Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/uHg-Ev4YLsvCtmvJ7p_xVHI9WCU.roa
File: uHg-Ev4YLsvCtmvJ7p_xVHI9WCU.roa (raw, json)
Hash identifier: KlIY+UbUO2CQqe0HFKVDsmcBMgj2hG+o71i34vlYvTE=
Subject key identifier: B8:78:3E:12:FE:18:2E:CB:C2:B6:6B:C9:EE:9F:F1:54:72:3D:58:25
Certificate issuer: /CN=253358358eba51b534d3fae9a6cb871de637e000
Certificate serial: 018626BBD4DF1FD23C7B6527371BC46ABC8F
Authority key identifier: 25:33:58:35:8E:BA:51:B5:34:D3:FA:E9:A6:CB:87:1D:E6:37:E0:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTNYNY66UbU00_rppsuHHeY34AA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/uHg-Ev4YLsvCtmvJ7p_xVHI9WCU.roa
Signing time: Mon 06 Feb 2023 12:38:09 +0000
ROA not before: Mon 06 Feb 2023 12:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209664
IP address blocks: 176.117.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:bb:d4:df:1f:d2:3c:7b:65:27:37:1b:c4:6a:bc:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253358358eba51b534d3fae9a6cb871de637e000
Validity
Not Before: Feb 6 12:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8783e12fe182ecbc2b66bc9ee9ff154723d5825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5c:80:d1:2b:ff:28:8a:72:00:85:e5:22:51:
10:af:d9:fd:27:0b:e1:6b:d3:5c:f6:b5:9f:22:cf:
32:89:b7:d8:0f:12:8b:bc:22:a2:2b:ca:cd:3b:be:
7e:46:8e:62:2c:e0:94:cb:2b:c7:60:9d:43:d9:98:
0f:06:a5:b3:ea:dc:74:12:7e:60:45:2a:79:0b:38:
44:44:9c:31:de:80:06:3c:3b:b7:1d:d8:3b:56:d4:
5b:46:9e:1b:99:8f:34:a3:10:28:8f:73:5c:a3:1b:
0b:a5:2d:a9:b7:4f:1b:41:39:12:e3:76:00:35:3c:
61:6c:c7:2c:55:f4:83:68:bb:ef:c5:b6:90:47:a9:
5a:ba:e9:69:2c:9a:64:a4:6e:ab:75:ee:bf:6f:c3:
49:a6:e6:47:2f:9c:51:16:ad:2d:cc:85:b9:cc:b1:
da:3b:c2:fc:72:ee:79:ea:37:8a:76:17:4a:3a:bc:
4d:b9:ec:34:4e:c9:5b:a6:e9:f4:38:39:dd:51:76:
cb:d3:92:a5:db:c5:a5:f3:b5:22:0f:ca:15:bb:63:
a9:ba:a7:9f:69:ec:14:ad:b7:bc:31:d9:11:18:00:
d8:5a:e1:a5:cc:47:25:73:aa:d9:e5:b6:bf:bc:eb:
6b:b4:d6:6d:f2:ba:d1:21:3c:1f:88:df:f9:6d:ea:
44:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:78:3E:12:FE:18:2E:CB:C2:B6:6B:C9:EE:9F:F1:54:72:3D:58:25
X509v3 Authority Key Identifier:
keyid:25:33:58:35:8E:BA:51:B5:34:D3:FA:E9:A6:CB:87:1D:E6:37:E0:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTNYNY66UbU00_rppsuHHeY34AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/uHg-Ev4YLsvCtmvJ7p_xVHI9WCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/JTNYNY66UbU00_rppsuHHeY34AA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.70.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:5d:bd:b2:6f:9b:3e:95:40:87:56:08:89:56:d2:a5:d3:07:
