Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uy-hezvrOF9neWVjeoUeb2wHTkY.roa
File: uy-hezvrOF9neWVjeoUeb2wHTkY.roa (raw, json)
Hash identifier: d1fFX+k77IJxZWAK8Rvd80jI85n5CiUHZYEdk0dCdSo=
Subject key identifier: BB:2F:A1:7B:3B:EB:38:5F:67:79:65:63:7A:85:1E:6F:6C:07:4E:46
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01896A52525A70B679CCD2625EC820022DC6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uy-hezvrOF9neWVjeoUeb2wHTkY.roa
Signing time: Tue 18 Jul 2023 18:45:27 +0000
ROA not before: Tue 18 Jul 2023 18:45:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.209.36.0/23 maxlen: 24
185.230.52.0/23 maxlen: 24
185.199.159.0/24 maxlen: 24
185.210.152.0/24 maxlen: 24
185.210.154.0/24 maxlen: 24
185.210.153.0/24 maxlen: 24
185.210.155.0/24 maxlen: 24
185.228.74.0/24 maxlen: 24
185.223.76.0/24 maxlen: 24
185.225.2.0/24 maxlen: 24
185.225.0.0/24 maxlen: 24
185.121.12.0/22 maxlen: 24
185.206.249.0/24 maxlen: 24
185.206.251.0/24 maxlen: 24
185.206.248.0/24 maxlen: 24
185.226.105.0/24 maxlen: 24
185.226.107.0/24 maxlen: 24
185.234.20.0/22 maxlen: 24
185.234.23.0/24 maxlen: 24
185.240.120.0/23 maxlen: 24
185.238.228.0/22 maxlen: 24
185.36.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Aug 2023 14:57:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6a:52:52:5a:70:b6:79:cc:d2:62:5e:c8:20:02:2d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 18 18:45:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb2fa17b3beb385f677965637a851e6f6c074e46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6c:f2:66:25:7b:1b:07:80:a7:66:84:b4:f2:
b9:d5:8d:fb:33:6c:d4:8a:cd:06:cd:8d:59:62:e5:
41:3b:b6:21:d0:22:86:f2:e7:ca:b7:78:cc:11:8a:
e3:55:c8:b7:32:ab:08:ce:72:09:f5:5f:ad:a0:58:
32:6d:df:51:96:c2:29:06:a4:b1:90:4b:46:3c:46:
c1:2d:10:80:d6:59:4b:73:a1:7f:5e:18:73:94:27:
a9:32:7d:7f:f5:e5:0b:37:5e:2f:90:05:35:40:b7:
3a:13:f8:9d:93:84:ff:d0:e6:5a:e6:c5:c7:6e:13:
61:b7:42:49:3a:dc:0d:c2:62:ed:45:83:77:1e:8b:
b1:97:09:85:f7:4a:f7:b8:29:ab:cb:de:d1:3b:ab:
ba:92:04:cb:ab:0a:95:af:e4:de:70:f6:65:cd:ae:
4a:92:6f:4a:a7:99:b0:56:93:44:35:18:41:22:79:
d9:b8:7b:94:db:57:e9:31:12:e7:c9:72:e0:25:a4:
7a:d7:eb:36:75:5a:9b:fd:15:20:30:2d:d6:39:96:
d1:70:0f:7d:10:0d:a2:3f:90:a4:43:71:e6:d6:57:
aa:f2:a6:37:4f:45:3e:8e:4d:9b:a2:be:a1:74:71:
12:0d:c6:d7:cb:74:68:50:fb:4f:c0:32:71:1b:f5:
75:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:2F:A1:7B:3B:EB:38:5F:67:79:65:63:7A:85:1E:6F:6C:07:4E:46
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/uy-hezvrOF9neWVjeoUeb2wHTkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.204.0/24
185.121.12.0/22
185.199.159.0/24
185.206.248.0/23
185.206.251.0/24
185.209.36.0/23
185.210.152.0/22
185.223.76.0/24
185.225.0.0/24
185.225.2.0/24
185.226.105.0/24
185.226.107.0/24
185.228.74.0/24
185.230.52.0/23
185.234.20.0/22
185.238.228.0/22
185.240.120.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:a5:19:6a:70:1f:60:79:9c:4b:48:41:11:9b:a3:a1:c9:98:
7e:5e:88:67:2c:db:e1:76:ee:c2:b0:b4:c3:7b:29:2e:b7:96:
d6:b8:be:85:e6:2a:14:0e:16:9e:74:16:31:5c:63:6d:c5:64:
33:35:41:e8:03:18:a0:fd:67:fd:38:ba:a2:80:35:2e:3e:db:
ad:ba:8c:f4:19:61:3f:83:cb:b4:1e:4a:cf:7f:cf:ee:ee:10:
47:af:05:37:58:00:15:2c:f6:bf:04:c5:06:be:20:a9:dd:bf:
35:34:d5:b0:71:55:bc:b0:37:d6:54:8e:ad:64:31:4d:f4:cc:
af:3c:b8:7f:f3:f4:a7:eb:ae:b9:c3:9a:3f:20:83:e9:27:b4:
25:d4:ff:e5:3a:c0:dd:07:53:0b:22:14:f9:f4:59:05:ad:3a:
94:41:c2:a2:d1:21:10:c7:31:ec:80:4f:2a:6b:98:5b:f0:b0:
65:65:bd:b4:7b:1d:bc:62:12:27:7c:fd:0d:97:63:58:c2:9c:
1e:18:01:1c:cd:1a:bf:92:62:21:89:8e:42:54:a9:04:28:36:
74:ba:50:37:fe:b6:93:8a:b5:04:ae:59:5b:46:cf:4d:11:76:
0b:39:8f:0a:44:6a:db:e8:7a:f1:4f:0c:be:33:6b:ff:24:03:
5b:65:5e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org