Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/wuPyVt-Y7OOQBIXgYWnJJQclfS0.roa
File: wuPyVt-Y7OOQBIXgYWnJJQclfS0.roa (raw, json)
Hash identifier: BMf9afE53ebQ0WXfnCpFd6rvvT4lTsJdsYy+kgu+afk=
Subject key identifier: C2:E3:F2:56:DF:98:EC:E3:90:04:85:E0:61:69:C9:25:07:25:7D:2D
Certificate issuer: /CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Certificate serial: 0186D57DD12B8D182DD6B1FBF3D95EF46A46
Authority key identifier: 42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/wuPyVt-Y7OOQBIXgYWnJJQclfS0.roa
Signing time: Sun 12 Mar 2023 11:03:57 +0000
ROA not before: Sun 12 Mar 2023 11:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29256
IP address blocks: 82.137.240.0/24 maxlen: 24
82.137.243.0/24 maxlen: 24
82.137.242.0/24 maxlen: 24
82.137.248.0/24 maxlen: 24
82.137.251.0/24 maxlen: 24
82.137.250.0/24 maxlen: 24
82.137.253.0/24 maxlen: 24
82.137.249.0/24 maxlen: 24
82.137.252.0/24 maxlen: 24
82.137.255.0/24 maxlen: 24
82.137.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Mar 2023 11:13:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d5:7d:d1:2b:8d:18:2d:d6:b1:fb:f3:d9:5e:f4:6a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4283696716dbcc360b9a62ef7d84b4d28f958bdd
Validity
Not Before: Mar 12 11:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2e3f256df98ece3900485e06169c92507257d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f5:9f:cd:a7:46:74:72:fd:b3:de:88:6d:97:
11:c4:64:78:98:ea:99:63:8a:53:ca:bf:aa:b9:68:
4f:43:f3:6c:31:1f:d2:55:a3:c4:d3:60:85:57:ad:
31:bd:86:da:6f:14:da:3f:f0:f7:01:47:2e:16:ac:
fd:0d:06:cb:e3:69:60:2f:4d:9c:50:20:3d:be:17:
c9:5b:eb:a0:27:23:61:1c:d3:32:7d:b2:ab:9a:28:
e4:9d:ca:79:1c:e7:29:7c:3a:da:36:76:a6:7e:43:
b2:f4:a6:80:da:ee:02:f2:34:95:bf:b7:78:22:f6:
74:84:04:5b:18:d9:82:ea:e0:29:81:b7:61:50:98:
c4:a7:46:99:60:d0:b7:8a:d1:72:2b:d9:f4:37:52:
1d:0d:73:0f:fb:fa:b0:f2:ef:5b:32:12:38:9a:46:
71:47:8b:47:e4:41:e7:40:0c:a8:fd:95:01:64:01:
bc:fb:3f:1f:60:c8:91:84:47:2c:81:46:bc:25:66:
04:f8:3a:42:28:5c:77:0f:75:c1:c8:96:97:3b:f3:
08:39:f2:ed:a2:31:6a:6f:44:0f:c1:19:ab:31:08:
54:f2:70:88:b4:a0:70:1b:e2:48:47:00:aa:02:8c:
e0:73:a3:62:09:51:e0:dc:48:16:77:ab:e4:ce:10:
94:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E3:F2:56:DF:98:EC:E3:90:04:85:E0:61:69:C9:25:07:25:7D:2D
X509v3 Authority Key Identifier:
keyid:42:83:69:67:16:DB:CC:36:0B:9A:62:EF:7D:84:B4:D2:8F:95:8B:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QoNpZxbbzDYLmmLvfYS00o-Vi90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/wuPyVt-Y7OOQBIXgYWnJJQclfS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5442ce-48bc-4164-9350-9240d9f75ae6/1/QoNpZxbbzDYLmmLvfYS00o-Vi90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.137.240.0/24
82.137.242.0/23
82.137.248.0/21
Signature Algorithm: sha256WithRSAEncryption
83:ed:7c:a1:ab:6e:88:f4:69:a0:19:25:70:40:02:20:cf:6a:
e9:e5:78:92:6e:ee:c5:8e:62:c8:f7:d2:8d:50:de:f9:12:2c:
9f:a7:6a:bc:df:03:fa:57:f0:28:12:29:99:b0:23:cd:a2:29:
17:a9:63:fb:c0:60:19:04:4f:e8:fd:27:8a:8a:64:d2:be:2b:
27:68:25:3b:de:d4:de:03:d7:0f:39:50:5d:34:22:7b:c7:b0:
3b:09:9d:31:d4:09:b0:4d:32:20:b4:a9:81:e9:39:d2:36:f9:
44:f8:e5:28:60:ad:83:b1:b3:d8:55:eb:00:a0:7a:89:a4:c4:
21:63:d1:d4:34:c9:a9:e1:a0:28:8e:da:c2:61:67:81:84:23:
a6:55:37:c3:ba:78:b2:39:5d:de:2c:24:97:f5:2c:45:63:c0:
64:e9:76:66:84:91:70:48:04:22:f1:06:ba:9f:8c:55:23:54:
75:06:e3:e5:3b:45:4f:64:2d:ec:48:5c:39:d9:4e:0f:d4:52:
70:0c:85:5e:43:24:69:56:08:44:2f:59:e7:bc:17:cd:db:59:
35:f8:13:a9:5d:dc:4e:d7:3d:d7:4e:46:57:28:5b:b6:7b:51:
54:d1:0b:0d:9d:f8:f1:8c:92:e1:f8:fc:fc:2f:0d:3e:33:2d:
32:8b:d9:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:26 2024 by rpki-client on console-ams.rpki-client.org