Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/wUXtCWEfh1IX6I_9TJrCEtQS11U.roa
File: wUXtCWEfh1IX6I_9TJrCEtQS11U.roa (raw, json)
Hash identifier: pyQc5KsiwM2xyKGeA9OoI/KNFFwtfe13AOohFd2B1MA=
Subject key identifier: C1:45:ED:09:61:1F:87:52:17:E8:8F:FD:4C:9A:C2:12:D4:12:D7:55
Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Certificate serial: 018CC2DAE5D583B6F42A01382ACDF50CB1D6
Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/wUXtCWEfh1IX6I_9TJrCEtQS11U.roa
Signing time: Mon 01 Jan 2024 02:29:34 +0000
ROA not before: Mon 01 Jan 2024 02:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58289
IP address blocks: 194.31.133.0/24 maxlen: 24
194.31.135.0/24 maxlen: 24
185.162.234.0/24 maxlen: 24
193.43.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 06:08:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:e5:d5:83:b6:f4:2a:01:38:2a:cd:f5:0c:b1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Validity
Not Before: Jan 1 02:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c145ed09611f875217e88ffd4c9ac212d412d755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1e:5e:bb:1a:9e:d7:3d:a4:eb:6f:f7:92:f3:
c5:79:b7:59:6f:b9:6e:71:ea:7d:03:e0:37:c6:f9:
4d:6b:c0:87:22:91:9d:af:8a:12:14:c1:a7:a8:28:
80:f1:5e:b1:12:34:71:c1:6a:3a:be:fe:9c:f4:89:
3e:22:a9:c9:6e:ad:e8:79:14:b8:fc:29:fd:8e:d6:
1e:0f:31:9d:29:8c:45:9a:65:4f:80:2e:fb:eb:3a:
47:63:f7:4e:89:fb:ed:6b:3b:94:7a:53:a0:74:f8:
02:c3:92:a5:33:55:23:02:cd:d5:be:5d:3c:26:c2:
0a:66:c1:0a:ba:12:b6:9c:74:de:83:5d:5d:5d:95:
2e:ca:20:ec:f9:35:b6:2c:98:57:1d:a0:5e:dc:a7:
f9:8b:39:da:8e:ba:fd:c4:f0:79:2a:c3:04:8c:a6:
bc:db:71:1b:50:4e:77:92:a1:de:69:af:ac:a0:ee:
60:39:92:39:a7:38:51:02:15:31:ab:bd:0d:4b:26:
d5:05:ad:8f:4a:31:11:2d:17:7e:c1:74:43:df:22:
1f:9b:9f:ea:dd:18:fb:d7:bd:5b:b7:0b:57:af:a0:
f0:5c:42:2d:93:39:44:80:16:77:53:63:06:b1:36:
12:16:93:89:3e:df:f9:79:84:b5:ad:0b:7f:88:c3:
b3:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:45:ED:09:61:1F:87:52:17:E8:8F:FD:4C:9A:C2:12:D4:12:D7:55
X509v3 Authority Key Identifier:
keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/wUXtCWEfh1IX6I_9TJrCEtQS11U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.234.0/24
193.43.251.0/24
194.31.133.0/24
194.31.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b5:1d:cd:65:a2:ea:dc:3b:06:50:0d:7b:13:3e:f6:4b:06:
13:85:27:b8:a6:13:0c:0d:0a:1c:93:42:71:69:43:52:8f:76:
a9:70:7a:e4:8f:cd:56:4d:e2:81:40:08:b1:04:65:c4:94:2c:
20:dc:eb:7e:f9:ab:ab:87:06:02:74:db:2b:aa:d0:d9:eb:fb:
e8:0f:24:c8:ea:8f:54:50:28:03:b1:7b:00:55:f2:a7:83:df:
b1:52:1e:3b:50:cd:5f:88:d0:c5:79:13:cb:2a:e2:5e:1b:fa:
31:01:13:87:04:45:65:58:e9:dc:4a:20:4c:a7:58:54:7b:b0:
2f:02:ca:17:84:99:c8:af:a0:34:a8:fe:1a:48:8a:d1:4a:c2:
c9:71:c9:de:7f:10:e3:ab:b8:b8:ed:17:40:13:7b:dd:f9:6a:
ce:01:59:41:3e:1b:fe:a9:2e:e7:24:cc:3d:6c:22:fa:22:86:
1b:be:09:5b:bc:5b:be:7b:5f:c4:65:46:54:34:13:da:80:b9:
bb:12:1d:a2:d6:01:fd:56:10:6b:15:cd:89:b6:63:f7:d6:9a:
69:2f:b3:c0:ae:d6:c4:1d:8f:5c:23:4c:83:bd:a4:05:15:6f:
af:f5:1a:93:92:24:63:64:d6:33:53:d8:1d:d6:1c:9c:36:ff:
f2:01:fe:d3
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYzC2uXVg7b0KgE4Ks31DLHWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNzMyNzgwNWRmMjBmYjVjMWQ2ZjRlODkwNzQ3NDNjYWVi
MjRhZjcwHhcNMjQwMTAxMDIyOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTQ1ZWQwOTYxMWY4NzUyMTdlODhmZmQ0YzlhYzIxMmQ0MTJkNzU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB5euxqe1z2k62/3kvPFebdZb7lu
cep9A+A3xvlNa8CHIpGdr4oSFMGnqCiA8V6xEjRxwWo6vv6c9Ik+IqnJbq3oeRS4
/Cn9jtYeDzGdKYxFmmVPgC776zpHY/dOifvtazuUelOgdPgCw5KlM1UjAs3Vvl08
JsIKZsEKuhK2nHTeg11dXZUuyiDs+TW2LJhXHaBe3Kf5iznajrr9xPB5KsMEjKa8
23EbUE53kqHeaa+soO5gOZI5pzhRAhUxq70NSybVBa2PSjERLRd+wXRD3yIfm5/q
3Rj7171btwtXr6DwXEItkzlEgBZ3U2MGsTYSFpOJPt/5eYS1rQt/iMOzsQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFMFF7QlhH4dSF+iP/UyawhLUEtdVMB8GA1UdIwQY
MBaAFApzJ4Bd8g+1wdb06JB0dDyuskr3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEt
MTBiYjQ1NzlkNTI4LzEvd1VYdENXRWZoMUlYNklfOVRKckNFdFFTMTFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEtMTBiYjQ1NzlkNTI4
LzEvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAuaLqAwQA
wSv7AwQAwh+FAwQAwh+HMA0GCSqGSIb3DQEBCwUAA4IBAQAPtR3NZaLq3DsGUA17
Ez72SwYThSe4phMMDQock0JxaUNSj3apcHrkj81WTeKBQAixBGXElCwg3Ot++aur
hwYCdNsrqtDZ6/voDyTI6o9UUCgDsXsAVfKng9+xUh47UM1fiNDFeRPLKuJeG/ox
AROHBEVlWOncSiBMp1hUe7AvAsoXhJnIr6A0qP4aSIrRSsLJccnefxDjq7i47RdA
E3vd+WrOAVlBPhv+qS7nJMw9bCL6IoYbvglbvFu+e1/EZUZUNBPagLm7Eh2i1gH9
VhBrFc2JtmP31pppL7PArtbEHY9cI0yDvaQFFW+v9RqTkiRjZNYzU9gd1hycNv/y
Af7T
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:15 2024 by rpki-client on console-fra.rpki-client.org