Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e74f5f-75c5-4a75-98b9-9fecbd25d434/1/UqhnigqImuPyX7g12qawCqQiK90.roa
File: UqhnigqImuPyX7g12qawCqQiK90.roa (raw, json)
Hash identifier: ddBJThY0kj2ICcO3rV6xH5JHBKID7viqn//zLXVC8Y8=
Subject key identifier: 52:A8:67:8A:0A:88:9A:E3:F2:5F:B8:35:DA:A6:B0:0A:A4:22:2B:DD
Certificate issuer: /CN=36bd4a382dae2be5cb98b35e5a048d03b4ccbe2b
Certificate serial: 018779DA48F286AA2C974CB2755EEA978828
Authority key identifier: 36:BD:4A:38:2D:AE:2B:E5:CB:98:B3:5E:5A:04:8D:03:B4:CC:BE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nr1KOC2uK-XLmLNeWgSNA7TMvis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e74f5f-75c5-4a75-98b9-9fecbd25d434/1/UqhnigqImuPyX7g12qawCqQiK90.roa
Signing time: Thu 13 Apr 2023 09:02:41 +0000
ROA not before: Thu 13 Apr 2023 09:02:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.211.208.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:79:da:48:f2:86:aa:2c:97:4c:b2:75:5e:ea:97:88:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36bd4a382dae2be5cb98b35e5a048d03b4ccbe2b
Validity
Not Before: Apr 13 09:02:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52a8678a0a889ae3f25fb835daa6b00aa4222bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3b:cc:a6:b3:74:44:36:1f:f6:03:5b:a3:2d:
ad:cb:1d:10:0c:32:cb:1b:16:26:82:57:ce:f3:3d:
34:ca:b4:b4:ba:27:23:d3:4a:d7:c2:af:00:69:90:
ce:36:19:a8:d9:42:75:06:7f:9d:e2:91:17:d5:98:
e9:a1:c3:64:07:1a:a4:e6:33:07:96:73:f8:12:f1:
16:1f:1b:09:8d:7c:9d:05:4f:d3:d0:fb:fa:23:cd:
25:cd:6b:e8:08:b7:b5:79:3b:3d:e9:32:20:92:b9:
c9:5e:47:10:88:c6:96:8b:da:4d:1d:a5:af:19:37:
3c:32:59:28:b8:96:0e:b8:61:05:68:dc:d3:cd:83:
23:8b:74:04:f5:5a:bd:9f:4c:ef:ce:36:0c:35:c9:
54:e1:e4:da:d2:b7:3a:7e:fb:00:b1:d0:95:e3:cf:
78:d8:fe:5f:4f:4a:1c:54:89:7f:cc:be:35:ba:8a:
c0:16:1e:b6:ba:1c:86:20:cf:66:d1:a3:01:a8:1a:
1c:95:76:3f:21:b5:c3:43:64:e0:6d:f2:45:c3:89:
85:05:4f:5a:cd:5c:5c:08:c1:af:77:cf:e9:df:72:
1d:cc:51:b5:2d:28:68:5c:c5:32:1e:24:28:83:79:
3a:ac:42:4d:d2:95:3d:67:04:1a:00:46:35:8e:b5:
78:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A8:67:8A:0A:88:9A:E3:F2:5F:B8:35:DA:A6:B0:0A:A4:22:2B:DD
X509v3 Authority Key Identifier:
keyid:36:BD:4A:38:2D:AE:2B:E5:CB:98:B3:5E:5A:04:8D:03:B4:CC:BE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nr1KOC2uK-XLmLNeWgSNA7TMvis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e74f5f-75c5-4a75-98b9-9fecbd25d434/1/UqhnigqImuPyX7g12qawCqQiK90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e74f5f-75c5-4a75-98b9-9fecbd25d434/1/Nr1KOC2uK-XLmLNeWgSNA7TMvis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.208.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:58:0d:64:0e:5f:b3:8e:b8:41:d2:73:b5:26:b4:0f:67:1d:
