Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/uDYliap_OEOVDJEZdtneg2jEWpM.roa
File: uDYliap_OEOVDJEZdtneg2jEWpM.roa (raw, json)
Hash identifier: c+cBrr5FrpUmEbb4al39HfXxXGW+rYfua96t89PPNC8=
Subject key identifier: B8:36:25:89:AA:7F:38:43:95:0C:91:19:76:D9:DE:83:68:C4:5A:93
Certificate issuer: /CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Certificate serial: 018CC795095688FB20F380A51D829FD14151
Authority key identifier: 7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/uDYliap_OEOVDJEZdtneg2jEWpM.roa
Signing time: Tue 02 Jan 2024 00:31:22 +0000
ROA not before: Tue 02 Jan 2024 00:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34545
IP address blocks: 37.130.192.0/24 maxlen: 24
37.130.193.0/24 maxlen: 24
37.130.194.0/24 maxlen: 24
37.130.195.0/24 maxlen: 24
185.45.81.0/24 maxlen: 24
185.45.82.0/24 maxlen: 24
185.45.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 12:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:09:56:88:fb:20:f3:80:a5:1d:82:9f:d1:41:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d43b0ec79951d5d5580133e5329a90f2fee1c5b
Validity
Not Before: Jan 2 00:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8362589aa7f3843950c911976d9de8368c45a93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:52:c7:41:cc:f4:78:35:af:d3:03:eb:6a:c1:
75:67:67:b3:43:aa:d1:a1:9f:7d:78:1b:33:15:1f:
ca:f3:ef:a2:69:6b:45:54:dc:53:23:0f:61:fc:2e:
6a:60:23:84:b5:0a:f0:df:3c:a3:a4:71:81:b9:78:
4d:5a:45:5b:02:c7:6f:60:e0:9c:d6:dc:5c:f6:05:
78:78:e0:73:a6:e8:03:01:dc:d1:e8:20:db:ad:58:
e6:95:3a:3e:9b:d9:d5:95:e0:31:74:af:2f:27:11:
af:2c:48:b9:bc:7a:f6:3a:e8:53:75:bd:b6:5b:9c:
01:11:7c:1d:30:33:47:e8:0f:30:1a:64:c0:a4:6a:
9e:89:8a:fc:3d:3b:fa:81:68:b0:e8:34:c0:f3:57:
6f:a9:6a:ac:10:a7:f7:ef:92:dd:b4:c5:7c:22:9e:
6f:5f:25:14:9c:24:31:a8:26:47:b5:4e:35:8d:99:
7e:4d:cf:21:eb:59:31:58:e1:14:7a:cd:19:4e:8b:
76:2a:f1:28:11:9f:3b:f3:da:b7:59:49:10:33:dd:
4b:49:a0:a1:bf:a0:f9:9c:4e:e9:63:67:f8:01:83:
59:78:3e:0f:de:9d:dc:be:ef:55:ac:80:49:1d:c5:
55:79:e9:64:08:7b:68:ed:00:d9:8c:84:eb:9e:20:
2b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:36:25:89:AA:7F:38:43:95:0C:91:19:76:D9:DE:83:68:C4:5A:93
X509v3 Authority Key Identifier:
keyid:7D:43:B0:EC:79:95:1D:5D:55:80:13:3E:53:29:A9:0F:2F:EE:1C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fUOw7HmVHV1VgBM-UympDy_uHFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/uDYliap_OEOVDJEZdtneg2jEWpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/2604e0-91fa-4fe9-bb28-93a6192b1785/1/fUOw7HmVHV1VgBM-UympDy_uHFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.130.192.0/22
185.45.81.0-185.45.83.255
Signature Algorithm: sha256WithRSAEncryption
41:f4:98:a5:7a:91:2c:32:6f:fe:3f:b3:26:8e:3c:ce:36:dc:
51:74:df:e5:eb:f5:ab:e6:0e:a7:2e:d6:eb:cb:c6:27:06:10:
f8:43:30:d4:88:d8:cc:bf:ce:eb:1b:23:41:fe:2a:a7:7b:9e:
31:5c:73:a4:20:4a:c9:1a:5f:b0:f1:a0:a4:e0:33:bb:d5:49:
2e:7e:68:82:c2:72:19:26:ce:e7:90:ca:55:12:f4:e1:69:6e:
5e:08:ee:55:db:1e:53:56:99:5e:ac:c5:33:df:7a:d0:3b:fc:
00:dd:51:f3:8c:ae:1a:7c:56:b1:48:2a:ac:52:52:f4:56:e7:
e5:15:86:4c:a7:8c:45:dd:4c:79:0b:b2:4b:d6:29:2b:71:5d:
f0:02:f2:a0:a5:25:da:7a:05:f3:8f:ee:52:5b:7d:01:0f:f6:
55:bf:0b:dd:06:c8:8b:fa:cf:3a:bb:95:5f:4b:0c:90:e5:bf:
35:e8:80:fc:85:de:90:b1:c2:a3:6c:18:35:be:ea:cf:51:0f:
27:26:fc:c3:43:6f:c8:a3:9d:15:ce:1c:cf:ef:15:39:16:31:
f6:02:9f:3b:cf:b2:1e:9a:a7:73:bf:bd:c4:36:46:75:75:c4:
bb:14:a2:35:35:d4:de:6c:19:69:53:59:e6:ff:58:59:63:9a:
37:97:5e:17
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:15 2024 by rpki-client on console-fra.rpki-client.org