Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/uTzC11aAgP3Ab3sMPUj-CoSI38k.roa
File: uTzC11aAgP3Ab3sMPUj-CoSI38k.roa (raw, json)
Hash identifier: bSO/SQqBTJQHy7t4jvRJu/KBWRFqRRJ7QhVLeDmj7VE=
Subject key identifier: B9:3C:C2:D7:56:80:80:FD:C0:6F:7B:0C:3D:48:FE:0A:84:88:DF:C9
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018E6A2A5EBD739B01D85621997F8592206C
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/uTzC11aAgP3Ab3sMPUj-CoSI38k.roa
Signing time: Sat 23 Mar 2024 07:15:45 +0000
ROA not before: Sat 23 Mar 2024 07:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54103
IP address blocks: 5.10.193.0/24 maxlen: 24
5.10.195.0/24 maxlen: 24
5.10.197.0/24 maxlen: 24
5.10.199.0/24 maxlen: 24
45.134.129.0/24 maxlen: 24
45.134.131.0/24 maxlen: 24
185.67.137.0/24 maxlen: 24
185.67.139.0/24 maxlen: 24
185.163.208.0/22 maxlen: 22
185.216.1.0/24 maxlen: 24
185.216.3.0/24 maxlen: 24
193.26.112.0/23 maxlen: 24
194.76.132.0/23 maxlen: 24
203.159.85.0/24 maxlen: 24
203.159.87.0/24 maxlen: 24
203.159.89.0/24 maxlen: 24
203.159.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 07:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6a:2a:5e:bd:73:9b:01:d8:56:21:99:7f:85:92:20:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 23 07:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b93cc2d7568080fdc06f7b0c3d48fe0a8488dfc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c6:bc:c3:3c:15:54:30:b9:6d:0d:f7:e7:2c:
df:d2:a4:4c:f9:48:f1:39:67:c3:6c:a8:f4:1c:71:
37:5a:2c:03:92:10:24:2f:a7:87:b6:d7:bf:2c:e0:
fa:72:00:c5:97:ed:5c:7d:87:9d:61:51:88:7f:29:
58:06:7e:73:64:10:06:ce:07:68:1d:7a:8f:e3:14:
af:fb:03:89:ca:fc:ca:a1:85:29:68:20:82:fe:61:
18:fc:71:dd:57:4b:58:dc:fc:45:0f:55:de:a1:27:
96:f7:7b:72:06:5f:b8:87:aa:49:d9:82:76:62:ae:
bb:14:a6:cf:54:46:59:67:4e:18:a3:8e:28:73:89:
49:90:cd:38:6f:b4:b2:d2:42:3c:e6:c8:b5:31:2d:
d7:e7:77:ed:8a:b7:62:ab:6f:0e:60:c6:e3:f5:46:
7f:12:88:1d:24:00:da:1e:98:16:79:eb:fd:36:37:
42:29:09:80:77:cb:b2:f4:8f:e1:f9:09:ad:30:62:
d8:b5:05:3d:fa:a7:d5:d2:07:fd:f8:79:10:d5:83:
63:b8:1b:86:2e:42:47:54:43:db:db:ad:94:17:1d:
d1:0a:7f:62:47:a4:b6:e4:99:ce:7d:36:a6:cc:98:
98:ea:fc:fa:3d:94:48:fc:f7:9c:3f:1e:d3:3b:68:
a9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3C:C2:D7:56:80:80:FD:C0:6F:7B:0C:3D:48:FE:0A:84:88:DF:C9
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/uTzC11aAgP3Ab3sMPUj-CoSI38k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.193.0/24
5.10.195.0/24
5.10.197.0/24
5.10.199.0/24
45.134.129.0/24
45.134.131.0/24
185.67.137.0/24
185.67.139.0/24
185.163.208.0/22
185.216.1.0/24
185.216.3.0/24
193.26.112.0/23
194.76.132.0/23
203.159.85.0/24
203.159.87.0/24
203.159.89.0/24
203.159.91.0/24
Signature Algorithm: sha256WithRSAEncryption
78:bf:39:e8:6d:a8:84:ad:ac:f2:7d:17:f7:c8:58:51:a6:10:
26:62:51:35:bf:d9:9a:21:e4:41:0d:c7:8b:b6:ec:bc:aa:4c:
e3:a5:b1:0a:c1:3a:75:ca:70:72:e2:f9:59:0c:0f:d3:2e:5f:
be:fb:d8:bc:4b:8f:60:a5:3e:f4:58:bb:fe:de:ca:8f:49:02:
cd:5a:b1:2e:e4:c2:fa:11:d7:07:db:80:29:8e:69:79:d5:ff:
49:11:18:17:e6:cb:b3:a8:0a:e4:85:d8:de:b7:3b:b1:2e:44:
41:e2:07:e0:0f:5d:fd:42:4a:f1:06:04:91:29:8b:dd:9e:a4:
f6:62:88:3f:3d:85:be:7d:6f:8b:b9:f6:df:7d:62:8e:0b:74:
60:74:c0:2d:2c:2f:ce:e0:d8:ec:64:4d:67:27:13:c1:93:b8:
88:36:28:87:96:ad:6b:fa:b2:db:db:5c:64:ff:d2:f3:d1:64:
01:ee:11:b2:5a:f8:77:79:86:62:c3:5f:24:9d:c3:59:97:3d:
4b:70:07:de:bc:b8:0a:0d:7a:c3:27:22:e2:7e:a4:a2:00:d3:
4a:24:5f:c1:c6:ec:e3:42:78:d1:f7:62:69:4e:a7:dc:2f:57:
60:42:d3:e4:76:97:11:58:d8:be:1c:9e:2d:73:ce:6a:e1:ab:
27:3d:f3:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:24:52 2025 by rpki-client