Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/uqGP0_pjLf7WNtzdTqApRVX469g.roa
File: uqGP0_pjLf7WNtzdTqApRVX469g.roa (raw, json)
Hash identifier: TpKb6tkwaLsW20RtiRgNdc8jFkEyQypBZCG51DOOR3A=
Subject key identifier: BA:A1:8F:D3:FA:63:2D:FE:D6:36:DC:DD:4E:A0:29:45:55:F8:EB:D8
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 018CC2DB4305C6F34FAD83FA5ECBB9A10C2E
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/uqGP0_pjLf7WNtzdTqApRVX469g.roa
Signing time: Mon 01 Jan 2024 02:29:58 +0000
ROA not before: Mon 01 Jan 2024 02:29:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50124
IP address blocks: 45.11.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 17:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:43:05:c6:f3:4f:ad:83:fa:5e:cb:b9:a1:0c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 1 02:29:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baa18fd3fa632dfed636dcdd4ea0294555f8ebd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:59:2e:95:05:e0:f7:24:4c:ca:6b:ec:e8:98:
9d:07:26:a3:04:0b:1b:5e:1c:65:04:f6:17:a7:f6:
be:2c:ca:8f:43:80:35:2c:83:00:08:bb:ea:fb:19:
37:9d:42:a5:d9:9a:19:c6:a7:c4:2a:5a:27:70:7c:
35:21:4e:1b:60:ec:42:d9:64:47:b2:c6:83:44:56:
6e:5f:6c:94:d6:7d:2f:46:ef:ce:24:77:16:53:ca:
60:94:e2:a4:c2:1c:f6:cc:e7:90:28:c7:c9:eb:c7:
25:41:20:80:14:43:02:5c:d9:08:f9:1e:07:68:e5:
ff:fd:bb:0f:36:8b:c7:83:d3:89:4f:90:84:e9:15:
d4:8d:b1:d2:de:15:b8:5e:71:80:21:17:33:17:df:
a1:52:ad:ba:92:90:3c:68:db:54:93:a6:65:75:3b:
ae:13:c9:b6:70:46:42:99:0e:61:34:63:fd:b8:c5:
be:04:45:71:f5:3d:1b:12:a5:f7:7d:ce:84:a8:85:
18:ab:63:d9:9c:2c:81:d5:6f:da:e6:7d:5a:77:35:
f4:3f:4f:5c:57:52:49:74:e5:8e:5b:57:35:4b:3c:
37:c8:55:3e:9a:6b:8b:49:f3:9a:29:42:fe:e1:24:
ea:8d:aa:46:25:99:6a:e3:32:c5:46:99:e0:f9:f2:
4b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A1:8F:D3:FA:63:2D:FE:D6:36:DC:DD:4E:A0:29:45:55:F8:EB:D8
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/uqGP0_pjLf7WNtzdTqApRVX469g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.185.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:93:ad:76:c9:35:ee:f8:a8:27:99:00:5a:35:a0:f4:3e:6a:
69:62:86:b3:3d:0b:a7:b7:93:e8:1b:e4:fe:6a:1b:3f:dc:6f:
87:34:fe:ce:b8:dc:89:90:cc:f2:79:b2:d2:ac:ad:de:24:62:
ee:ca:38:5e:24:83:9c:ea:1f:39:d1:38:cd:d1:38:3e:a3:24:
29:70:61:ed:ab:a9:d9:75:46:e7:46:52:b1:3a:67:32:3b:6b:
64:5a:48:80:7b:72:f6:78:96:6b:17:a8:cc:48:b7:4b:38:d8:
83:33:2c:38:1b:62:f0:95:63:da:89:cc:1f:41:ae:fe:00:b7:
f6:37:b5:53:b9:f6:16:4f:40:93:a4:84:ab:ad:78:b5:69:69:
67:40:c5:6b:a7:44:93:6b:ea:29:aa:52:db:58:56:11:93:b1:
18:ce:14:a2:36:eb:cd:90:f6:18:ed:f2:11:a3:cd:28:cd:cf:
d2:e2:d3:82:bd:57:b8:0c:24:fb:b8:81:93:da:0d:8a:64:e8:
36:da:d6:72:ca:a8:61:3d:90:02:ff:e0:56:a5:e9:4d:91:2c:
8b:37:16:b5:01:90:3f:e7:5b:f1:89:51:5b:75:c2:94:e7:c8:
d4:17:0f:07:3f:62:6f:4a:33:29:9f:17:f1:51:5d:a9:9a:47:
d1:f6:78:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC20MFxvNPrYP6Xsu5oQwuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OTAwMTgzY2YwOGE2ZTViYzgwNzg0NjI5NGE0NjA2MmUx
OTBlM2IwHhcNMjQwMTAxMDIyOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWExOGZkM2ZhNjMyZGZlZDYzNmRjZGQ0ZWEwMjk0NTU1ZjhlYmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1kulQXg9yRMymvs6JidByajBAsb
XhxlBPYXp/a+LMqPQ4A1LIMACLvq+xk3nUKl2ZoZxqfEKloncHw1IU4bYOxC2WRH
ssaDRFZuX2yU1n0vRu/OJHcWU8pglOKkwhz2zOeQKMfJ68clQSCAFEMCXNkI+R4H
aOX//bsPNovHg9OJT5CE6RXUjbHS3hW4XnGAIRczF9+hUq26kpA8aNtUk6ZldTuu
E8m2cEZCmQ5hNGP9uMW+BEVx9T0bEqX3fc6EqIUYq2PZnCyB1W/a5n1adzX0P09c
V1JJdOWOW1c1Szw3yFU+mmuLSfOaKUL+4STqjapGJZlq4zLFRpng+fJLvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLqhj9P6Yy3+1jbc3U6gKUVV+OvYMB8GA1UdIwQY
MBaAFDaQAYPPCKblvIB4RilKRgYuGQ47MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnBBQmc4OElwdVc4Z0hoR0tVcEdCaTRaRGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC81YTMyYmMtMDgzNi00N2VjLWI1YjMt
MmY1YjZhODNmYWYzLzEvdXFHUDBfcGpMZjdXTnR6ZFRxQXBSVlg0NjlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC81YTMyYmMtMDgzNi00N2VjLWI1YjMtMmY1YjZhODNmYWYz
LzEvTnBBQmc4OElwdVc4Z0hoR0tVcEdCaTRaRGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQu5MA0G
CSqGSIb3DQEBCwUAA4IBAQCsk612yTXu+KgnmQBaNaD0PmppYoazPQunt5PoG+T+
ahs/3G+HNP7OuNyJkMzyebLSrK3eJGLuyjheJIOc6h850TjN0Tg+oyQpcGHtq6nZ
dUbnRlKxOmcyO2tkWkiAe3L2eJZrF6jMSLdLONiDMyw4G2LwlWPaicwfQa7+ALf2
N7VTufYWT0CTpISrrXi1aWlnQMVrp0STa+opqlLbWFYRk7EYzhSiNuvNkPYY7fIR
o80ozc/S4tOCvVe4DCT7uIGT2g2KZOg22tZyyqhhPZAC/+BWpelNkSyLNxa1AZA/
51vxiVFbdcKU58jUFw8HP2JvSjMpnxfxUV2pmkfR9ngc
-----END CERTIFICATE-----
Generated at Fri Apr 12 20:22:48 2024 by rpki-client on console-ams.rpki-client.org