Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/_UFmfkVdLwnoailbh167b-8pbo8.roa
File: _UFmfkVdLwnoailbh167b-8pbo8.roa (raw, json)
Hash identifier: iaKiiA0QdK1SgAgJ9uYbWi0iBScnPaMWNy3GEjzcj3g=
Subject key identifier: FD:41:66:7E:45:5D:2F:09:E8:6A:29:5B:87:5E:BB:6F:EF:29:6E:8F
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF97D1BDBE4316EFD5E8B1086F04474
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/_UFmfkVdLwnoailbh167b-8pbo8.roa
Signing time: Mon 02 Jan 2023 00:54:59 +0000
ROA not before: Mon 02 Jan 2023 00:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61321
IP address blocks: 92.247.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:7d:1b:db:e4:31:6e:fd:5e:8b:10:86:f0:44:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd41667e455d2f09e86a295b875ebb6fef296e8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4f:fa:44:f1:9b:f8:95:9e:4e:8e:62:13:96:
b7:80:48:94:59:dc:e1:8b:dc:4f:db:ef:cb:0a:e8:
d5:74:bc:19:2c:d9:dd:2b:e6:9e:9d:55:1c:a0:aa:
b5:2d:0e:6f:dd:2c:5f:06:9c:57:b7:45:5e:26:c1:
13:8d:13:0b:c1:7b:f7:6e:e8:92:a2:55:cb:b7:f7:
64:28:36:45:63:2b:d8:da:d0:77:c0:5b:07:69:d3:
fb:c7:7e:0b:7c:4e:50:fe:0a:b2:a7:76:72:07:59:
0f:48:5b:6f:da:68:88:c4:00:a9:58:71:0f:7a:74:
e3:a3:6c:1a:41:5c:d0:a8:a0:2f:92:ad:82:21:59:
ba:63:7f:89:c0:c4:e8:7d:c1:13:d3:07:53:8e:c2:
63:82:d5:bb:04:c0:f7:2e:47:de:b6:14:6c:2a:7e:
ae:c3:cd:1f:cb:9d:ed:5c:26:be:21:0d:9d:1b:94:
58:80:8e:2f:ac:c1:39:e6:6e:e4:21:02:96:69:0c:
f0:7e:15:19:0a:c8:bb:04:9f:24:c7:49:53:25:b4:
3f:b4:cd:6e:37:6e:d5:6d:aa:d8:c8:3f:2b:f5:1c:
5e:b6:a6:d5:f6:61:da:c1:fc:04:b5:0f:c0:a7:a7:
d4:df:45:6b:c8:44:5e:7d:91:d9:09:92:c4:4e:28:
e1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:41:66:7E:45:5D:2F:09:E8:6A:29:5B:87:5E:BB:6F:EF:29:6E:8F
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/_UFmfkVdLwnoailbh167b-8pbo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.247.109.0/24
Signature Algorithm: sha256WithRSAEncryption
46:6f:2a:ec:d9:84:9d:44:eb:4f:d9:26:a9:a6:ee:7b:83:ba:
1c:43:ed:68:3b:d9:73:a2:03:4d:0d:2d:8c:af:75:43:d6:26:
f8:3c:f7:96:33:ac:67:65:0c:9a:8e:bb:e3:10:93:ac:d8:e6:
71:6a:6b:d8:ba:7d:fa:e4:12:0a:0c:5f:01:a5:43:d9:49:50:
d9:26:c2:51:28:e3:d0:ae:f2:37:9d:bb:a1:b7:f8:70:af:f5:
4c:d2:ad:95:83:7f:bd:86:8e:b5:b3:8f:08:0f:cc:69:e1:42:
01:30:9a:6e:ea:9a:ee:ee:d7:e8:1a:04:65:25:ef:a0:1e:b9:
31:5c:2b:02:ca:03:2e:58:6f:28:cc:74:f4:86:03:64:1c:2d:
ae:19:e0:4d:b0:59:14:b6:a7:c4:f4:08:29:e5:d8:6f:57:28:
01:6f:e4:16:58:51:93:16:66:ca:ce:ed:57:85:0c:5a:9f:e3:
f4:99:71:94:f9:b8:25:09:ba:97:73:88:e0:72:ac:1e:97:46:
bf:44:8d:2a:c3:44:7d:1b:9c:7f:8c:1e:2c:c6:26:70:ed:53:
d0:60:3d:5a:aa:8f:bb:ff:46:c0:c4:fc:64:76:5e:24:00:79:
bb:88:72:8f:e7:d2:05:d2:e7:99:18:0e:47:94:ed:6c:80:c5:
16:8c:5c:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+X0b2+Qxbv1eixCG8ER0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDQxNjY3ZTQ1NWQyZjA5ZTg2YTI5NWI4NzVlYmI2ZmVmMjk2ZThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkk/6RPGb+JWeTo5iE5a3gEiUWdzh
i9xP2+/LCujVdLwZLNndK+aenVUcoKq1LQ5v3SxfBpxXt0VeJsETjRMLwXv3buiS
olXLt/dkKDZFYyvY2tB3wFsHadP7x34LfE5Q/gqyp3ZyB1kPSFtv2miIxACpWHEP
enTjo2waQVzQqKAvkq2CIVm6Y3+JwMTofcET0wdTjsJjgtW7BMD3LkfethRsKn6u
w80fy53tXCa+IQ2dG5RYgI4vrME55m7kIQKWaQzwfhUZCsi7BJ8kx0lTJbQ/tM1u
N27VbarYyD8r9RxetqbV9mHawfwEtQ/Ap6fU30VryERefZHZCZLETijhSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP1BZn5FXS8J6GopW4deu2/vKW6PMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvX1VGbWZrVmRMd25vYWlsYmgxNjdiLThwYm84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXPdtMA0G
CSqGSIb3DQEBCwUAA4IBAQBGbyrs2YSdROtP2Sappu57g7ocQ+1oO9lzogNNDS2M
r3VD1ib4PPeWM6xnZQyajrvjEJOs2OZxamvYun365BIKDF8BpUPZSVDZJsJRKOPQ
rvI3nbuht/hwr/VM0q2Vg3+9ho61s48ID8xp4UIBMJpu6pru7tfoGgRlJe+gHrkx
XCsCygMuWG8ozHT0hgNkHC2uGeBNsFkUtqfE9Agp5dhvVygBb+QWWFGTFmbKzu1X
hQxan+P0mXGU+bglCbqXc4jgcqwel0a/RI0qw0R9G5x/jB4sxiZw7VPQYD1aqo+7
/0bAxPxkdl4kAHm7iHKP59IF0ueZGA5HlO1sgMUWjFzr
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:44 2024 by rpki-client on console-ams.rpki-client.org