Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/uZrBnM04OiiiBF1-5DOrqBN30-c.roa
File: uZrBnM04OiiiBF1-5DOrqBN30-c.roa (raw, json)
Hash identifier: 2sj9cbfIggTlcoPdSGpowZMuVdhGRLuxz/xWMQzlZBk=
Subject key identifier: B9:9A:C1:9C:CD:38:3A:28:A2:04:5D:7E:E4:33:AB:A8:13:77:D3:E7
Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Certificate serial: 0185710C2C9ECC392AC38B4D68D315C4A534
Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/uZrBnM04OiiiBF1-5DOrqBN30-c.roa
Signing time: Mon 02 Jan 2023 05:55:01 +0000
ROA not before: Mon 02 Jan 2023 05:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 194.15.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:2c:9e:cc:39:2a:c3:8b:4d:68:d3:15:c4:a5:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85
Validity
Not Before: Jan 2 05:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b99ac19ccd383a28a2045d7ee433aba81377d3e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:d6:86:c4:33:11:e4:b1:54:08:22:be:56:
7f:ec:3f:ea:7e:78:d1:40:58:51:d5:b3:44:2d:96:
91:1e:e4:d4:44:71:95:d3:95:25:92:3b:41:ae:5d:
30:37:95:63:4e:f4:3d:0f:cb:42:01:a1:a2:f4:16:
6d:bb:96:88:fe:98:a5:b1:ed:c9:ed:8a:38:37:8c:
5e:1e:86:0d:e9:45:8f:25:e0:3d:9a:24:9b:07:31:
49:14:e5:73:35:c7:cf:fc:eb:81:97:06:c2:a9:48:
13:70:bd:18:1d:52:a0:12:de:c4:36:69:27:0c:5b:
20:c2:62:8a:5c:d9:4e:05:e0:59:aa:1d:f1:9e:df:
be:39:11:50:81:2f:dd:13:b6:dc:92:b6:a0:f4:1b:
bd:ae:84:91:3e:15:42:75:d8:81:d1:cc:a7:d2:49:
25:61:6f:49:ab:98:35:22:10:74:a1:5b:da:7f:43:
e9:68:b9:7a:ae:1f:08:bc:2e:24:bc:4a:6c:c4:3e:
d5:30:39:e6:30:87:13:31:d6:5a:0d:aa:af:22:18:
f7:7c:d2:6e:7d:75:f8:d8:35:d7:c4:c3:13:57:1e:
41:62:41:a1:a4:f8:24:06:a4:e2:dd:fc:ba:a2:80:
09:20:b5:e3:32:f0:3d:60:af:2b:21:be:bb:bd:cd:
68:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:9A:C1:9C:CD:38:3A:28:A2:04:5D:7E:E4:33:AB:A8:13:77:D3:E7
X509v3 Authority Key Identifier:
keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/uZrBnM04OiiiBF1-5DOrqBN30-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.115.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:3c:c3:89:20:8d:ce:5a:72:f3:6a:be:c8:69:2f:ed:30:b7:
6b:db:61:80:44:e8:39:51:e4:c7:9b:dd:05:00:aa:4b:7e:ea:
d8:92:63:67:e4:5e:3a:e3:f5:5c:91:20:6d:d0:4c:36:e2:ce:
ac:c0:24:cd:c2:8a:35:d1:93:10:52:dc:76:96:19:d8:f7:c8:
ae:b8:e0:0b:b7:31:27:32:d1:d8:bc:88:fc:5d:50:a2:10:13:
c8:53:ef:67:84:56:14:ec:c3:a3:f8:dc:cc:d4:8e:22:0e:3c:
ef:ab:d4:ce:ca:07:2f:28:1b:bd:14:90:72:13:43:34:24:72:
91:a7:b7:24:fa:38:73:6a:ce:bc:58:f1:65:4b:7a:37:29:d8:
f2:f4:ae:e3:e6:c0:b8:f7:9d:98:ae:37:58:9e:fc:11:a8:1b:
2e:99:cc:42:17:bd:d4:a6:06:ee:c4:4a:20:90:05:7e:67:73:
7c:5a:99:d0:f7:bb:2e:75:7a:6e:77:d1:c7:68:a0:7a:9f:ff:
8c:bf:57:60:b4:65:6b:82:fd:d4:9b:31:68:ef:e3:40:05:ac:
0f:55:60:0f:38:68:f7:2b:79:dc:8a:e8:cf:d7:3f:1f:04:e8:
ed:26:5a:25:34:66:0a:65:52:a0:64:3d:7d:ca:74:86:ce:a5:
37:19:61:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxDCyezDkqw4tNaNMVxKU0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4
YzdiODUwHhcNMjMwMTAyMDU1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTlhYzE5Y2NkMzgzYTI4YTIwNDVkN2VlNDMzYWJhODEzNzdkM2U3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjnWhsQzEeSxVAgivlZ/7D/qfnjR
QFhR1bNELZaRHuTURHGV05UlkjtBrl0wN5VjTvQ9D8tCAaGi9BZtu5aI/pilse3J
7Yo4N4xeHoYN6UWPJeA9miSbBzFJFOVzNcfP/OuBlwbCqUgTcL0YHVKgEt7ENmkn
DFsgwmKKXNlOBeBZqh3xnt++ORFQgS/dE7bckrag9Bu9roSRPhVCddiB0cyn0kkl
YW9Jq5g1IhB0oVvaf0PpaLl6rh8IvC4kvEpsxD7VMDnmMIcTMdZaDaqvIhj3fNJu
fXX42DXXxMMTVx5BYkGhpPgkBqTi3fy6ooAJILXjMvA9YK8rIb67vc1ouwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLmawZzNODooogRdfuQzq6gTd9PnMB8GA1UdIwQY
MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt
ODZlYTE5ZDI5MTYzLzEvdVpyQm5NMDRPaWlpQkYxLTVET3JxQk4zMC1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz
LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwg9zMA0G
CSqGSIb3DQEBCwUAA4IBAQCaPMOJII3OWnLzar7IaS/tMLdr22GAROg5UeTHm90F
AKpLfurYkmNn5F464/VckSBt0Ew24s6swCTNwoo10ZMQUtx2lhnY98iuuOALtzEn
MtHYvIj8XVCiEBPIU+9nhFYU7MOj+NzM1I4iDjzvq9TOygcvKBu9FJByE0M0JHKR
p7ck+jhzas68WPFlS3o3Kdjy9K7j5sC4952YrjdYnvwRqBsumcxCF73UpgbuxEog
kAV+Z3N8WpnQ97sudXpud9HHaKB6n/+Mv1dgtGVrgv3UmzFo7+NABawPVWAPOGj3
K3nciujP1z8fBOjtJlolNGYKZVKgZD19ynSGzqU3GWFN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:45 2024 by rpki-client on console-fra.rpki-client.org