16:2f:f4:f1:c6:ef:3d:b6:af:8d:12:1f:5d:7e:83:0b:9b:60:
ee:a8:6b:03:a1:aa:41:46:c1:d2:d1:b2:65:3b:98:b2:2d:23:
83:e1:2e:90:44:47:3a:91:bf:d5:5d:4c:2a:68:6c:8e:b2:70:
50:b2:f0:b0:90:a6:e4:d6:fc:98:30:c6:63:97:93:4e:a4:68:
a7:9c:ed:05:89:81:19:a6:19:fe:5f:62:af:57:0d:17:7a:35:
aa:ad:c9:06:6b:7d:cc:71:7f:98:8b:09:1b:75:d8:81:c1:b5:
33:52:57:23:af:13:d8:43:24:27:ea:35:0d:7c:20:ea:44:d0:
2d:37:52:9a:33:b7:6b:62:41:5b:59:80:0a:59:37:48:e2:5e:
f3:f9:5a:46:bd:00:26:7b:b3:ca:e9:0f:c2:ee:e2:d7:78:2f:
cc:0d:b2:c7:7d:00:07:2d:93:00:fe:a5:30:99:ab:96:7d:4c:
35:81:0f:95:50:96:44:0d:49:11:f3:fc:b1:5c:a7:84:20:27:
64:da:f7:d7:97:50:ac:6f:1a:a5:fb:e6:ec:34:80:f4:08:6c:
bb:64:51:43:6b:7d:d4:22:b4:9c:01:05:f4:c7:13:dd:a4:65:
31:71:91:f6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd52kjyhqosl0yydV7ql4goMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YmQ0YTM4MmRhZTJiZTVjYjk4YjM1ZTVhMDQ4ZDAzYjRj
Y2JlMmIwHhcNMjMwNDEzMDkwMjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmE4Njc4YTBhODg5YWUzZjI1ZmI4MzVkYWE2YjAwYWE0MjIyYmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDvMprN0RDYf9gNboy2tyx0QDDLL
GxYmglfO8z00yrS0uicj00rXwq8AaZDONhmo2UJ1Bn+d4pEX1ZjpocNkBxqk5jMH
lnP4EvEWHxsJjXydBU/T0Pv6I80lzWvoCLe1eTs96TIgkrnJXkcQiMaWi9pNHaWv
GTc8MlkouJYOuGEFaNzTzYMji3QE9Vq9n0zvzjYMNclU4eTa0rc6fvsAsdCV4894
2P5fT0ocVIl/zL41uorAFh62uhyGIM9m0aMBqBoclXY/IbXDQ2TgbfJFw4mFBU9a
zVxcCMGvd8/p33IdzFG1LShoXMUyHiQog3k6rEJN0pU9ZwQaAEY1jrV4SQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFKoZ4oKiJrj8l+4NdqmsAqkIivdMB8GA1UdIwQY
MBaAFDa9Sjgtrivly5izXloEjQO0zL4rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnIxS09DMnVLLVhMbUxOZVdnU05BN1RNdmlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9lNzRmNWYtNzVjNS00YTc1LTk4Yjkt
OWZlY2JkMjVkNDM0LzEvVXFobmlncUltdVB5WDdnMTJxYXdDcVFpSzkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9lNzRmNWYtNzVjNS00YTc1LTk4YjktOWZlY2JkMjVkNDM0
LzEvTnIxS09DMnVLLVhMbUxOZVdnU05BN1RNdmlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudPQMA0G
CSqGSIb3DQEBCwUAA4IBAQBcWA1kDl+zjrhB0nO1JrQPZx0WL/Txxu89tq+NEh9d
foMLm2DuqGsDoapBRsHS0bJlO5iyLSOD4S6QREc6kb/VXUwqaGyOsnBQsvCwkKbk
1vyYMMZjl5NOpGinnO0FiYEZphn+X2KvVw0XejWqrckGa33McX+YiwkbddiBwbUz
UlcjrxPYQyQn6jUNfCDqRNAtN1KaM7drYkFbWYAKWTdI4l7z+VpGvQAme7PK6Q/C
7uLXeC/MDbLHfQAHLZMA/qUwmauWfUw1gQ+VUJZEDUkR8/yxXKeEICdk2vfXl1Cs
bxql++bsNID0CGy7ZFFDa33UIrScAQX0xxPdpGUxcZH2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org