Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/uyPaV9x9ycchGysGNH5GGtrbBVI.roa
File: uyPaV9x9ycchGysGNH5GGtrbBVI.roa (raw, json)
Hash identifier: vMq3WiH4M8S7RsKP9KT6TaSYzzBFmgicw3lyJOIRC88=
Subject key identifier: BB:23:DA:57:DC:7D:C9:C7:21:1B:2B:06:34:7E:46:1A:DA:DB:05:52
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 0185720C88E12BE6387F823F6B50BE6C757B
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/uyPaV9x9ycchGysGNH5GGtrbBVI.roa
Signing time: Mon 02 Jan 2023 10:35:02 +0000
ROA not before: Mon 02 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8751
IP address blocks: 93.113.13.0/24 maxlen: 32
85.204.224.0/21 maxlen: 32
85.204.232.0/24 maxlen: 32
85.204.236.0/22 maxlen: 32
85.204.236.0/24 maxlen: 32
85.204.234.0/23 maxlen: 32
86.107.224.0/20 maxlen: 32
93.113.0.0/20 maxlen: 32
86.107.246.0/23 maxlen: 32
93.113.11.0/24 maxlen: 32
188.215.112.0/24 maxlen: 32
188.215.112.0/23 maxlen: 32
188.215.118.0/24 maxlen: 32
188.215.112.0/21 maxlen: 32
188.215.114.0/24 maxlen: 32
185.85.200.0/22 maxlen: 32
37.156.71.0/24 maxlen: 32
2a03:7420::/48 maxlen: 48
2001:67c:2580::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:88:e1:2b:e6:38:7f:82:3f:6b:50:be:6c:75:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: Jan 2 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb23da57dc7dc9c7211b2b06347e461adadb0552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5e:0e:56:17:7a:c9:08:c9:5d:d6:54:dd:a9:
24:e7:32:53:ae:6b:76:9e:2f:e4:2b:56:63:2c:f6:
d2:12:55:c0:75:67:f3:4e:35:88:3a:32:74:72:af:
2d:df:3f:1b:a1:cd:eb:0a:af:1f:44:33:fc:d7:1c:
88:a5:c9:4d:f1:db:e1:89:ed:ac:86:7e:68:02:60:
8b:ea:fc:51:0d:1c:1e:cd:93:89:be:a0:58:5c:f3:
4e:a3:93:2d:5c:f5:1f:8d:50:f5:cd:aa:b0:c2:28:
92:14:c6:bf:23:ad:9b:9a:19:7c:b0:ff:13:78:0e:
d2:56:7d:84:e8:02:38:fe:a7:72:24:1f:b4:a9:26:
36:91:5b:44:57:1b:1d:f8:25:a1:65:ce:cb:71:48:
f6:4b:e5:7e:3a:07:c3:f5:c3:98:64:25:0f:22:54:
58:c4:61:47:7d:79:28:00:3d:f6:b3:14:74:74:07:
33:76:70:2c:49:80:06:e5:04:c7:df:f2:7e:11:c1:
9f:63:77:36:b5:72:40:0e:91:3b:d3:f2:e8:0f:eb:
2c:78:63:c7:2f:f8:79:cb:47:c9:b1:82:5d:de:aa:
5b:6d:70:98:76:d3:29:ef:1c:9b:9e:f8:98:73:0e:
25:f5:b9:c9:fd:ee:8c:e5:f0:76:e8:79:45:e1:d3:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:23:DA:57:DC:7D:C9:C7:21:1B:2B:06:34:7E:46:1A:DA:DB:05:52
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/uyPaV9x9ycchGysGNH5GGtrbBVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.71.0/24
85.204.224.0-85.204.232.255
85.204.234.0-85.204.239.255
86.107.224.0/20
86.107.246.0/23
93.113.0.0/20
185.85.200.0/22
188.215.112.0/21
IPv6:
2001:67c:2580::/48
2a03:7420::/48
Signature Algorithm: sha256WithRSAEncryption
9e:1e:b3:6f:e7:83:57:2a:bf:61:ab:6b:62:37:00:d9:b8:33:
9d:f9:a1:32:ff:13:92:e8:2a:fa:92:85:59:46:84:5f:00:fe:
bf:fa:6f:c9:1f:ea:37:d7:42:e8:9b:8e:a5:ab:64:3d:5a:d2:
d9:47:11:dc:07:b0:78:ed:ce:33:17:de:f3:db:b5:7a:de:5e:
f1:bd:a7:fc:9c:9a:06:06:0b:21:d9:76:4a:a3:08:d9:20:ba:
ee:d1:4a:c8:25:5d:3a:b4:73:43:27:4f:f3:71:0e:2d:e4:19:
d5:72:8a:bb:5d:23:d0:eb:2b:c0:ca:be:6c:03:a2:7f:ee:f6:
ca:59:25:93:09:98:b9:8b:3f:a9:21:02:2b:de:a3:21:05:b0:
9a:53:b7:4c:25:7d:3f:52:5f:3c:51:e9:49:38:f3:a3:a6:ef:
08:b3:38:0c:2d:6b:df:92:9a:66:8b:a4:5c:65:86:9d:9f:cf:
0c:f5:66:fb:11:dc:0f:4d:70:69:36:3c:cf:7b:79:0a:ea:37:
12:7f:cd:6e:52:a5:d6:c1:75:92:2f:4b:58:0e:f6:3f:2a:8e:
67:8e:90:09:98:4a:84:75:59:1f:3d:41:72:df:af:63:75:c7:
9c:05:ef:95:87:d9:cc:12:35:96:d9:55:bf:e4:d8:85:be:a8:
b1:a2:e0:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:13 2024 by rpki-client on console-fra.rpki-client.org