Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/uuXZVD5sux9onV-QYw0l9wbxU8k.roa
File: uuXZVD5sux9onV-QYw0l9wbxU8k.roa (raw, json)
Hash identifier: Ih4I3PQZs+bN37LDaD+mYnAmAWtIp12gAW9vJ4ntTsI=
Subject key identifier: BA:E5:D9:54:3E:6C:BB:1F:68:9D:5F:90:63:0D:25:F7:06:F1:53:C9
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018CC56DE8B37DF3B9FB7A048AB3B8B6B0F7
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/uuXZVD5sux9onV-QYw0l9wbxU8k.roa
Signing time: Mon 01 Jan 2024 14:29:23 +0000
ROA not before: Mon 01 Jan 2024 14:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203576
IP address blocks: 185.148.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 13:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:e8:b3:7d:f3:b9:fb:7a:04:8a:b3:b8:b6:b0:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 1 14:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bae5d9543e6cbb1f689d5f90630d25f706f153c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:aa:95:51:3b:78:31:b1:68:de:e6:ac:a2:
d0:bc:36:9d:df:d0:45:35:14:a7:3a:da:29:9b:64:
62:12:00:b6:96:cd:ac:27:c3:a7:be:87:30:3c:c7:
17:df:cc:8d:b2:53:55:71:35:f5:43:71:33:17:e5:
a8:61:f6:20:7d:91:23:ab:04:3c:8d:39:3d:59:2d:
f9:94:25:c7:99:4c:34:c3:7f:bc:f2:16:5a:16:a5:
87:7b:ae:8d:ff:ab:91:b3:eb:0a:f9:5e:f6:fa:7d:
76:08:2d:bd:fa:5a:de:b0:21:49:2d:59:02:3c:69:
74:82:6c:bc:0a:70:46:26:fc:87:59:c9:a1:64:d8:
5c:d9:a4:fd:d0:a1:0b:ee:ac:aa:80:58:b4:be:d7:
5a:91:8c:af:57:8a:a1:ee:de:f2:83:d6:57:73:a6:
7d:a9:98:a9:7e:5c:e7:98:80:38:b0:cf:e9:69:02:
c6:e4:38:7b:9b:b2:74:54:c8:b8:14:dc:a5:04:db:
1b:e3:1b:61:6f:de:bc:6f:dd:85:04:51:1e:b0:90:
38:cb:d9:bb:c9:b3:a8:bb:76:01:de:fe:14:fd:14:
be:23:81:f9:9f:5e:fa:10:b5:8d:72:86:8e:af:57:
f5:84:14:9f:2b:c7:1e:e4:0a:90:94:75:cb:97:27:
e7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E5:D9:54:3E:6C:BB:1F:68:9D:5F:90:63:0D:25:F7:06:F1:53:C9
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/uuXZVD5sux9onV-QYw0l9wbxU8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0/24
Signature Algorithm: sha256WithRSAEncryption
29:79:69:ea:00:75:93:c6:06:2a:03:b8:c1:63:52:5d:99:90:
44:e9:7b:02:7f:d7:28:11:8e:9c:68:3d:3a:61:09:85:c7:ed:
4f:a5:a5:5a:39:dd:0a:3c:b2:0d:61:fe:73:51:33:e5:de:e8:
95:e1:92:82:2f:37:0b:2c:41:e8:de:b1:be:61:da:0f:08:ff:
bf:b3:db:82:36:c7:fc:d0:ad:65:56:31:e3:4f:da:c3:ef:4d:
86:f0:a4:be:a1:65:66:ef:ef:d0:45:21:44:83:64:89:96:ff:
6b:00:29:a9:ac:88:99:3d:99:a8:99:ac:32:d8:07:8a:8f:8c:
03:c3:56:fc:eb:24:1d:9a:a2:d2:65:a8:35:be:5e:80:b5:3a:
2d:73:bc:7e:07:fb:9d:00:d0:d0:ab:c0:10:43:43:1c:bb:cc:
6e:c8:a0:76:3a:a6:bf:c5:75:5a:66:80:99:5b:16:b8:02:d5:
e2:a6:75:a9:99:e7:d4:6a:42:27:a9:9c:1b:09:91:78:e6:ed:
3c:01:22:4b:c6:a7:5e:23:a5:00:2f:ee:db:f5:5f:8c:bb:1c:
23:50:25:14:40:8b:b6:60:5e:71:ee:10:2b:8b:5f:0c:21:e9:
d6:27:c1:90:77:04:3d:6e:6b:b8:bf:37:04:d3:ea:03:b4:a0:
84:fe:91:71
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbeizffO5+3oEirO4trD3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3
MjAyZDUwHhcNMjQwMTAxMTQyOTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWU1ZDk1NDNlNmNiYjFmNjg5ZDVmOTA2MzBkMjVmNzA2ZjE1M2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutmqlVE7eDGxaN7mrKLQvDad39BF
NRSnOtopm2RiEgC2ls2sJ8OnvocwPMcX38yNslNVcTX1Q3EzF+WoYfYgfZEjqwQ8
jTk9WS35lCXHmUw0w3+88hZaFqWHe66N/6uRs+sK+V72+n12CC29+lresCFJLVkC
PGl0gmy8CnBGJvyHWcmhZNhc2aT90KEL7qyqgFi0vtdakYyvV4qh7t7yg9ZXc6Z9
qZipflznmIA4sM/paQLG5Dh7m7J0VMi4FNylBNsb4xthb968b92FBFEesJA4y9m7
ybOou3YB3v4U/RS+I4H5n176ELWNcoaOr1f1hBSfK8ce5AqQlHXLlyfn8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLrl2VQ+bLsfaJ1fkGMNJfcG8VPJMB8GA1UdIwQY
MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct
YzUxNWYzNTRjYzVhLzEvdXVYWlZENXN1eDlvblYtUVl3MGw5d2J4VThrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh
LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZTxMA0G
CSqGSIb3DQEBCwUAA4IBAQApeWnqAHWTxgYqA7jBY1JdmZBE6XsCf9coEY6caD06
YQmFx+1PpaVaOd0KPLINYf5zUTPl3uiV4ZKCLzcLLEHo3rG+YdoPCP+/s9uCNsf8
0K1lVjHjT9rD702G8KS+oWVm7+/QRSFEg2SJlv9rACmprIiZPZmomawy2AeKj4wD
w1b86yQdmqLSZag1vl6AtTotc7x+B/udANDQq8AQQ0Mcu8xuyKB2Oqa/xXVaZoCZ
Wxa4AtXipnWpmefUakInqZwbCZF45u08ASJLxqdeI6UAL+7b9V+MuxwjUCUUQIu2
YF5x7hAri18MIenWJ8GQdwQ9bmu4vzcE0+oDtKCE/pFx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org