Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/umI_kqoEvFzdsyGI5q_Sh3-Z2NY.roa
File: umI_kqoEvFzdsyGI5q_Sh3-Z2NY.roa (raw, json)
Hash identifier: 6RaRlmRG22iAx7VGt7x44uOwIY+KAsSTVlUQe8udDhM=
Subject key identifier: BA:62:3F:92:AA:04:BC:5C:DD:B3:21:88:E6:AF:D2:87:7F:99:D8:D6
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018955A9B4123958D8E85880D6240D12EAB9
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/umI_kqoEvFzdsyGI5q_Sh3-Z2NY.roa
Signing time: Fri 14 Jul 2023 18:28:52 +0000
ROA not before: Fri 14 Jul 2023 18:28:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50643
IP address blocks: 176.117.88.0/21 maxlen: 22
Validation: Failed, certificate revoked on Fri 04 Aug 2023 15:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:55:a9:b4:12:39:58:d8:e8:58:80:d6:24:0d:12:ea:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jul 14 18:28:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba623f92aa04bc5cddb32188e6afd2877f99d8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ca:5e:1e:ce:fb:22:24:c7:ac:e9:b1:27:aa:
69:71:b4:2b:ab:bc:fc:fd:44:f9:0c:0d:eb:53:7c:
4a:8a:60:bd:e1:17:7b:9f:20:75:8a:63:e0:95:c1:
89:98:24:e7:7f:f3:da:82:db:1a:10:b5:98:1b:75:
38:17:9a:0a:ce:79:98:84:da:db:da:bf:4a:ff:e7:
8d:42:d2:82:32:e0:cd:8c:ca:4e:d1:90:76:bc:54:
a6:43:5e:df:1f:3c:44:d9:39:ca:bf:e3:f7:f3:33:
de:bd:8e:b8:bb:5d:75:db:f8:e1:1c:00:a4:3d:a8:
08:eb:04:db:9b:46:dc:6e:16:98:14:a2:d1:46:d4:
6d:d3:dd:cf:4d:be:53:fd:78:af:36:30:90:bc:f9:
45:ce:60:97:0b:ad:49:63:34:10:8e:65:e8:37:6a:
3b:0e:c2:65:4c:7c:6b:75:87:cb:4c:47:7a:6b:11:
d8:e1:ac:da:bb:55:cc:7b:db:24:8d:81:af:7e:73:
72:c7:6c:3c:df:d8:a8:58:70:3a:d1:a7:fc:a8:18:
f3:c2:25:9a:09:e7:67:ed:cb:e4:3b:17:a2:88:7d:
e3:7b:3a:9c:51:a3:90:c3:20:3d:8b:18:ec:ba:7e:
ca:c0:ad:93:99:1e:fc:a9:50:6b:b9:0e:3e:90:9a:
c9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:62:3F:92:AA:04:BC:5C:DD:B3:21:88:E6:AF:D2:87:7F:99:D8:D6
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/umI_kqoEvFzdsyGI5q_Sh3-Z2NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:36:e7:f4:e4:f5:a9:73:19:f0:eb:2b:68:ec:f4:19:cf:c1:
1e:a1:d6:6b:dd:98:84:78:45:b4:1a:77:30:23:60:12:6a:a1:
6f:13:94:a5:e3:13:7f:b9:fe:b5:c6:17:88:31:6d:43:ae:d9:
e1:52:83:4d:f0:98:f7:91:69:ef:1c:1a:fa:9b:f7:7e:86:7b:
d0:66:27:7b:52:dc:d0:b0:cc:cd:b9:a2:47:af:21:27:02:d4:
09:52:37:46:0f:3d:d3:d3:c1:a0:54:6d:bf:cb:fb:02:13:ea:
3f:79:aa:9e:21:83:6f:43:83:f7:0e:d5:6a:2b:72:25:2f:e5:
2b:64:d2:aa:bb:b5:e4:41:5e:9e:cd:89:d1:ad:0f:c6:a2:7a:
04:1c:fc:6f:d8:9f:d4:3e:c8:35:2b:40:53:3f:f3:d2:a7:7b:
71:b8:e3:46:d2:93:d7:5c:1a:03:1f:83:b1:95:5b:5b:ef:57:
01:82:b7:21:a7:6c:79:54:30:33:c0:8d:4a:7e:44:00:ac:64:
49:e7:9f:fb:14:79:e4:e0:b3:df:fa:4e:d4:8d:cd:09:68:20:
09:7d:0e:88:04:41:ca:5c:42:07:e2:34:9a:77:f7:98:6d:88:
5c:13:97:1a:a3:c7:24:ec:de:aa:3c:6d:f9:4e:41:38:23:7c:
77:f2:21:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlVqbQSOVjY6FiA1iQNEuq5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMjk5Y2YxMmIzOGZmMTJkOTVmZmMwZDEzYWMxMmM2OWZl
MmMxY2EwHhcNMjMwNzE0MTgyODUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTYyM2Y5MmFhMDRiYzVjZGRiMzIxODhlNmFmZDI4NzdmOTlkOGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlcpeHs77IiTHrOmxJ6ppcbQrq7z8
/UT5DA3rU3xKimC94Rd7nyB1imPglcGJmCTnf/PagtsaELWYG3U4F5oKznmYhNrb
2r9K/+eNQtKCMuDNjMpO0ZB2vFSmQ17fHzxE2TnKv+P38zPevY64u1112/jhHACk
PagI6wTbm0bcbhaYFKLRRtRt093PTb5T/XivNjCQvPlFzmCXC61JYzQQjmXoN2o7
DsJlTHxrdYfLTEd6axHY4azau1XMe9skjYGvfnNyx2w839ioWHA60af8qBjzwiWa
Cedn7cvkOxeiiH3jezqcUaOQwyA9ixjsun7KwK2TmR78qVBruQ4+kJrJjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLpiP5KqBLxc3bMhiOav0od/mdjWMB8GA1UdIwQY
MBaAFNApnPErOP8S2V/8DROsEsaf4sHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMENtYzhTczRfeExaWF93TkU2d1N4cF9pd2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kNTgyYzQtMzZlMy00YTU3LTg3NTIt
ZTY0MWU3MTNkMWZhLzEvdW1JX2txb0V2Rnpkc3lHSTVxX1NoMy1aMk5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kNTgyYzQtMzZlMy00YTU3LTg3NTItZTY0MWU3MTNkMWZh
LzEvMENtYzhTczRfeExaWF93TkU2d1N4cF9pd2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsHVYMA0G
CSqGSIb3DQEBCwUAA4IBAQCPNuf05PWpcxnw6yto7PQZz8EeodZr3ZiEeEW0Gncw
I2ASaqFvE5Sl4xN/uf61xheIMW1DrtnhUoNN8Jj3kWnvHBr6m/d+hnvQZid7UtzQ
sMzNuaJHryEnAtQJUjdGDz3T08GgVG2/y/sCE+o/eaqeIYNvQ4P3DtVqK3IlL+Ur
ZNKqu7XkQV6ezYnRrQ/GonoEHPxv2J/UPsg1K0BTP/PSp3txuONG0pPXXBoDH4Ox
lVtb71cBgrchp2x5VDAzwI1KfkQArGRJ55/7FHnk4LPf+k7Ujc0JaCAJfQ6IBEHK
XEIH4jSad/eYbYhcE5cao8ck7N6qPG35TkE4I3x38iFX
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:21 2024 by rpki-client on console-ams.rpki-client.org