Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9ce742-0c5d-4c34-8765-5ed5157ced0a/1/U7KBbc9YfGqv-UjV0FgbYGiDFVA.roa
File: U7KBbc9YfGqv-UjV0FgbYGiDFVA.roa (raw, json)
Hash identifier: gPD5w1Je1d2K8O4J1XOfhO2VUiI+YxA0m30r9HqbLVc=
Subject key identifier: 53:B2:81:6D:CF:58:7C:6A:AF:F9:48:D5:D0:58:1B:60:68:83:15:50
Certificate issuer: /CN=89887de01d8b1cbd50b75dbac91339f6617a4d8a
Certificate serial: 018CD019774551A395A7159748870C66389A
Authority key identifier: 89:88:7D:E0:1D:8B:1C:BD:50:B7:5D:BA:C9:13:39:F6:61:7A:4D:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYh94B2LHL1Qt126yRM59mF6TYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9ce742-0c5d-4c34-8765-5ed5157ced0a/1/U7KBbc9YfGqv-UjV0FgbYGiDFVA.roa
Signing time: Wed 03 Jan 2024 16:12:58 +0000
ROA not before: Wed 03 Jan 2024 16:12:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47806
IP address blocks: 185.251.210.0/23 maxlen: 23
185.251.210.0/24 maxlen: 24
185.251.209.0/24 maxlen: 24
185.251.208.0/24 maxlen: 24
185.251.208.0/23 maxlen: 23
185.251.208.0/22 maxlen: 22
185.251.211.0/24 maxlen: 24
152.89.145.0/24 maxlen: 24
152.89.144.0/22 maxlen: 22
152.89.144.0/24 maxlen: 24
152.89.144.0/23 maxlen: 23
152.89.147.0/24 maxlen: 24
152.89.146.0/23 maxlen: 23
152.89.146.0/24 maxlen: 24
193.30.124.0/24 maxlen: 24
193.30.124.0/23 maxlen: 23
193.30.125.0/24 maxlen: 24
193.30.128.0/24 maxlen: 24
93.88.31.0/24 maxlen: 24
93.88.30.0/23 maxlen: 23
93.88.30.0/24 maxlen: 24
93.88.28.0/22 maxlen: 22
93.88.29.0/24 maxlen: 24
93.88.28.0/24 maxlen: 24
93.88.28.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Apr 2024 14:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d0:19:77:45:51:a3:95:a7:15:97:48:87:0c:66:38:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89887de01d8b1cbd50b75dbac91339f6617a4d8a
Validity
Not Before: Jan 3 16:12:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53b2816dcf587c6aaff948d5d0581b6068831550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:1e:0d:32:2a:77:6e:16:f8:46:18:a5:c0:
5a:1f:32:c2:15:e8:81:2b:02:46:f1:1f:2b:93:70:
e0:e6:65:5b:ed:f2:de:7e:33:8f:84:bf:d8:d9:ea:
0c:2f:19:9a:74:b2:67:e7:93:a5:5e:2c:b3:f1:43:
07:ef:5b:ec:2a:cb:be:98:30:ab:89:82:ef:ab:53:
0e:bc:df:83:b0:69:d7:03:dc:22:76:d2:5e:9a:1b:
48:94:f6:ec:e7:ba:b1:c1:44:d5:63:36:e4:ec:2d:
b5:7f:97:38:42:64:4c:c5:67:06:69:ba:4d:39:75:
b1:05:3b:71:24:94:81:d4:f8:88:15:62:ef:77:bd:
2a:d4:36:90:ab:cd:67:72:48:63:85:40:f0:0f:68:
9a:0f:29:aa:e9:03:23:df:7c:c7:a1:8b:13:17:4c:
dd:1a:68:d2:7c:7d:2b:1a:d0:6b:02:de:dc:4f:b8:
c5:64:fc:82:f1:fa:e3:49:39:1c:0a:71:c8:47:9b:
b5:85:d7:e6:b0:98:a6:68:e6:26:72:cb:8a:e5:c8:
26:18:9f:4f:f8:ec:51:4d:f2:4c:e3:57:31:47:04:
6b:78:fe:64:ec:bf:54:1a:b7:f3:18:72:99:a1:69:
8b:5b:8f:3e:75:cd:8f:9f:3b:45:b2:b4:af:aa:59:
18:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B2:81:6D:CF:58:7C:6A:AF:F9:48:D5:D0:58:1B:60:68:83:15:50
X509v3 Authority Key Identifier:
keyid:89:88:7D:E0:1D:8B:1C:BD:50:B7:5D:BA:C9:13:39:F6:61:7A:4D:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYh94B2LHL1Qt126yRM59mF6TYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9ce742-0c5d-4c34-8765-5ed5157ced0a/1/U7KBbc9YfGqv-UjV0FgbYGiDFVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9ce742-0c5d-4c34-8765-5ed5157ced0a/1/iYh94B2LHL1Qt126yRM59mF6TYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.88.28.0/22
152.89.144.0/22
185.251.208.0/22
193.30.124.0/23
193.30.128.0/24
Signature Algorithm: sha256WithRSAEncryption
29:55:63:f6:b8:b7:22:2a:00:15:62:4e:fa:be:4b:b8:e0:09:
56:94:77:54:eb:b0:fe:38:01:65:d5:35:5b:1a:27:85:06:10:
bd:d2:f5:da:97:60:1b:ba:18:0f:f1:b5:11:36:f9:a1:cc:5a:
af:09:9a:72:3c:b0:71:fa:ea:da:21:67:33:f1:81:0d:48:5a:
25:6e:f8:b0:49:6a:a6:13:eb:55:e5:e7:a8:eb:1d:33:a3:de:
f9:92:8f:42:29:c1:7f:81:53:8e:f7:c4:45:15:bd:da:d0:b2:
3c:f5:b2:f9:b9:8a:a7:67:64:67:44:f6:bd:99:1e:08:7f:a9:
96:8d:23:42:68:4d:34:72:01:59:b3:a3:8c:b8:58:81:42:76:
82:e3:72:1c:c1:66:09:24:77:95:a9:22:9b:76:dd:c3:c7:e8:
3e:78:c2:d1:51:12:6f:1b:68:e7:41:17:d8:27:8e:7e:63:2e:
16:e9:de:2c:1e:df:56:53:88:6e:e3:02:31:70:43:3d:ca:b4:
80:44:bd:a6:82:2f:63:5a:66:b9:ce:a0:69:9b:37:50:71:c8:
0a:8c:6e:33:c5:f2:a9:ad:28:60:98:f4:6e:72:44:97:8f:a2:
8e:f6:d8:84:de:0c:12:c5:74:9b:38:c9:a5:3f:ae:bf:c5:1f:
d8:2f:cf:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:11 2025 by rpki-client