Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UV8UoxtJiFEsvQjFDcKayvdxG34.roa
File: UV8UoxtJiFEsvQjFDcKayvdxG34.roa (raw, json)
Hash identifier: NhNY31FTdxhL28WP1uSGeqnof+38gM1XxXooQ+LAoUo=
Subject key identifier: 51:5F:14:A3:1B:49:88:51:2C:BD:08:C5:0D:C2:9A:CA:F7:71:1B:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018586CA4B255339242E66A844CFA43871C3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UV8UoxtJiFEsvQjFDcKayvdxG34.roa
Signing time: Fri 06 Jan 2023 11:14:42 +0000
ROA not before: Fri 06 Jan 2023 11:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 62.76.231.0/24 maxlen: 24
194.87.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 06:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:86:ca:4b:25:53:39:24:2e:66:a8:44:cf:a4:38:71:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 6 11:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=515f14a31b4988512cbd08c50dc29acaf7711b7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0b:9f:8a:ca:42:50:7b:93:8a:3b:af:12:2a:
e5:16:1f:9e:3c:73:fe:b4:64:2e:49:b3:89:3a:36:
d0:64:7a:d8:b5:12:24:7e:4e:57:4d:41:8d:95:20:
45:d1:45:2a:c3:d2:64:d4:78:f1:ec:e4:53:cf:7d:
f0:52:78:fe:3c:76:30:72:3a:51:5c:30:b6:af:cc:
4a:40:36:b9:96:9b:9e:5d:c3:bf:84:1f:8f:4d:4d:
7f:a7:24:d3:49:1d:7a:22:26:73:25:d0:46:60:32:
4e:3a:bc:7d:27:4f:a8:54:1c:f8:13:6c:c7:eb:f9:
c4:9d:68:26:1b:91:c1:eb:dc:7c:cb:db:80:e1:a4:
62:7b:47:01:66:4f:56:70:a4:43:f9:af:ff:66:18:
55:7c:2a:97:42:8b:3d:38:f6:7a:78:19:b3:64:17:
cb:b7:45:a4:cf:34:62:ab:b0:8f:0b:c6:a6:d8:9a:
7b:23:bb:1d:75:6b:cc:52:05:ed:5e:7a:d6:4b:0b:
8c:b2:70:92:c9:3e:e8:61:bf:96:ce:67:76:da:91:
02:1b:5d:55:d4:e1:66:b0:3e:99:60:3e:81:0b:18:
9e:8a:a1:f4:33:dc:3c:5f:90:91:b7:35:1f:3d:4f:
77:70:b8:04:93:76:29:4d:5a:76:9c:a4:36:15:85:
92:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5F:14:A3:1B:49:88:51:2C:BD:08:C5:0D:C2:9A:CA:F7:71:1B:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/UV8UoxtJiFEsvQjFDcKayvdxG34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.231.0/24
194.87.26.0/24
Signature Algorithm: sha256WithRSAEncryption
21:bd:02:23:d8:05:7d:de:d5:04:19:3d:f4:10:b7:0f:57:87:
64:cb:15:87:4f:c8:fb:ad:6a:85:af:99:f2:ab:17:58:f1:79:
bc:f4:19:d7:69:65:f6:72:bd:0f:04:84:8a:a7:6a:b5:4d:32:
5c:63:1a:0a:ae:99:9e:85:97:59:79:5c:b7:95:50:aa:c4:a4:
ca:ed:e1:8a:c4:c1:d4:19:7a:03:e6:6f:ae:e2:83:5d:7b:fe:
58:c3:0f:6d:d3:64:24:5f:8f:5d:7f:dd:92:26:4d:04:e3:43:
18:54:1a:73:93:ea:7d:f3:72:90:08:57:e9:27:07:6a:ec:00:
ac:cf:f1:8a:3e:0f:34:3e:ed:09:bc:a7:3b:1c:13:bf:ad:dd:
96:55:fb:aa:91:c3:33:15:f8:cf:0d:79:6b:8a:13:18:a4:d7:
28:16:25:9e:2d:70:dd:83:2e:aa:d4:e8:98:b7:49:09:6d:df:
ed:a6:ff:e2:a7:2e:1e:92:2d:05:40:48:dc:ed:6e:2e:c5:cd:
61:0d:60:db:9e:78:2e:e8:54:77:54:67:ae:f9:3c:5f:6b:4d:
86:33:8b:6e:35:c0:c9:a0:47:7b:9a:c7:d4:31:44:f4:30:f2:
4b:ef:79:bc:bb:fc:02:3e:6c:ac:fb:09:24:74:36:b7:4a:44:
b3:e8:2f:2d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYWGykslUzkkLmaoRM+kOHHDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwMTA2MTExNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTVmMTRhMzFiNDk4ODUxMmNiZDA4YzUwZGMyOWFjYWY3NzExYjdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgufispCUHuTijuvEirlFh+ePHP+
tGQuSbOJOjbQZHrYtRIkfk5XTUGNlSBF0UUqw9Jk1Hjx7ORTz33wUnj+PHYwcjpR
XDC2r8xKQDa5lpueXcO/hB+PTU1/pyTTSR16IiZzJdBGYDJOOrx9J0+oVBz4E2zH
6/nEnWgmG5HB69x8y9uA4aRie0cBZk9WcKRD+a//ZhhVfCqXQos9OPZ6eBmzZBfL
t0WkzzRiq7CPC8am2Jp7I7sddWvMUgXtXnrWSwuMsnCSyT7oYb+Wzmd22pECG11V
1OFmsD6ZYD6BCxieiqH0M9w8X5CRtzUfPU93cLgEk3YpTVp2nKQ2FYWSvQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFFfFKMbSYhRLL0IxQ3Cmsr3cRt+MB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvVVY4VW94dEppRkVzdlFqRkRjS2F5dmR4RzM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAPkznAwQA
wlcaMA0GCSqGSIb3DQEBCwUAA4IBAQAhvQIj2AV93tUEGT30ELcPV4dkyxWHT8j7
rWqFr5nyqxdY8Xm89BnXaWX2cr0PBISKp2q1TTJcYxoKrpmehZdZeVy3lVCqxKTK
7eGKxMHUGXoD5m+u4oNde/5Yww9t02QkX49df92SJk0E40MYVBpzk+p983KQCFfp
Jwdq7ACsz/GKPg80Pu0JvKc7HBO/rd2WVfuqkcMzFfjPDXlrihMYpNcoFiWeLXDd
gy6q1OiYt0kJbd/tpv/ipy4eki0FQEjc7W4uxc1hDWDbnngu6FR3VGeu+Txfa02G
M4tuNcDJoEd7msfUMUT0MPJL73m8u/wCPmys+wkkdDa3SkSz6C8t
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:17 2024 by rpki-client on console-fra.rpki-client.org