Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uBZdk-AzBrsczrxVkGavJj1t9GM.roa
File: uBZdk-AzBrsczrxVkGavJj1t9GM.roa (raw, json)
Hash identifier: K5/h1rPrFhZbjkA7glxyjLqkNf9yheqM9CcuXZ5f34U=
Subject key identifier: B8:16:5D:93:E0:33:06:BB:1C:CE:BC:55:90:66:AF:26:3D:6D:F4:63
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018CC80299E57EA02396E06AF1AC6B19977A
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uBZdk-AzBrsczrxVkGavJj1t9GM.roa
Signing time: Tue 02 Jan 2024 02:31:02 +0000
ROA not before: Tue 02 Jan 2024 02:31:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213005
IP address blocks: 93.92.228.0/22 maxlen: 24
194.38.56.0/22 maxlen: 24
92.60.34.0/24 maxlen: 24
185.211.180.0/22 maxlen: 22
185.106.124.0/22 maxlen: 24
85.115.192.0/22 maxlen: 24
81.21.228.0/22 maxlen: 24
185.245.34.0/23 maxlen: 23
185.227.128.0/22 maxlen: 22
212.115.44.0/22 maxlen: 24
95.214.144.0/22 maxlen: 24
185.223.220.0/22 maxlen: 22
212.80.208.0/22 maxlen: 24
193.35.88.0/22 maxlen: 24
193.26.152.0/22 maxlen: 24
88.135.64.0/22 maxlen: 24
185.179.228.0/22 maxlen: 22
185.189.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Mar 2024 10:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:99:e5:7e:a0:23:96:e0:6a:f1:ac:6b:19:97:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 02:31:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8165d93e03306bb1ccebc559066af263d6df463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:80:d1:c6:bb:a4:9d:91:a4:8a:52:78:ec:30:
3c:01:83:16:db:90:73:53:76:03:8c:ba:23:39:ab:
31:b4:5c:da:82:e3:5c:2f:2b:dc:49:e1:4f:89:55:
dd:ed:cf:6a:01:76:0d:99:7b:4f:00:13:3d:7f:7c:
6a:40:05:b1:93:41:1a:e9:65:bd:31:9b:6c:4d:c0:
a3:0a:f9:88:88:1a:32:60:35:2d:16:5b:06:01:b7:
2c:6f:ec:e9:d9:fb:34:ad:86:e4:a6:1e:a5:1d:53:
b8:99:54:4a:6d:5d:0a:5f:a9:1c:b8:44:3c:b5:05:
fb:98:17:f0:d7:e8:0d:e4:6a:82:94:a2:d7:db:05:
5c:04:63:4d:ab:63:c9:04:b0:b0:37:a8:4c:ef:07:
7c:89:eb:2c:20:a8:8c:8f:f3:d6:16:36:e1:4b:a0:
79:7f:c1:7b:e5:a3:42:91:2d:c3:98:93:cd:fb:c2:
dc:89:f2:1e:24:bc:bb:5c:c7:bc:82:a8:c3:03:02:
aa:8b:8e:f8:32:df:1c:8e:b4:34:47:3e:7c:b1:31:
15:72:e0:99:52:9c:35:d7:80:43:93:63:5b:d6:15:
f0:8c:67:6f:ef:4c:f8:32:80:58:92:6d:f8:3e:4b:
ce:f3:f4:64:2d:ee:59:63:16:ad:8b:a4:c8:cf:e9:
72:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:16:5D:93:E0:33:06:BB:1C:CE:BC:55:90:66:AF:26:3D:6D:F4:63
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uBZdk-AzBrsczrxVkGavJj1t9GM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.21.228.0/22
85.115.192.0/22
88.135.64.0/22
92.60.34.0/24
93.92.228.0/22
95.214.144.0/22
185.106.124.0/22
185.179.228.0/22
185.189.64.0/22
185.211.180.0/22
185.223.220.0/22
185.227.128.0/22
185.245.34.0/23
193.26.152.0/22
193.35.88.0/22
194.38.56.0/22
212.80.208.0/22
212.115.44.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:03:3c:b8:83:42:c1:96:6d:dd:46:3d:4b:db:24:31:a5:32:
e8:64:12:cd:5d:0d:f3:2a:d2:61:4e:bc:3a:a7:ac:89:14:4b:
52:19:81:95:9c:5f:af:d7:2f:54:cb:13:57:78:f0:7e:f4:6c:
a2:b7:62:48:fb:21:db:8b:05:19:96:bf:46:08:66:14:1b:c9:
75:18:e6:07:f0:28:99:9d:c9:02:e7:71:40:8b:d9:da:7d:79:
88:c1:8f:c4:0a:f2:59:55:7b:b4:5e:46:71:54:6f:72:3c:ae:
7d:4b:bc:e6:d9:bb:fd:43:61:b5:8a:da:96:a5:b9:4a:93:45:
db:ec:4a:f7:e3:78:79:af:06:f6:b6:c5:40:5b:e8:fc:a1:4a:
6f:c3:77:05:92:fe:09:13:e5:42:2f:be:49:cb:a2:a0:6e:5a:
37:a9:83:13:b5:08:8a:84:7f:ff:c6:13:ca:5d:9e:ae:5f:2e:
2a:6b:25:41:9d:3a:57:ab:ac:29:81:74:27:ca:2a:2e:b1:59:
cc:bf:20:0b:b4:73:20:a0:a4:db:9f:75:0f:f4:ed:13:7c:8e:
08:65:c3:d1:99:72:97:53:cd:b8:e9:57:3b:d2:32:56:59:b7:
c3:40:a4:77:70:c5:3d:f7:f6:0f:90:29:8c:3a:e1:cd:c7:3f:
b1:ae:11:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org