Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/UbxoOM47jMgjWyDcmjBcjGKXX2g.roa
File: UbxoOM47jMgjWyDcmjBcjGKXX2g.roa (raw, json)
Hash identifier: bv9VrWduXNeTQFbdh+niN4rfzgJ6N6no/Oap82mh7ko=
Subject key identifier: 51:BC:68:38:CE:3B:8C:C8:23:5B:20:DC:9A:30:5C:8C:62:97:5F:68
Certificate issuer: /CN=0620eadb2e1562b4e2e4f480772c36887a777f24
Certificate serial: 01856E5D59F47CBEB0FEF7BF405B61E4B29D
Authority key identifier: 06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/UbxoOM47jMgjWyDcmjBcjGKXX2g.roa
Signing time: Sun 01 Jan 2023 17:24:49 +0000
ROA not before: Sun 01 Jan 2023 17:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 217.195.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:5d:59:f4:7c:be:b0:fe:f7:bf:40:5b:61:e4:b2:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0620eadb2e1562b4e2e4f480772c36887a777f24
Validity
Not Before: Jan 1 17:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51bc6838ce3b8cc8235b20dc9a305c8c62975f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:70:14:dd:2a:9b:c9:6e:8c:f8:28:3e:b9:01:
6c:c9:7c:bf:57:b6:02:91:fa:f7:83:56:1b:f2:65:
8a:a0:4f:92:87:6a:cd:97:78:13:0e:9e:ed:24:a3:
24:e6:63:d8:26:ad:6f:6f:74:68:be:05:59:4e:6a:
e1:60:75:ba:3e:7b:11:de:62:b3:6c:7b:6c:4a:e6:
c7:5c:1d:fe:26:9c:bf:a7:7f:d1:2c:b2:67:88:53:
ed:23:3c:4c:f5:ec:a4:1a:7b:a8:9a:bd:94:9d:cb:
a3:b0:e6:5e:fc:11:71:7a:da:7c:4f:45:9b:71:8b:
84:1a:a2:fb:f2:94:fe:dd:ed:80:4d:13:5d:19:b4:
25:70:f8:e4:b8:e0:d7:2e:81:cf:13:e0:2f:9d:30:
b0:bc:ae:42:24:f9:99:75:88:9a:0c:9f:5e:69:a9:
5d:e5:a7:b7:d0:4b:17:1c:a2:95:2c:ac:29:c8:ae:
e0:30:56:e6:93:67:cd:4a:96:d5:d5:a7:ff:1a:c2:
7c:08:11:53:e4:37:2b:a1:b7:ac:bd:f1:7d:c6:1f:
1d:f7:d9:df:1a:95:ad:3f:26:63:55:18:55:a7:81:
fa:99:85:c5:0a:38:6b:eb:5f:c9:c9:56:80:83:22:
0c:95:52:35:45:71:39:85:50:f0:e8:55:1c:f7:c9:
0d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BC:68:38:CE:3B:8C:C8:23:5B:20:DC:9A:30:5C:8C:62:97:5F:68
X509v3 Authority Key Identifier:
keyid:06:20:EA:DB:2E:15:62:B4:E2:E4:F4:80:77:2C:36:88:7A:77:7F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/UbxoOM47jMgjWyDcmjBcjGKXX2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/cc8bfa-2b13-4674-a984-a5fdb570fe9a/1/BiDq2y4VYrTi5PSAdyw2iHp3fyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.195.199.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:c0:99:ad:05:d3:16:47:1d:c7:d2:eb:a9:51:1c:c6:bd:a8:
