Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/2UWIfGc3RS7jJPFT239yREtjRCM.roa
File: 2UWIfGc3RS7jJPFT239yREtjRCM.roa (raw, json)
Hash identifier: WL138kUsd7Hyimtut+H8GmFqEMrvFprmIomVuXtIOr8=
Subject key identifier: D9:45:88:7C:67:37:45:2E:E3:24:F1:53:DB:7F:72:44:4B:63:44:23
Certificate issuer: /CN=30aff75209684a354669061d23da29f8ea2f1d5e
Certificate serial: 018570397722409FFAB40F4C0931D8B63E3A
Authority key identifier: 30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/2UWIfGc3RS7jJPFT239yREtjRCM.roa
Signing time: Mon 02 Jan 2023 02:04:52 +0000
ROA not before: Mon 02 Jan 2023 02:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202305
IP address blocks: 185.90.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:77:22:40:9f:fa:b4:0f:4c:09:31:d8:b6:3e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aff75209684a354669061d23da29f8ea2f1d5e
Validity
Not Before: Jan 2 02:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d945887c6737452ee324f153db7f72444b634423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7d:65:2f:53:8c:f2:c5:a1:1d:81:70:b6:e8:
b5:92:04:27:3b:41:e1:d6:43:d3:fc:f7:f1:c5:0c:
a0:91:9c:d4:4e:1c:38:85:3c:30:6a:16:f4:f9:95:
37:9c:52:bc:75:1c:a3:ef:91:3c:4e:d7:7e:19:6d:
71:48:c2:4b:3b:80:eb:fd:30:9c:14:4e:0d:04:d0:
70:cf:c8:34:4a:df:0f:86:e4:1a:0f:f2:eb:b6:29:
cd:bc:51:d4:d3:ca:08:47:bc:3d:e2:74:a4:c5:06:
77:5d:20:a6:58:e0:46:25:b9:c4:c6:63:43:2b:dd:
fe:ff:0f:01:34:2d:8c:ab:2e:48:d8:4c:66:de:a8:
ef:57:31:37:90:8c:b2:63:bd:be:24:2f:8a:16:8f:
36:ea:fa:a2:95:5c:3a:a2:14:22:7e:6c:11:ae:85:
4e:e8:ae:0e:d7:24:9d:20:92:1e:e7:52:b5:7a:22:
3e:04:1f:a7:a8:e8:99:98:62:ca:b6:15:86:8d:8a:
4f:e5:6c:ad:b5:a2:b3:f7:a9:7a:d4:37:24:b5:b4:
e7:83:23:b6:af:ad:17:92:29:3a:53:c8:de:1c:91:
b2:9a:46:9b:c8:30:df:90:0d:fb:65:80:b6:75:52:
45:39:64:20:8c:5d:86:11:d2:a0:f0:55:83:0b:15:
f4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:45:88:7C:67:37:45:2E:E3:24:F1:53:DB:7F:72:44:4B:63:44:23
X509v3 Authority Key Identifier:
keyid:30:AF:F7:52:09:68:4A:35:46:69:06:1D:23:DA:29:F8:EA:2F:1D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MK_3UgloSjVGaQYdI9op-OovHV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/2UWIfGc3RS7jJPFT239yREtjRCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/844a25-a8df-4561-b3e7-9785a335542a/1/MK_3UgloSjVGaQYdI9op-OovHV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.208.0/22
Signature Algorithm: sha256WithRSAEncryption
06:0a:e9:99:f7:b4:0d:32:39:a6:7d:8a:57:8f:d6:6a:04:f1:
