Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/uQru5zKtD8gOJTWyBXF593XHCVI.roa
File: uQru5zKtD8gOJTWyBXF593XHCVI.roa (raw, json)
Hash identifier: iJr8hM6lp+0LTMhWm1pPp1coX4fANjiJn1tX3MwcxN8=
Subject key identifier: B9:0A:EE:E7:32:AD:0F:C8:0E:25:35:B2:05:71:79:F7:75:C7:09:52
Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b
Certificate serial: 0194228DC9717DC1A3C025CE452B1C3B481F
Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/uQru5zKtD8gOJTWyBXF593XHCVI.roa
Signing time: Wed 01 Jan 2025 15:48:25 +0000
ROA not before: Wed 01 Jan 2025 15:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213035
IP address blocks: 93.93.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 16 Feb 2025 17:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:c9:71:7d:c1:a3:c0:25:ce:45:2b:1c:3b:48:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b
Validity
Not Before: Jan 1 15:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b90aeee732ad0fc80e2535b2057179f775c70952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f7:96:71:ba:36:14:3f:53:ad:91:77:f1:b4:
a0:2c:73:a1:42:cc:bd:2a:aa:98:c8:f0:24:48:e4:
f2:d3:a9:17:c8:73:5d:00:12:1d:f4:b8:59:04:15:
f7:8e:9a:46:b9:07:bc:12:50:f4:e1:51:c7:48:56:
d2:b9:c0:8d:2c:2e:a6:68:57:95:c3:a3:6b:ff:83:
e3:5d:6e:93:e7:7d:18:14:9f:90:dc:df:90:bb:7c:
a6:e4:f6:fc:be:3e:ae:15:f2:d5:0a:3a:1c:0a:0a:
fb:3e:5f:ae:e4:1c:53:a7:92:de:74:aa:e6:aa:29:
c4:1e:c3:f1:29:92:f3:4d:bf:76:50:2f:6e:4b:66:
5c:c4:78:ca:99:78:95:a8:13:fe:4f:9d:99:af:f0:
b9:fe:02:a8:6c:db:34:c7:1a:76:18:67:42:97:aa:
58:ee:a5:8b:c6:f9:a9:a2:6f:e0:74:1f:50:a0:3c:
9c:40:cf:7e:9e:30:dc:31:51:29:0c:f3:0c:47:62:
59:1b:1e:72:0f:f8:96:0c:3e:c0:c5:ae:0d:b9:cd:
a6:b0:c1:51:34:99:31:79:6c:57:ea:3f:71:91:fc:
6e:af:e2:ae:68:4e:41:99:a0:28:3d:f4:c6:e0:44:
75:a7:cb:bf:cc:82:6d:e0:8b:83:7e:0f:59:93:38:
1d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0A:EE:E7:32:AD:0F:C8:0E:25:35:B2:05:71:79:F7:75:C7:09:52
X509v3 Authority Key Identifier:
keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/uQru5zKtD8gOJTWyBXF593XHCVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.93.100.0/22
Signature Algorithm: sha256WithRSAEncryption
88:57:24:44:fd:93:75:c5:7b:53:c2:7c:29:9b:c4:b3:5e:3e:
20:25:52:28:b9:85:2c:b9:0e:01:7a:cb:8c:a4:00:bd:20:27:
27:30:e7:eb:12:d2:b9:a4:65:bd:cf:68:d5:fb:84:50:19:c4:
f6:ef:e5:8b:60:d2:88:b7:81:69:fa:f6:4d:ff:2f:68:fb:05:
c3:3f:c9:93:fd:0b:92:0e:37:1a:31:97:98:70:9f:67:f4:dd:
69:58:b4:57:a4:af:98:3b:69:c4:68:ca:dd:d5:a2:30:c5:da:
3a:66:64:97:c0:5f:b5:3c:ff:55:05:d8:7f:82:f8:db:30:1f:
05:fa:55:a0:9f:ef:28:b9:06:11:ad:07:11:f8:13:ad:76:5e:
ab:f1:66:27:7d:3f:59:c6:16:e1:24:17:43:3b:e1:07:4a:cf:
d1:c2:1e:3e:d4:b8:01:09:47:d2:37:ea:8f:a6:0b:63:87:ed:
a1:42:7c:fa:7c:bc:d4:46:24:3f:d5:06:91:a7:07:13:57:ef:
6b:21:27:7e:bc:ac:11:c9:d3:b4:3a:3e:78:2e:f7:1d:36:f1:
cf:d9:0f:18:2b:e9:dc:ee:f0:cb:62:cf:a4:c5:aa:2a:0a:de:
ed:e8:8a:19:79:ba:3c:a3:1c:99:aa:eb:e6:77:56:e4:e0:c8:
3c:0e:5c:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijclxfcGjwCXORSscO0gfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0NTZjMTRjZDg3MjRmOWE5MDk2MjdiOTRlMDA2Y2Y2OWQx
MjMwN2IwHhcNMjUwMTAxMTU0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTBhZWVlNzMyYWQwZmM4MGUyNTM1YjIwNTcxNzlmNzc1YzcwOTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtveWcbo2FD9TrZF38bSgLHOhQsy9
KqqYyPAkSOTy06kXyHNdABId9LhZBBX3jppGuQe8ElD04VHHSFbSucCNLC6maFeV
w6Nr/4PjXW6T530YFJ+Q3N+Qu3ym5Pb8vj6uFfLVCjocCgr7Pl+u5BxTp5LedKrm
qinEHsPxKZLzTb92UC9uS2ZcxHjKmXiVqBP+T52Zr/C5/gKobNs0xxp2GGdCl6pY
7qWLxvmpom/gdB9QoDycQM9+njDcMVEpDPMMR2JZGx5yD/iWDD7Axa4Nuc2msMFR
NJkxeWxX6j9xkfxur+KuaE5BmaAoPfTG4ER1p8u/zIJt4IuDfg9ZkzgdjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLkK7ucyrQ/IDiU1sgVxefd1xwlSMB8GA1UdIwQY
MBaAFERWwUzYck+akJYnuU4AbPadEjB7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUkZiQlROaHlUNXFRbGllNVRnQnM5cDBTTUhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS81ZWNmYzItZGE3MC00MzMzLThmOTYt
NWI4NzgyNWMwN2VlLzEvdVFydTV6S3REOGdPSlRXeUJYRjU5M1hIQ1ZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS81ZWNmYzItZGE3MC00MzMzLThmOTYtNWI4NzgyNWMwN2Vl
LzEvUkZiQlROaHlUNXFRbGllNVRnQnM5cDBTTUhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXV1kMA0G
CSqGSIb3DQEBCwUAA4IBAQCIVyRE/ZN1xXtTwnwpm8SzXj4gJVIouYUsuQ4BesuM
pAC9ICcnMOfrEtK5pGW9z2jV+4RQGcT27+WLYNKIt4Fp+vZN/y9o+wXDP8mT/QuS
DjcaMZeYcJ9n9N1pWLRXpK+YO2nEaMrd1aIwxdo6ZmSXwF+1PP9VBdh/gvjbMB8F
+lWgn+8ouQYRrQcR+BOtdl6r8WYnfT9ZxhbhJBdDO+EHSs/Rwh4+1LgBCUfSN+qP
pgtjh+2hQnz6fLzURiQ/1QaRpwcTV+9rISd+vKwRydO0Oj54LvcdNvHP2Q8YK+nc
7vDLYs+kxaoqCt7t6IoZebo8oxyZquvmd1bk4Mg8Dlzv
-----END CERTIFICATE-----
Generated at Thu Apr 17 11:55:22 2025 by rpki-client