48:71:ae:89:04:2a:da:87:2b:6e:94:8d:cc:3d:cd:10:4e:dd:
2e:f7:fb:c9:10:ad:89:ba:23:d3:88:44:ce:58:68:a3:26:85:
21:5a:4a:bf:62:a0:9f:74:91:d0:ec:b8:e1:51:ac:1d:1f:29:
9d:07:b7:bc:c8:3e:8d:db:bb:9b:4e:46:bd:bd:7e:b9:7a:f9:
a6:fb:cb:03:d8:49:0a:b0:0e:b7:79:76:a9:cd:93:2f:3e:ec:
1c:16:a4:6b:56:03:05:43:13:5e:04:71:bb:8d:6b:d5:45:63:
c1:44:06:57:3d:95:f1:cd:b2:3b:46:84:f9:fc:15:5c:2e:75:
c5:dc:1a:3e:cf:1a:bd:40:6d:b9:48:aa:7b:ce:3a:de:4b:45:
70:27:81:66:50:22:33:c9:ea:57:85:0a:b0:86:bc:86:1f:6d:
73:f0:9a:48:8e:9d:10:12:1a:e7:a4:57:0b:89:45:c3:fa:3a:
c2:83:ba:0f:cd:50:e6:fa:0e:23:54:ad:87:fe:03:8e:8e:80:
ee:09:61:cf:09:2d:93:4d:95:38:86:44:99:b9:e2:3e:f8:b7:
c8:a0:fe:e6:09:59:8f:6d:85:0a:c6:3d:7d:c8:fd:70:ee:65:
f3:64:fa:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuXVn0fL6w/ve/QFth5LKdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MjBlYWRiMmUxNTYyYjRlMmU0ZjQ4MDc3MmMzNjg4N2E3
NzdmMjQwHhcNMjMwMTAxMTcyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWJjNjgzOGNlM2I4Y2M4MjM1YjIwZGM5YTMwNWM4YzYyOTc1ZjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHAU3SqbyW6M+Cg+uQFsyXy/V7YC
kfr3g1Yb8mWKoE+Sh2rNl3gTDp7tJKMk5mPYJq1vb3RovgVZTmrhYHW6PnsR3mKz
bHtsSubHXB3+Jpy/p3/RLLJniFPtIzxM9eykGnuomr2UncujsOZe/BFxetp8T0Wb
cYuEGqL78pT+3e2ATRNdGbQlcPjkuODXLoHPE+AvnTCwvK5CJPmZdYiaDJ9eaald
5ae30EsXHKKVLKwpyK7gMFbmk2fNSpbV1af/GsJ8CBFT5DcrobesvfF9xh8d99nf
GpWtPyZjVRhVp4H6mYXFCjhr61/JyVaAgyIMlVI1RXE5hVDw6FUc98kNewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFG8aDjOO4zII1sg3JowXIxil19oMB8GA1UdIwQY
MBaAFAYg6tsuFWK04uT0gHcsNoh6d38kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQt
YTVmZGI1NzBmZTlhLzEvVWJ4b09NNDdqTWdqV3lEY21qQmNqR0tYWDJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9jYzhiZmEtMmIxMy00Njc0LWE5ODQtYTVmZGI1NzBmZTlh
LzEvQmlEcTJ5NFZZclRpNVBTQWR5dzJpSHAzZnlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2cPHMA0G
CSqGSIb3DQEBCwUAA4IBAQDCwJmtBdMWRx3H0uupURzGvahIca6JBCrahytulI3M
Pc0QTt0u9/vJEK2JuiPTiETOWGijJoUhWkq/YqCfdJHQ7LjhUawdHymdB7e8yD6N
27ubTka9vX65evmm+8sD2EkKsA63eXapzZMvPuwcFqRrVgMFQxNeBHG7jWvVRWPB
RAZXPZXxzbI7RoT5/BVcLnXF3Bo+zxq9QG25SKp7zjreS0VwJ4FmUCIzyepXhQqw
hryGH21z8JpIjp0QEhrnpFcLiUXD+jrCg7oPzVDm+g4jVK2H/gOOjoDuCWHPCS2T
TZU4hkSZueI++LfIoP7mCVmPbYUKxj19yP1w7mXzZPoD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:33 2024 by rpki-client on console-ams.rpki-client.org