Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/lUmLZEkM9ctBcRYsL2otrGFJpNA.roa
File: lUmLZEkM9ctBcRYsL2otrGFJpNA.roa (raw, json)
Hash identifier: E/vis7hH+ivpz4Hb+MvJZUDr5NPAxNIMs7JyD6md/t4=
Subject key identifier: 95:49:8B:64:49:0C:F5:CB:41:71:16:2C:2F:6A:2D:AC:61:49:A4:D0
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 018C67CEF7F2AB001E40B48C98AE2A147E18
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/lUmLZEkM9ctBcRYsL2otrGFJpNA.roa
Signing time: Thu 14 Dec 2023 10:11:06 +0000
ROA not before: Thu 14 Dec 2023 10:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49037
IP address blocks: 93.185.144.0/20 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:ce:f7:f2:ab:00:1e:40:b4:8c:98:ae:2a:14:7e:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Dec 14 10:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95498b64490cf5cb4171162c2f6a2dac6149a4d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f7:48:05:e6:68:fe:fc:e8:f1:91:eb:a0:9c:
57:ea:25:7d:f9:b5:1c:83:83:88:d4:be:f3:7f:a0:
3b:c9:cc:8e:66:98:bc:44:de:7e:8e:a4:c3:22:11:
70:6d:df:b6:8f:60:f4:32:24:7c:5d:86:59:a5:01:
29:1d:51:94:e2:a5:00:a3:28:52:32:84:08:fc:52:
5a:fe:0f:61:38:70:cd:69:1b:28:be:48:c9:88:4a:
fe:1b:3b:0f:d4:ac:58:7d:e9:c5:77:7f:f6:a1:52:
4c:0f:ad:58:a5:3d:3c:f0:e9:ce:fe:8c:c1:61:0d:
24:4b:a0:ae:14:fb:5c:5c:7e:29:a1:08:0c:19:0a:
07:0e:79:9a:fe:db:4c:62:cc:96:6b:54:a4:a7:7c:
df:2e:3f:7a:40:cd:92:b9:f5:48:d9:98:4a:c8:c9:
5d:91:2b:e3:8e:1e:fd:c2:2e:6f:c8:fd:d3:79:e7:
cc:b5:45:c3:16:2d:da:cb:b6:da:f3:a5:a0:0b:2a:
2e:c5:2b:df:c7:b9:7d:25:a2:61:67:c2:8e:87:4d:
d0:c2:89:26:66:d4:f3:a8:32:a0:68:31:e1:a9:26:
69:9f:24:e6:6d:b7:b7:5f:e8:64:8b:cc:4c:81:6d:
dc:5b:73:c9:b2:19:d4:43:76:6b:69:47:e6:89:6c:
3c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:49:8B:64:49:0C:F5:CB:41:71:16:2C:2F:6A:2D:AC:61:49:A4:D0
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/lUmLZEkM9ctBcRYsL2otrGFJpNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.144.0/20
Signature Algorithm: sha256WithRSAEncryption
48:09:3a:97:08:eb:bc:45:6d:b2:36:cb:de:aa:6a:f0:68:cd:
4f:74:15:a6:6f:cb:78:50:5f:43:fb:bb:55:2c:9d:e0:d7:0f:
5c:13:9c:56:b4:b7:39:26:20:76:ac:26:64:b7:b9:92:04:10:
ce:03:89:db:dc:76:e2:c2:f0:6d:0b:7f:53:f1:06:88:8d:15:
1c:20:df:ec:23:0c:53:e8:e4:ee:7e:fb:5e:06:ab:32:36:d8:
80:a6:fa:a5:3a:d0:72:db:ec:97:3f:e9:48:dc:c7:7c:39:a2:
c1:db:c7:83:b9:d2:a6:0c:6e:29:6f:2d:25:03:ef:55:f7:2b:
48:a5:b1:58:d9:a5:dd:ef:6f:7d:49:83:40:87:4b:9d:7a:f2:
6b:96:46:61:f9:98:fb:78:ff:ad:b3:80:e6:d0:b3:e5:56:ca:
31:05:16:c0:15:c8:b9:39:ef:bd:e2:dc:36:4d:c7:58:43:7d:
73:6a:3d:c6:85:9a:24:56:fb:ea:2c:b4:10:7c:2d:b1:c7:c8:
28:02:78:51:d7:3e:93:44:12:bc:c3:0f:c5:c3:14:65:57:72:
f8:57:5d:09:a5:a5:eb:45:0c:5f:b4:c9:f9:fe:3b:1e:04:18:
64:60:9a:8e:8d:1f:42:f3:63:fa:17:eb:46:c8:00:c6:a5:26:
d1:14:50:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxnzvfyqwAeQLSMmK4qFH4YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyOWQ5NzUxZjM2NzVmNTEzMzI3MzRkYTY4ZWE5NjAyNjAw
NDViMTIwHhcNMjMxMjE0MTAxMTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTQ5OGI2NDQ5MGNmNWNiNDE3MTE2MmMyZjZhMmRhYzYxNDlhNGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofdIBeZo/vzo8ZHroJxX6iV9+bUc
g4OI1L7zf6A7ycyOZpi8RN5+jqTDIhFwbd+2j2D0MiR8XYZZpQEpHVGU4qUAoyhS
MoQI/FJa/g9hOHDNaRsovkjJiEr+GzsP1KxYfenFd3/2oVJMD61YpT088OnO/ozB
YQ0kS6CuFPtcXH4poQgMGQoHDnma/ttMYsyWa1Skp3zfLj96QM2SufVI2ZhKyMld
kSvjjh79wi5vyP3TeefMtUXDFi3ay7ba86WgCyouxSvfx7l9JaJhZ8KOh03Qwokm
ZtTzqDKgaDHhqSZpnyTmbbe3X+hki8xMgW3cW3PJshnUQ3ZraUfmiWw8AQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVJi2RJDPXLQXEWLC9qLaxhSaTQMB8GA1UdIwQY
MBaAFKKdl1HzZ19RMyc02mjqlgJgBFsSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3AyWFVmTm5YMUV6SnpUYWFPcVdBbUFFV3hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9lNjQzOTgtOTYwMS00YjdjLWI3ODMt
MDc5YmEwNTcwZjc1LzEvbFVtTFpFa005Y3RCY1JZc0wyb3RyR0ZKcE5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9lNjQzOTgtOTYwMS00YjdjLWI3ODMtMDc5YmEwNTcwZjc1
LzEvb3AyWFVmTm5YMUV6SnpUYWFPcVdBbUFFV3hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEXbmQMA0G
CSqGSIb3DQEBCwUAA4IBAQBICTqXCOu8RW2yNsveqmrwaM1PdBWmb8t4UF9D+7tV
LJ3g1w9cE5xWtLc5JiB2rCZkt7mSBBDOA4nb3HbiwvBtC39T8QaIjRUcIN/sIwxT
6OTufvteBqsyNtiApvqlOtBy2+yXP+lI3Md8OaLB28eDudKmDG4pby0lA+9V9ytI
pbFY2aXd7299SYNAh0udevJrlkZh+Zj7eP+ts4Dm0LPlVsoxBRbAFci5Oe+94tw2
TcdYQ31zaj3GhZokVvvqLLQQfC2xx8goAnhR1z6TRBK8ww/FwxRlV3L4V10JpaXr
RQxftMn5/jseBBhkYJqOjR9C82P6F+tGyADGpSbRFFAt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org