Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/UKzAnB-cyyW51EwJWz5XOHIKttA.roa
File: UKzAnB-cyyW51EwJWz5XOHIKttA.roa (raw, json)
Hash identifier: 1PgP5AHxo2dSrb1up41+1zh9J3/hXZ/G0J5+TQIxfO8=
Subject key identifier: 50:AC:C0:9C:1F:9C:CB:25:B9:D4:4C:09:5B:3E:57:38:72:0A:B6:D0
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0189463A47A9B9D050ACB26C5FAFB0108BA5
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/UKzAnB-cyyW51EwJWz5XOHIKttA.roa
Signing time: Tue 11 Jul 2023 18:32:51 +0000
ROA not before: Tue 11 Jul 2023 18:32:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 188.119.112.0/24 maxlen: 24
188.119.113.0/24 maxlen: 24
213.226.100.0/24 maxlen: 24
45.142.213.0/24 maxlen: 24
45.142.212.0/24 maxlen: 24
45.142.214.0/24 maxlen: 24
45.142.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:46:3a:47:a9:b9:d0:50:ac:b2:6c:5f:af:b0:10:8b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 11 18:32:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50acc09c1f9ccb25b9d44c095b3e5738720ab6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d6:70:ee:28:7f:18:b6:cb:b8:ee:bb:17:69:
c3:99:79:54:59:65:69:46:af:c8:09:c5:b9:6f:23:
42:96:b3:c6:69:90:35:b9:8d:b9:30:64:df:49:e8:
0d:d8:2e:bc:60:af:65:92:94:f7:6f:a5:f2:b2:e7:
8a:61:c8:e6:18:55:7d:43:e8:cd:83:2f:48:24:06:
87:fb:4d:9b:58:0b:9b:26:14:8c:d7:c9:50:d3:a0:
fc:12:28:4f:5a:4d:bf:af:cd:11:cb:0f:eb:33:da:
e1:dc:b1:2a:8a:7c:36:dc:f4:a9:7b:64:94:e5:23:
ab:97:3c:fd:af:5d:16:46:20:a1:28:85:ae:25:5d:
d7:04:9e:0a:42:a1:3b:f3:6c:6c:f6:5b:80:ba:84:
d3:0d:fb:2c:15:43:a4:57:6f:ce:54:05:51:43:b1:
07:34:17:a4:38:d1:87:b4:d1:84:4e:e6:eb:a6:8b:
f7:a1:45:d1:ac:dc:21:24:77:b5:86:59:e1:c2:fa:
7e:e1:bf:0d:e6:ca:a2:7a:05:41:1b:50:98:3e:96:
d6:3f:42:3f:fa:46:cb:e4:3d:f1:90:a5:32:24:2a:
c0:be:64:54:d1:d5:c9:60:88:a5:c5:70:9f:b3:50:
d3:be:5b:7e:a6:8d:43:89:5f:65:b1:8a:65:6c:63:
01:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:AC:C0:9C:1F:9C:CB:25:B9:D4:4C:09:5B:3E:57:38:72:0A:B6:D0
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/UKzAnB-cyyW51EwJWz5XOHIKttA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.212.0/22
188.119.112.0/23
213.226.100.0/24
Signature Algorithm: sha256WithRSAEncryption
04:37:23:d5:ee:92:16:0d:d0:df:c6:c0:09:64:cf:79:45:6d:
d4:d8:cc:8f:48:b9:30:d5:0b:52:d6:f6:9f:1c:44:ac:77:70:
34:00:ba:35:a1:54:8f:01:07:9c:d4:e3:52:50:42:f8:2b:ef:
81:c2:34:8c:e4:83:75:65:d4:1b:9e:98:de:34:65:d4:91:6c:
90:24:04:4d:22:aa:a4:db:b2:06:cc:c7:fd:cf:e4:e1:4a:77:
25:d3:2b:db:3e:4b:10:2c:58:52:a6:4c:e5:c8:36:20:d5:8b:
b4:81:d2:ad:04:04:21:22:3c:e5:f4:db:98:06:b4:e7:0d:50:
8a:ad:ef:ea:1e:2b:96:5c:00:23:63:bc:43:60:19:96:19:f3:
8f:da:2b:5e:b8:5e:bd:6e:b3:02:73:0b:7e:5b:d9:88:2e:bc:
8c:ca:ac:fb:56:6e:7b:07:63:a3:85:4e:e5:5d:0c:10:4f:3d:
f4:b8:de:ae:ff:1e:0c:93:5f:02:b1:86:bc:1a:e5:37:e7:fb:
3e:48:45:38:b9:3d:d2:30:ac:f8:2f:bd:0c:12:23:b8:c0:ac:
9d:7f:a8:f8:dc:d1:24:1a:33:a0:74:de:a5:6d:a5:68:5c:f2:
77:cc:04:c5:54:14:94:35:c2:2d:aa:a6:4d:ed:42:87:39:d4:
74:22:1f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org