Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/UzgmHBtYzCRwv0ckLrivxpWF_9E.roa
File: UzgmHBtYzCRwv0ckLrivxpWF_9E.roa (raw, json)
Hash identifier: /FQTeJvu4OXaftmZ3K7HHKYp3H7xlHl599gLab63EW4=
Subject key identifier: 53:38:26:1C:1B:58:CC:24:70:BF:47:24:2E:B8:AF:C6:95:85:FF:D1
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01919D7170AD7CB6A63A47B7C5AE879C7FB9
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/UzgmHBtYzCRwv0ckLrivxpWF_9E.roa
Signing time: Thu 29 Aug 2024 09:22:22 +0000
ROA not before: Thu 29 Aug 2024 09:22:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41937
IP address blocks: 5.134.104.0/21 maxlen: 24
46.235.96.0/21 maxlen: 21
62.240.24.0/21 maxlen: 24
87.250.32.0/19 maxlen: 24
91.185.96.0/19 maxlen: 24
91.204.52.0/22 maxlen: 24
109.94.228.0/22 maxlen: 24
109.94.232.0/21 maxlen: 24
109.122.64.0/18 maxlen: 24
109.198.0.0/19 maxlen: 24
178.237.208.0/20 maxlen: 20
178.250.136.0/21 maxlen: 24
185.10.140.0/22 maxlen: 24
185.26.172.0/22 maxlen: 24
185.34.92.0/22 maxlen: 24
185.103.136.0/22 maxlen: 24
185.112.20.0/22 maxlen: 24
185.179.136.0/22 maxlen: 24
2a00:8720::/32 maxlen: 48
2a00:cf00::/32 maxlen: 48
2a01:b800::/32 maxlen: 48
2a02:61a0::/32 maxlen: 48
2a03:fc40::/32 maxlen: 48
2a04:1dc0::/29 maxlen: 48
2a06:5b00::/29 maxlen: 48
2a06:63c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 30 Aug 2024 07:34:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:9d:71:70:ad:7c:b6:a6:3a:47:b7:c5:ae:87:9c:7f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Aug 29 09:22:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5338261c1b58cc2470bf47242eb8afc69585ffd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:06:5c:5c:ec:94:be:a3:56:6e:0b:80:42:52:
35:9a:4a:e0:8f:74:20:91:5a:ac:63:7c:47:99:4f:
0c:1f:9d:c9:b9:b6:c5:89:1a:a1:2d:3a:b2:ef:2d:
bf:33:f9:42:f9:fd:ac:c2:5e:4f:39:7e:30:87:92:
83:4d:c5:7a:e3:d9:60:5a:8d:8d:dc:39:5c:0d:6f:
d3:4d:02:b2:9c:2b:80:80:01:b2:d7:8b:d6:ee:0f:
54:69:98:d8:a3:10:de:9f:e8:31:8e:b7:42:b8:a8:
ba:2d:14:5c:18:82:48:17:aa:6c:65:5c:20:5a:22:
68:b7:46:65:cd:b9:f2:4d:86:7f:9f:ef:79:f6:0f:
73:c9:c5:24:f9:45:4a:dc:8e:a2:92:f9:0f:2e:a4:
65:eb:91:07:87:73:c1:da:ab:5b:d4:c9:98:d5:78:
0c:2a:27:62:a9:c5:2e:24:bd:7b:7d:d2:bf:e0:50:
2a:80:90:d0:68:10:9f:ea:16:ac:52:84:bd:4e:3a:
70:41:73:55:00:bb:f6:69:58:21:2e:69:dc:ed:e8:
59:33:18:57:6e:e5:00:19:fa:a6:57:73:cf:bd:4a:
8e:e6:12:b0:1f:6d:b3:6a:4e:76:ee:24:b8:37:ec:
71:3a:81:07:bb:d8:29:d3:af:76:f5:c4:a5:ed:b2:
c0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:38:26:1C:1B:58:CC:24:70:BF:47:24:2E:B8:AF:C6:95:85:FF:D1
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/UzgmHBtYzCRwv0ckLrivxpWF_9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.104.0/21
46.235.96.0/21
62.240.24.0/21
87.250.32.0/19
91.185.96.0/19
91.204.52.0/22
109.94.228.0-109.94.239.255
109.122.64.0/18
109.198.0.0/19
178.237.208.0/20
178.250.136.0/21
185.10.140.0/22
185.26.172.0/22
185.34.92.0/22
185.103.136.0/22
185.112.20.0/22
185.179.136.0/22
IPv6:
2a00:8720::/32
2a00:cf00::/32
2a01:b800::/32
2a02:61a0::/32
2a03:fc40::/32
2a04:1dc0::/29
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
50:04:69:3d:8a:ee:bd:4d:76:c6:50:ef:89:6a:df:50:11:16:
b1:c4:97:c4:60:c6:11:64:50:a3:f3:ed:40:62:4c:e5:97:0b:
aa:42:2c:55:65:bb:89:49:20:02:eb:b2:f7:3c:39:ec:4c:c9:
91:00:4f:eb:6a:c6:36:55:46:56:4e:c7:e3:8e:6d:e7:05:8e:
e7:6a:dd:8e:da:cf:95:8d:bd:f6:f7:fc:f8:a7:25:42:2d:18:
0f:2b:d9:f8:30:ea:c8:f5:e7:1d:da:b6:bb:39:ba:b7:49:3c:
85:46:af:e6:8a:e3:e0:cc:af:f1:1b:a1:72:87:e3:b2:3b:eb:
de:c3:8a:a7:e8:7f:58:9d:d8:6d:f3:5f:ac:4b:aa:74:4b:5b:
bc:8f:44:b6:40:71:64:a0:0f:22:cf:f9:9b:9d:04:9f:79:3f:
12:07:6f:11:35:d3:94:02:f0:11:ae:3e:09:84:3b:98:5a:44:
32:31:fb:ee:74:ac:4a:23:a4:06:78:72:73:d3:f2:dc:ad:2e:
d4:4b:53:f2:64:b9:58:46:3d:a2:a3:55:c6:60:77:92:09:69:
46:8b:13:0b:f2:b7:a6:16:a5:20:41:15:d2:b6:1b:1f:8f:0c:
33:79:b0:71:9d:87:e4:cd:d8:9d:1c:e7:18:52:90:16:4f:f8:
81:20:13:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 09:04:41 2024 by rpki-client on console-fra.rpki-client.org