Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/a600cf-8238-4471-a1b7-f6ed83e78ef5/1/u3wRfu6RDxr0eAOpQycAN_9VJqc.roa
File: u3wRfu6RDxr0eAOpQycAN_9VJqc.roa (raw, json)
Hash identifier: TxDQGelljZP6fKRmLmldDJxSBBWVPjphDACd7ixdOzk=
Subject key identifier: BB:7C:11:7E:EE:91:0F:1A:F4:78:03:A9:43:27:00:37:FF:55:26:A7
Certificate issuer: /CN=0c3557213a6725282b24a685308e9cf84107ac7d
Certificate serial: 018570C2ACDE00BDB65FFC61AFA078562DDF
Authority key identifier: 0C:35:57:21:3A:67:25:28:2B:24:A6:85:30:8E:9C:F8:41:07:AC:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DDVXITpnJSgrJKaFMI6c-EEHrH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/a600cf-8238-4471-a1b7-f6ed83e78ef5/1/u3wRfu6RDxr0eAOpQycAN_9VJqc.roa
Signing time: Mon 02 Jan 2023 04:34:44 +0000
ROA not before: Mon 02 Jan 2023 04:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44580
IP address blocks: 194.8.82.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:ac:de:00:bd:b6:5f:fc:61:af:a0:78:56:2d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c3557213a6725282b24a685308e9cf84107ac7d
Validity
Not Before: Jan 2 04:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb7c117eee910f1af47803a943270037ff5526a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cf:07:e0:ed:aa:20:ec:d4:91:dc:82:ea:a0:
93:4d:9e:6d:df:7e:f7:8f:6f:6a:a8:9a:f7:8e:3e:
92:1c:45:fb:56:f0:d7:b1:ce:44:cc:ab:34:d3:fb:
8c:91:22:38:ae:c0:21:58:01:ec:69:df:97:d2:a5:
90:26:33:92:2c:2c:1f:08:1d:a4:83:4a:e3:2e:4a:
9e:4b:37:0f:22:86:e1:fe:03:0a:20:a0:2b:ed:9e:
5a:31:53:10:e7:d0:60:75:aa:c5:95:c3:9d:ed:17:
bd:ee:70:65:b0:0c:1e:c3:60:4d:0e:c0:a2:e7:9a:
33:49:92:8e:d9:bb:cb:ec:51:7c:a1:2c:4e:a7:55:
d3:48:ae:23:86:13:9a:a1:4f:00:08:ee:3f:e3:e4:
88:20:bc:0b:71:d4:1d:af:f8:12:7c:80:53:1b:b9:
82:ec:5a:a3:cd:b0:c3:fd:b0:e0:de:91:b5:47:b7:
81:ae:f0:11:a7:20:0f:1b:d8:fe:78:73:e6:b0:eb:
36:0d:b1:e4:01:a1:94:b3:a4:49:10:39:1e:e7:5f:
cb:67:4a:84:99:87:09:7c:6d:09:e9:da:37:60:94:
0e:58:3b:fc:ce:46:01:d3:a5:51:9b:80:f6:65:fe:
2e:43:3a:a1:0d:d7:95:4f:8d:b5:dc:95:be:1f:cd:
ab:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7C:11:7E:EE:91:0F:1A:F4:78:03:A9:43:27:00:37:FF:55:26:A7
X509v3 Authority Key Identifier:
keyid:0C:35:57:21:3A:67:25:28:2B:24:A6:85:30:8E:9C:F8:41:07:AC:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DDVXITpnJSgrJKaFMI6c-EEHrH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a600cf-8238-4471-a1b7-f6ed83e78ef5/1/u3wRfu6RDxr0eAOpQycAN_9VJqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/a600cf-8238-4471-a1b7-f6ed83e78ef5/1/DDVXITpnJSgrJKaFMI6c-EEHrH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.82.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:b4:35:e8:f4:6c:22:e5:1d:5c:0c:6b:28:e0:85:71:73:a6:
4d:85:2f:ea:18:6a:5c:d4:30:9f:35:6f:91:1f:26:03:7d:93:
9a:98:4b:e2:c0:20:2d:db:6b:6c:68:b7:3c:f5:32:ca:ad:41:
88:e1:13:1f:fd:e2:0e:12:0e:70:96:e2:bf:d0:7f:65:fc:59:
ae:93:f7:09:62:dd:fa:54:14:5d:65:4f:8c:3b:87:52:56:93:
04:1f:8a:c9:30:ba:75:9a:69:88:5f:1d:0f:df:48:b8:42:c3:
3c:26:56:fa:c1:fe:ee:98:82:43:8d:b9:d6:78:1f:8e:90:0d:
38:7e:52:64:7f:e2:df:04:d0:de:1c:24:2c:76:ab:0e:fe:88:
60:68:88:6c:3d:15:06:30:f4:32:e2:f1:4c:53:18:47:a7:0a:
5b:e1:54:3e:5d:79:a7:b6:b2:27:f0:07:ad:24:92:b6:04:3f:
60:20:f7:8b:10:0f:2b:40:ae:02:b1:c1:75:df:c7:35:5d:eb:
43:4d:5f:e8:b3:01:3b:d6:84:8b:ed:f4:6d:ec:be:4d:53:2a:
f8:d4:6f:fa:28:92:88:06:68:f0:b4:f6:51:8a:88:68:03:14:
7e:37:f7:eb:ed:f8:17:ad:00:27:ec:ee:74:16:f8:ae:4b:ce:
15:51:cd:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwwqzeAL22X/xhr6B4Vi3fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMzU1NzIxM2E2NzI1MjgyYjI0YTY4NTMwOGU5Y2Y4NDEw
N2FjN2QwHhcNMjMwMTAyMDQzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjdjMTE3ZWVlOTEwZjFhZjQ3ODAzYTk0MzI3MDAzN2ZmNTUyNmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg88H4O2qIOzUkdyC6qCTTZ5t3373
j29qqJr3jj6SHEX7VvDXsc5EzKs00/uMkSI4rsAhWAHsad+X0qWQJjOSLCwfCB2k
g0rjLkqeSzcPIobh/gMKIKAr7Z5aMVMQ59BgdarFlcOd7Re97nBlsAwew2BNDsCi
55ozSZKO2bvL7FF8oSxOp1XTSK4jhhOaoU8ACO4/4+SIILwLcdQdr/gSfIBTG7mC
7FqjzbDD/bDg3pG1R7eBrvARpyAPG9j+eHPmsOs2DbHkAaGUs6RJEDke51/LZ0qE
mYcJfG0J6do3YJQOWDv8zkYB06VRm4D2Zf4uQzqhDdeVT4213JW+H82rdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLt8EX7ukQ8a9HgDqUMnADf/VSanMB8GA1UdIwQY
MBaAFAw1VyE6ZyUoKySmhTCOnPhBB6x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRERWWElUcG5KU2dySkthRk1JNmMtRUVIckgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hNjAwY2YtODIzOC00NDcxLWExYjct
ZjZlZDgzZTc4ZWY1LzEvdTN3UmZ1NlJEeHIwZUFPcFF5Y0FOXzlWSnFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hNjAwY2YtODIzOC00NDcxLWExYjctZjZlZDgzZTc4ZWY1
LzEvRERWWElUcG5KU2dySkthRk1JNmMtRUVIckgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwghSMA0G
CSqGSIb3DQEBCwUAA4IBAQCLtDXo9Gwi5R1cDGso4IVxc6ZNhS/qGGpc1DCfNW+R
HyYDfZOamEviwCAt22tsaLc89TLKrUGI4RMf/eIOEg5wluK/0H9l/Fmuk/cJYt36
VBRdZU+MO4dSVpMEH4rJMLp1mmmIXx0P30i4QsM8Jlb6wf7umIJDjbnWeB+OkA04
flJkf+LfBNDeHCQsdqsO/ohgaIhsPRUGMPQy4vFMUxhHpwpb4VQ+XXmntrIn8Aet
JJK2BD9gIPeLEA8rQK4CscF138c1XetDTV/oswE71oSL7fRt7L5NUyr41G/6KJKI
BmjwtPZRiohoAxR+N/fr7fgXrQAn7O50FviuS84VUc2M
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org