Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/UNLkaQTvN9_oWrzMQkt6j0EKwf0.roa
File: UNLkaQTvN9_oWrzMQkt6j0EKwf0.roa (raw, json)
Hash identifier: D9WZ2bl3n7sdp+Wng+2JF8EJYwVyvK8qOMCHQxOoGP8=
Subject key identifier: 50:D2:E4:69:04:EF:37:DF:E8:5A:BC:CC:42:4B:7A:8F:41:0A:C1:FD
Certificate issuer: /CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Certificate serial: 018CC94E11874574CE7E8E0EA7E949099BE4
Authority key identifier: C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/UNLkaQTvN9_oWrzMQkt6j0EKwf0.roa
Signing time: Tue 02 Jan 2024 08:33:05 +0000
ROA not before: Tue 02 Jan 2024 08:33:05 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8410
IP address blocks: 212.15.41.0/24 maxlen: 24
212.15.42.0/24 maxlen: 24
212.15.40.0/24 maxlen: 24
212.15.43.0/24 maxlen: 24
212.15.44.0/24 maxlen: 24
212.15.48.0/24 maxlen: 24
212.15.49.0/24 maxlen: 24
212.15.46.0/24 maxlen: 24
212.15.47.0/24 maxlen: 24
212.15.50.0/24 maxlen: 24
212.15.51.0/24 maxlen: 24
212.15.45.0/24 maxlen: 24
212.15.52.0/24 maxlen: 24
194.55.163.0/24 maxlen: 24
194.55.161.0/24 maxlen: 24
212.15.53.0/24 maxlen: 24
212.15.54.0/24 maxlen: 24
194.55.171.0/24 maxlen: 24
194.55.168.0/24 maxlen: 24
195.140.180.0/22 maxlen: 22
212.15.32.0/21 maxlen: 21
194.0.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 10 Sep 2024 14:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:11:87:45:74:ce:7e:8e:0e:a7:e9:49:09:9b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2eafaa30b340ecf810a4cb9af3b51c702566598
Validity
Not Before: Jan 2 08:33:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50d2e46904ef37dfe85abccc424b7a8f410ac1fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dd:53:47:e0:7f:50:7c:64:5c:4a:cd:f3:3c:
55:be:b5:23:06:b9:76:2b:cc:a3:7c:35:f1:d6:eb:
b6:f8:05:4b:02:39:8c:1b:46:04:3a:2a:bf:4f:8e:
ff:86:7a:d1:4f:08:ea:ad:15:d2:68:88:fb:15:36:
42:b1:29:38:19:f0:7a:39:22:16:63:9a:de:e7:e6:
3b:27:73:37:dd:ae:79:7d:ac:30:5e:e6:d3:b2:df:
c3:50:00:ce:43:18:3e:aa:12:5e:32:09:47:6b:ae:
a9:cf:a6:c0:e2:9f:b8:95:a1:f0:2b:32:fa:3b:d9:
77:0a:b4:fc:84:fc:df:e4:e8:11:da:25:47:0b:d2:
5d:34:e0:16:f8:2b:8b:83:fa:a9:73:95:23:66:1e:
b1:01:d8:89:3c:3a:1a:f6:94:5c:2d:8b:77:40:b3:
8c:9e:df:31:fb:f7:75:22:a0:63:91:43:e8:4a:7b:
99:1f:da:9f:8c:c9:89:52:fd:e1:a7:53:e0:66:36:
6b:f8:9d:3b:5b:a8:c4:34:59:d3:05:ac:ad:e4:21:
e4:2c:2c:32:76:61:a7:d5:82:40:e0:47:1f:96:7d:
5b:51:cb:88:bf:43:48:31:3e:d9:c7:df:a6:d3:e9:
1e:08:9f:e8:f2:fa:25:55:d2:93:40:73:3c:aa:d5:
ba:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D2:E4:69:04:EF:37:DF:E8:5A:BC:CC:42:4B:7A:8F:41:0A:C1:FD
X509v3 Authority Key Identifier:
keyid:C2:EA:FA:A3:0B:34:0E:CF:81:0A:4C:B9:AF:3B:51:C7:02:56:65:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wur6ows0Ds-BCky5rztRxwJWZZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/UNLkaQTvN9_oWrzMQkt6j0EKwf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/a34a16-f880-4873-868b-5ecafda471f7/1/wur6ows0Ds-BCky5rztRxwJWZZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.120.0/22
194.55.161.0/24
194.55.163.0/24
194.55.168.0/24
194.55.171.0/24
195.140.180.0/22
212.15.32.0-212.15.54.255
Signature Algorithm: sha256WithRSAEncryption
33:d5:b7:ca:6f:c9:bf:f2:9d:30:0b:91:c6:4a:45:02:91:c8:
e5:bd:96:42:47:88:e8:07:30:58:18:2b:46:41:37:83:74:86:
ba:e0:1f:5c:e5:08:37:56:d3:c7:ca:0a:19:5f:93:ff:98:a2:
16:97:7f:f0:70:5c:5b:dc:61:4d:ba:e7:8a:32:26:83:f3:b5:
96:e1:06:2d:24:6a:91:8c:a7:c3:ac:bb:84:10:40:fe:fa:ba:
1a:ca:4d:87:cf:f3:9b:ef:9b:9d:51:88:b5:6d:f3:60:20:18:
8b:df:5c:d2:1f:44:93:ab:d3:ea:4d:c0:31:98:3e:15:55:92:
41:21:26:bd:ed:29:22:b8:b9:54:a3:82:a5:43:52:ed:64:ef:
ba:6a:7c:79:cf:c0:a9:56:ba:f9:19:2f:cd:70:15:4c:60:70:
16:6e:b3:89:1c:9d:92:2f:c4:da:0c:ea:85:45:ae:87:de:17:
d4:a6:a4:d2:dc:de:e7:7d:c7:64:8a:ef:13:6f:e1:32:05:ea:
d0:34:7a:47:8b:0c:3a:ff:a3:c7:1c:e8:74:7c:84:e3:69:fd:
dc:25:d5:cd:e5:9e:7c:4d:6d:b7:0c:00:55:69:d5:9d:d6:be:
55:49:9d:53:3f:d3:97:24:1b:eb:65:1f:10:a6:cf:f0:91:56:
e2:17:5b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 03:51:36 2025 by rpki-client