bf:28:cf:cf:c4:86:47:ea:92:52:48:d6:d6:b9:7d:71:7b:0c:
26:c3:19:55:c8:6d:68:88:02:fe:c2:15:c4:98:f4:75:54:ab:
94:2d:a3:35:79:0d:cc:48:da:04:96:6e:a8:95:54:77:19:9e:
4f:d7:b0:f0:21:de:cf:e5:7d:8c:c4:06:d5:46:38:ae:32:77:
1e:ba:cc:95:67:07:1a:10:27:f5:30:9a:a2:6f:29:9f:be:a0:
c0:5c:d7:cf:a1:e4:eb:07:f4:65:3d:34:b9:3a:63:17:f3:43:
bf:6e:18:b3:a2:0c:4b:0c:37:b2:1c:96:2a:9c:1c:18:93:47:
03:b1:76:0d:48:7a:c4:c1:0a:b0:cc:e5:f8:5a:60:4b:ae:86:
ec:93:6f:35:ab:1c:14:c8:7f:40:2c:67:ad:ec:b8:62:cd:11:
78:53:51:b7:0f:46:55:1b:72:80:a2:de:8d:fb:2f:24:cd:b9:
2f:16:d0:2b:c3:94:1e:13:ce:92:3f:49:90:03:51:05:01:5e:
79:59:e9:38:ef:91:25:86:28:3f:e9:9b:39:76:3f:77:3c:ee:
36:4e:e0:e2:2f:19:98:45:e7:57:02:0b:5e:fd:f8:3d:48:c5:
f7:7a:ef:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYmu9TfH9I8e2UnNxvEaryPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1MzM1ODM1OGViYTUxYjUzNGQzZmFlOWE2Y2I4NzFkZTYz
N2UwMDAwHhcNMjMwMjA2MTIzODA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODc4M2UxMmZlMTgyZWNiYzJiNjZiYzllZTlmZjE1NDcyM2Q1ODI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl1yA0Sv/KIpyAIXlIlEQr9n9Jwvh
a9Nc9rWfIs8yibfYDxKLvCKiK8rNO75+Ro5iLOCUyyvHYJ1D2ZgPBqWz6tx0En5g
RSp5CzhERJwx3oAGPDu3Hdg7VtRbRp4bmY80oxAoj3NcoxsLpS2pt08bQTkS43YA
NTxhbMcsVfSDaLvvxbaQR6lauulpLJpkpG6rde6/b8NJpuZHL5xRFq0tzIW5zLHa
O8L8cu556jeKdhdKOrxNuew0Tslbpun0ODndUXbL05Kl28Wl87UiD8oVu2Opuqef
aewUrbe8MdkRGADYWuGlzEclc6rZ5ba/vOtrtNZt8rrRITwfiN/5bepE+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLh4PhL+GC7LwrZrye6f8VRyPVglMB8GA1UdIwQY
MBaAFCUzWDWOulG1NNP66abLhx3mN+AAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlROWU5ZNjZVYlUwMF9ycHBzdUhIZVkzNEFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8xYzJmOTAtMjZlYS00ZDU5LTkxYTkt
NGQ3NzU2MjJiY2I2LzEvdUhnLUV2NFlMc3ZDdG12SjdwX3hWSEk5V0NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni8xYzJmOTAtMjZlYS00ZDU5LTkxYTktNGQ3NzU2MjJiY2I2
LzEvSlROWU5ZNjZVYlUwMF9ycHBzdUhIZVkzNEFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHVGMA0G
CSqGSIb3DQEBCwUAA4IBAQDcXb2yb5s+lUCHVgiJVtKl0we/KM/PxIZH6pJSSNbW
uX1xewwmwxlVyG1oiAL+whXEmPR1VKuULaM1eQ3MSNoElm6olVR3GZ5P17DwId7P
5X2MxAbVRjiuMnceusyVZwcaECf1MJqibymfvqDAXNfPoeTrB/RlPTS5OmMX80O/
bhizogxLDDeyHJYqnBwYk0cDsXYNSHrEwQqwzOX4WmBLrobsk281qxwUyH9ALGet
7LhizRF4U1G3D0ZVG3KAot6N+y8kzbkvFtArw5QeE86SP0mQA1EFAV55Wek475El
hig/6Zs5dj93PO42TuDiLxmYRedXAgte/fg9SMX3eu9I
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:09 2024 by rpki-client on console-ams.rpki-client.org