:4D:C9:94:85:9A:21
Certificate issuer: /CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Certificate serial: 018718BA7C0507F0B55D049A5FBF4EB67EF2
Authority key identifier: 07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/uPmNL6ylySHkIMqFoQRNyZSFmiE.roa
Signing time: Sat 25 Mar 2023 12:24:47 +0000
ROA not before: Sat 25 Mar 2023 12:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208425
IP address blocks: 185.114.23.0/24 maxlen: 24
185.114.21.0/24 maxlen: 24
185.114.22.0/24 maxlen: 24
185.114.20.0/24 maxlen: 24
194.61.119.0/24 maxlen: 24
185.146.91.0/24 maxlen: 24
185.1.132.0/24 maxlen: 24
185.146.89.0/24 maxlen: 24
185.146.90.0/24 maxlen: 24
185.146.88.0/24 maxlen: 24
185.50.70.0/24 maxlen: 24
185.50.71.0/24 maxlen: 24
185.50.68.0/24 maxlen: 24
185.50.69.0/24 maxlen: 24
185.169.55.0/24 maxlen: 24
185.169.53.0/24 maxlen: 24
185.169.54.0/24 maxlen: 24
185.169.52.0/24 maxlen: 24
194.61.117.0/24 maxlen: 24
194.61.118.0/24 maxlen: 24
194.61.116.0/24 maxlen: 24
2a0a:3900::/29 maxlen: 29
2a01:a420::/29 maxlen: 29
2001:7f8:ec::/48 maxlen: 48
2a0f:d500::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:18:ba:7c:05:07:f0:b5:5d:04:9a:5f:bf:4e:b6:7e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=078629f5f61fb25564284fbfeffb93c3ed44bfe2
Validity
Not Before: Mar 25 12:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8f98d2faca5c921e420ca85a1044dc994859a21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4a:8a:ce:21:76:0e:ed:10:d0:df:82:f7:d0:
0d:f2:99:74:0d:39:13:f6:58:c7:e4:92:31:c5:b8:
f5:2b:6c:b9:33:fd:7f:63:64:59:5b:ce:cd:f4:71:
b7:8b:86:89:42:45:3d:c9:b2:f3:b1:79:c0:fb:a1:
e0:ad:16:54:ef:78:5f:d0:2d:62:bf:16:f4:ee:fc:
57:ab:5e:68:68:c1:84:05:1f:a1:7a:58:7f:99:80:
d3:93:a8:a5:21:bc:1f:de:72:c8:b6:59:5a:71:61:
5c:32:7b:84:a9:0f:d6:32:d6:81:d8:f1:8f:6f:50:
13:50:29:b6:5f:4d:02:d7:81:48:01:db:24:25:37:
95:d0:68:45:5b:0e:09:cb:32:1c:9a:f2:00:01:60:
9b:e5:3e:f2:ab:bb:0d:5a:04:87:a7:34:cf:e0:12:
90:2f:7c:5f:58:e1:b8:9b:f5:32:6d:a7:31:08:7b:
f5:a7:3c:fa:b0:6d:2b:2f:be:3e:dd:f1:22:6b:8c:
52:bc:e7:7b:1c:26:35:8e:d9:8e:f6:a1:98:65:21:
96:7d:8c:23:99:6a:f6:77:93:07:f3:f8:54:4a:32:
cd:a2:7d:6a:59:30:0f:2d:f1:ba:67:67:f4:16:24:
0b:de:a4:8f:56:3e:a2:32:22:6a:7b:48:e7:d0:08:
3b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F9:8D:2F:AC:A5:C9:21:E4:20:CA:85:A1:04:4D:C9:94:85:9A:21
X509v3 Authority Key Identifier:
keyid:07:86:29:F5:F6:1F:B2:55:64:28:4F:BF:EF:FB:93:C3:ED:44:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/uPmNL6ylySHkIMqFoQRNyZSFmiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0618e4-7a64-460c-aaf9-63af2c4f4020/1/B4Yp9fYfslVkKE-_7_uTw-1Ev-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.132.0/24
185.50.68.0/22
185.114.20.0/22
185.146.88.0/22
185.169.52.0/22
194.61.116.0/22
IPv6:
2001:7f8:ec::/48
2a01:a420::/29
2a0a:3900::/29
2a0f:d500::/29
Signature Algorithm: sha256WithRSAEncryption
31:30:9c:c3:ac:4f:bb:23:84:8f:14:d5:68:3d:a9:11:46:58:
28:b0:fb:45:34:d2:c4:a5:92:2d:d6:9e:30:2f:77:2f:01:41:
d7:a8:71:65:ff:7a:12:41:9e:66:3f:98:0d:14:a0:ff:4f:c8:
dd:df:db:f3:04:85:e8:0c:d3:3a:22:fe:f2:1b:7a:5c:28:e7:
7f:98:58:fb:16:8e:4d:c0:13:4f:81:81:f4:0b:dc:2b:ab:d2:
db:cc:a3:74:bf:ce:69:0b:cc:6b:55:b4:ba:8f:9d:22:4c:31:
62:59:aa:5a:45:d4:a2:1e:a9:d0:27:5a:c2:ca:5d:1a:88:0c:
2b:d3:a3:e8:1e:37:9d:98:37:1c:5b:84:1c:2d:1d:4f:82:04:
35:d4:9f:83:3c:dd:7e:0d:78:d4:9e:50:26:9d:bc:02:98:a9:
65:c2:f3:a3:cf:b8:02:35:e6:55:4d:f4:ed:11:fe:9d:58:c8:
b1:64:ae:c6:e6:36:45:f3:ef:23:d5:b6:65:d7:fd:1f:58:65:
10:7b:75:01:34:e5:83:58:5b:7d:fd:0e:ed:24:02:4b:1d:96:
03:22:1c:64:26:0b:6f:15:01:3b:a6:60:41:98:02:73:8a:f7:
92:d8:2c:db:43:75:99:0d:7a:6d:7c:57:c8:62:08:b8:82:49:
fc:1b:2d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:19 2024 by rpki-client on console-fra.rpki-client.org