be:63:41:58:f8:4e:0a:db:d6:8d:a0:5e:f6:41:71:22:55:29:
65:d7:3a:28:95:ab:2f:79:3f:cd:cc:68:45:50:4f:25:d5:f4:
4b:58:13:52:49:53:4b:03:e1:48:19:2d:08:a5:d3:f3:10:61:
7c:84:bd:93:c4:2c:69:13:bf:cc:af:40:ae:c3:f4:38:7d:7c:
f1:ba:6d:95:0d:23:de:eb:4a:7b:ae:61:ac:8b:f6:ef:6d:d1:
18:0a:ab:53:8d:cb:06:25:98:0d:e2:01:9a:a2:42:df:cf:92:
c9:78:f5:bd:cc:62:05:90:cf:09:e7:93:c0:98:20:16:ed:b4:
46:56:51:48:6e:31:44:d4:47:6d:d2:5d:17:ca:90:14:49:14:
46:d1:2a:fe:68:72:30:c5:ae:01:01:d8:86:e2:76:86:e8:ec:
e2:32:72:6e:dd:1d:96:63:b1:ad:52:62:5f:d7:5a:99:1c:d0:
5d:de:6b:a8:c7:bc:e2:7d:8b:34:2d:43:02:a4:d8:c0:a6:56:
63:b0:1f:9f:8d:8a:67:27:f7:45:12:6c:a5:8b:9f:b8:41:4a:
35:99:92:7d:17:30:70:28:e0:64:32:91:a6:f2:79:6f:ee:71:
17:99:5c:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwOXciQJ/6tA9MCTHYtj46MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYWZmNzUyMDk2ODRhMzU0NjY5MDYxZDIzZGEyOWY4ZWEy
ZjFkNWUwHhcNMjMwMTAyMDIwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTQ1ODg3YzY3Mzc0NTJlZTMyNGYxNTNkYjdmNzI0NDRiNjM0NDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm31lL1OM8sWhHYFwtui1kgQnO0Hh
1kPT/PfxxQygkZzUThw4hTwwahb0+ZU3nFK8dRyj75E8Ttd+GW1xSMJLO4Dr/TCc
FE4NBNBwz8g0St8PhuQaD/LrtinNvFHU08oIR7w94nSkxQZ3XSCmWOBGJbnExmND
K93+/w8BNC2Mqy5I2Exm3qjvVzE3kIyyY72+JC+KFo826vqilVw6ohQifmwRroVO
6K4O1ySdIJIe51K1eiI+BB+nqOiZmGLKthWGjYpP5WyttaKz96l61DcktbTngyO2
r60Xkik6U8jeHJGymkabyDDfkA37ZYC2dVJFOWQgjF2GEdKg8FWDCxX0YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNlFiHxnN0Uu4yTxU9t/ckRLY0QjMB8GA1UdIwQY
MBaAFDCv91IJaEo1RmkGHSPaKfjqLx1eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUtfM1VnbG9TalZHYVFZZEk5b3AtT292SFY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS84NDRhMjUtYThkZi00NTYxLWIzZTct
OTc4NWEzMzU1NDJhLzEvMlVXSWZHYzNSUzdqSlBGVDIzOXlSRXRqUkNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS84NDRhMjUtYThkZi00NTYxLWIzZTctOTc4NWEzMzU1NDJh
LzEvTUtfM1VnbG9TalZHYVFZZEk5b3AtT292SFY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVrQMA0G
CSqGSIb3DQEBCwUAA4IBAQAGCumZ97QNMjmmfYpXj9ZqBPG+Y0FY+E4K29aNoF72
QXEiVSll1zoolasveT/NzGhFUE8l1fRLWBNSSVNLA+FIGS0IpdPzEGF8hL2TxCxp
E7/Mr0Cuw/Q4fXzxum2VDSPe60p7rmGsi/bvbdEYCqtTjcsGJZgN4gGaokLfz5LJ
ePW9zGIFkM8J55PAmCAW7bRGVlFIbjFE1Edt0l0XypAUSRRG0Sr+aHIwxa4BAdiG
4naG6OziMnJu3R2WY7GtUmJf11qZHNBd3muox7zifYs0LUMCpNjAplZjsB+fjYpn
J/dFEmyli5+4QUo1mZJ9FzBwKOBkMpGm8nlv7nEXmVyO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:58 2024 by rpki-client on console-fra.rpki-client.org