Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/bUViKX6_QE6BdHhwjBTNZSZR5fI.roa
File: bUViKX6_QE6BdHhwjBTNZSZR5fI.roa (raw, json)
Hash identifier: bEFldztWVAJDdYmZuhLisovN1qmvBHS+3Q2fnOSwdvU=
Subject key identifier: 6D:45:62:29:7E:BF:40:4E:81:74:78:70:8C:14:CD:65:26:51:E5:F2
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 019257A0606E6BB0D032636C66DA56EC756B
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/bUViKX6_QE6BdHhwjBTNZSZR5fI.roa
Signing time: Fri 04 Oct 2024 13:03:01 +0000
ROA not before: Fri 04 Oct 2024 13:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43700
IP address blocks: 14.102.4.0/22 maxlen: 24
14.102.8.0/22 maxlen: 24
31.172.224.0/22 maxlen: 22
31.172.224.0/23 maxlen: 23
31.172.226.0/23 maxlen: 23
45.84.244.0/22 maxlen: 22
45.84.244.0/23 maxlen: 23
78.158.0.0/19 maxlen: 19
78.158.0.0/20 maxlen: 20
78.158.16.0/20 maxlen: 20
95.215.140.0/22 maxlen: 22
95.215.140.0/23 maxlen: 23
95.215.142.0/23 maxlen: 23
185.246.240.0/22 maxlen: 22
185.246.240.0/23 maxlen: 23
185.246.242.0/23 maxlen: 23
185.252.108.0/22 maxlen: 22
185.252.108.0/23 maxlen: 23
185.252.110.0/23 maxlen: 23
185.252.204.0/22 maxlen: 22
185.252.204.0/23 maxlen: 23
185.252.206.0/23 maxlen: 23
216.25.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 05 Oct 2024 07:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:57:a0:60:6e:6b:b0:d0:32:63:6c:66:da:56:ec:75:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Oct 4 13:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d4562297ebf404e817478708c14cd652651e5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:81:fd:79:59:6f:2f:57:88:87:a9:85:d0:54:
15:56:5d:f4:08:2e:da:19:72:89:5f:24:c2:d1:9d:
73:4e:68:d0:e6:27:28:17:17:2b:67:e3:9e:e6:61:
67:2d:bb:9d:41:d4:37:4c:30:b7:13:b8:23:54:77:
c3:21:6d:85:20:e5:a9:48:46:8d:d1:31:64:38:86:
c6:ca:13:13:7e:f7:3f:2a:e5:ed:16:8e:6b:de:af:
cc:be:6b:8d:a4:2c:cc:80:d5:f1:37:0b:82:da:90:
e6:b0:e4:09:5b:92:7e:5d:70:7a:7c:95:ac:c6:c4:
99:9e:ab:49:2a:ce:7d:23:df:15:96:e2:e7:0b:2c:
ca:b9:70:2a:5f:d5:b5:77:ab:88:ef:07:6d:5c:52:
5e:85:c2:17:4d:4e:1a:fc:6c:d8:6f:60:77:2c:30:
3d:c7:03:b6:75:3c:b9:89:dc:25:c5:ba:08:05:14:
15:6b:1b:9c:da:79:99:ab:e9:4d:aa:5e:cc:e3:6d:
dd:1d:2b:75:cc:83:df:58:13:ee:3c:2f:b8:0e:ee:
fd:2d:7d:31:90:b3:e1:5b:a8:d8:c1:1e:1d:d6:3a:
f0:dc:96:b1:b2:db:61:be:7a:e4:be:66:5b:26:ab:
86:27:b3:11:3f:32:8b:4a:24:3f:1b:1c:ae:fa:93:
94:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:45:62:29:7E:BF:40:4E:81:74:78:70:8C:14:CD:65:26:51:E5:F2
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/bUViKX6_QE6BdHhwjBTNZSZR5fI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.4.0-14.102.11.255
31.172.224.0/22
45.84.244.0/22
78.158.0.0/19
95.215.140.0/22
185.246.240.0/22
185.252.108.0/22
185.252.204.0/22
216.25.0.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:4f:d9:bf:5c:61:42:de:55:f9:0b:ff:f4:c2:6a:98:d7:66:
68:f4:c1:c4:85:46:2d:e0:89:d6:3a:cb:1c:b5:d7:5e:88:31:
05:51:98:39:29:2c:82:5b:bb:17:d3:2d:c4:69:44:fb:4c:8d:
7e:8c:d5:e8:85:bc:c7:a7:f1:fd:d1:83:17:48:03:11:48:d1:
95:c0:3e:e6:ca:49:83:43:b9:ed:48:b9:97:f4:da:90:88:da:
ba:47:0a:c3:b1:17:e5:d7:1c:32:32:cd:4f:d5:0c:18:d2:ce:
fe:b4:8f:43:4b:16:42:fc:67:0d:0d:28:57:8d:32:cd:0c:40:
db:55:43:0d:af:66:86:1f:c6:20:14:e4:29:27:4e:7e:06:1b:
e1:dc:7b:8d:8a:c6:f4:5d:c8:72:be:b2:5c:80:b1:32:37:19:
5d:fc:a6:3c:a9:b0:56:a8:23:cd:e0:16:e4:06:a0:7d:54:2f:
e3:e6:5d:64:28:a3:6c:d9:1d:e4:64:22:b3:8e:ee:82:39:94:
38:f2:8f:72:49:8c:89:06:58:27:f1:0a:f8:53:62:76:e5:01:
b8:2c:e8:6d:4c:85:27:02:20:df:43:88:28:fc:e1:e0:4b:dc:
b2:dd:a7:51:0c:c4:89:e0:73:73:53:8c:33:ef:48:d3:07:c1:
11:f0:39:6e
-----BEGIN CERTIFICATE-----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Generated at Sat Oct 5 09:59:51 2024 by rpki-client on console-ams.rpki-client.org