Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/uJNr-uBTAvHxBSkOFQlq7nY7D7I.roa
File: uJNr-uBTAvHxBSkOFQlq7nY7D7I.roa (raw, json)
Hash identifier: CysH7NmaLr2tNfNVUgWOKF8GG4yErW0gdHH2lEaWWSY=
Subject key identifier: B8:93:6B:FA:E0:53:02:F1:F1:05:29:0E:15:09:6A:EE:76:3B:0F:B2
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D1EA4780054E399579898016E62B66197
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/uJNr-uBTAvHxBSkOFQlq7nY7D7I.roa
Signing time: Thu 18 Jan 2024 22:15:11 +0000
ROA not before: Thu 18 Jan 2024 22:15:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Jan 2024 11:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1e:a4:78:00:54:e3:99:57:98:98:01:6e:62:b6:61:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 18 22:15:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8936bfae05302f1f105290e15096aee763b0fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:30:e6:e9:19:0e:2e:e0:50:2e:3e:76:a8:
dc:f7:3e:0f:a9:02:6b:44:9f:26:e1:c2:db:39:a9:
36:ae:6d:01:c7:2e:4e:5a:ae:7d:9b:49:06:07:ef:
4b:f2:eb:9c:44:12:58:df:c2:7e:04:ef:2c:17:67:
0d:38:80:62:a3:07:64:2c:90:1c:68:4f:04:8f:60:
7d:33:17:8a:34:ee:be:38:b4:3e:72:a7:0e:46:1b:
e0:6a:ac:8a:d8:4e:1d:be:78:43:23:f0:65:d0:0b:
c2:d4:3f:53:7a:cf:5b:c1:2f:75:fd:92:e3:2d:7a:
df:0a:97:a9:10:90:1c:9d:7a:9a:72:38:d0:1e:a9:
54:63:26:ef:87:0d:cd:8e:7b:d0:9b:d8:dd:23:1f:
d3:01:65:af:fc:0e:5d:52:a1:f6:c0:4e:bc:d5:dd:
24:a7:e1:90:57:4f:8d:0f:4f:cf:32:4c:a7:a7:2f:
0d:f2:c6:77:04:8b:83:ae:40:66:52:d3:4e:5e:79:
eb:a9:06:45:79:d6:fe:29:ab:d4:b3:f6:bc:6c:00:
47:96:be:4a:a3:44:e2:aa:df:24:95:8f:c2:b0:9a:
16:67:af:81:c3:aa:f0:02:27:64:65:63:99:7c:c4:
6c:e2:b3:c1:96:00:e3:4c:87:7b:87:47:03:ee:1a:
fb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:93:6B:FA:E0:53:02:F1:F1:05:29:0E:15:09:6A:EE:76:3B:0F:B2
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/uJNr-uBTAvHxBSkOFQlq7nY7D7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.70.0/24
IPv6:
2a03:32c0::/45
2a03:32c0:3000::-2a03:32c0:3005:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::/47
2a03:32c0:7000::/47
2a03:32c0:8000::/45
Signature Algorithm: sha256WithRSAEncryption
6d:64:a9:4e:8b:a9:42:8a:42:15:a6:b7:73:c7:f0:e2:29:43:
32:4e:82:14:2a:97:19:b8:93:2a:dd:2b:d6:d1:80:b2:76:c4:
22:f9:96:8a:25:32:38:59:c0:cf:2e:98:da:11:8a:70:3e:db:
ab:9b:db:06:cf:e3:76:46:b7:7e:41:f8:39:5a:dd:29:30:60:
13:79:a1:98:e6:f0:d4:5a:02:b4:32:42:2b:98:c7:56:44:ab:
09:b4:08:52:f7:bf:2d:c5:89:d7:9b:21:06:b6:af:73:71:47:
49:d3:10:1f:b6:b4:26:bd:9f:f0:57:fb:fd:48:5d:53:9d:e8:
d7:5c:42:a2:13:d9:d7:04:0a:46:f2:4d:42:07:19:13:37:ba:
a2:29:f8:a5:b4:51:41:07:60:11:21:2f:61:0d:cc:ab:2f:b0:
6d:ee:6e:b9:6d:13:2c:54:03:56:a2:b7:a3:cb:01:11:ff:3b:
cf:48:65:ea:33:3c:1b:fc:23:a6:ff:d1:e4:72:04:a6:81:02:
10:6e:08:a2:b8:f9:b5:90:d5:8f:b6:01:10:1f:ad:1a:34:84:
2c:7d:1c:d1:05:e6:65:a0:4f:3f:9d:df:78:90:df:4f:15:82:
ce:eb:ea:27:c1:31:cd:2b:dc:61:65:a1:de:b6:5c:65:44:04:
8e:c7:f8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 15:30:20 2024 by rpki-client on console-ams.rpki-client.org