Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/UhtcWiaKqzyagyR5jBT34cwVLdc.roa
File: UhtcWiaKqzyagyR5jBT34cwVLdc.roa (raw, json)
Hash identifier: Hq5fPqdukl09WazZAWDU4F205dnItixGWbpSALjCkPI=
Subject key identifier: 52:1B:5C:5A:26:8A:AB:3C:9A:83:24:79:8C:14:F7:E1:CC:15:2D:D7
Certificate issuer: /CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Certificate serial: 018CC2DB0577D0078C09C9445D1F07A86642
Authority key identifier: 46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/UhtcWiaKqzyagyR5jBT34cwVLdc.roa
Signing time: Mon 01 Jan 2024 02:29:42 +0000
ROA not before: Mon 01 Jan 2024 02:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16303
IP address blocks: 77.95.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:05:77:d0:07:8c:09:c9:44:5d:1f:07:a8:66:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Validity
Not Before: Jan 1 02:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=521b5c5a268aab3c9a8324798c14f7e1cc152dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:19:4f:1a:5b:db:a8:27:c1:66:eb:c3:f9:
4f:d1:17:ad:4a:2a:6a:7e:7d:15:e8:66:ed:b7:b9:
c8:c2:0a:ae:3f:37:aa:6b:bc:dd:13:f6:b4:99:e4:
5b:6c:48:49:c3:3e:f7:68:f4:e0:cc:8b:76:53:e4:
90:1d:6d:66:d9:51:ef:df:6f:a1:52:84:04:74:29:
88:e3:bd:35:30:6d:ed:03:ee:2b:18:78:74:58:a7:
7b:5b:bf:a4:b7:45:2c:20:0b:f0:c8:87:cd:d6:1c:
ea:94:20:a2:16:f3:29:d0:61:a5:7a:4c:60:3e:ed:
a5:7a:c5:f0:a2:2e:cb:c5:c7:1e:f4:77:e8:81:16:
3b:94:b0:a4:67:93:0c:b3:83:d7:d7:f2:d1:e9:8f:
bb:82:42:e1:b5:c6:0d:2e:84:fd:39:c2:09:c7:82:
1c:94:cd:8e:68:d1:10:77:3c:41:24:bd:e2:4c:00:
1e:56:6e:5e:60:00:8d:ae:27:bb:1d:61:e4:25:c5:
cf:bc:44:0f:5c:02:ed:3b:39:86:20:f6:03:f0:04:
ab:10:2f:4c:fb:3b:80:52:fa:80:1c:77:83:6b:58:
ed:4c:00:93:25:a0:7d:7d:67:fc:1e:74:2c:21:4f:
a3:5e:0b:58:9d:33:ee:dc:15:08:81:67:34:7a:4d:
88:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1B:5C:5A:26:8A:AB:3C:9A:83:24:79:8C:14:F7:E1:CC:15:2D:D7
X509v3 Authority Key Identifier:
keyid:46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/UhtcWiaKqzyagyR5jBT34cwVLdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/RlxixrzUz7iTO8tqYc97Pa0vsRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:82:78:07:d7:4d:40:b3:52:cc:9e:31:f1:3f:3c:3c:c8:1a:
4b:27:5e:21:20:54:e3:18:b3:f3:07:55:52:dc:79:05:5b:9c:
96:6b:b2:7f:14:98:b1:a3:b8:5b:d3:15:1f:bb:3c:7b:65:e2:
cc:9f:81:e9:dd:1d:18:5c:52:02:68:ba:4c:a6:f3:85:60:ef:
51:6f:31:86:dc:89:e3:b3:34:8a:74:87:65:f7:6d:9f:52:a4:
a7:e1:55:aa:ce:f5:28:08:03:52:7f:aa:a5:11:1b:c4:fc:88:
82:c3:dc:e3:61:76:0b:f2:1f:b6:b7:4c:f5:48:d5:0d:a1:c7:
4c:80:60:c8:17:84:ec:6b:24:ce:3e:60:35:8a:be:dc:64:3b:
57:da:bc:04:b8:70:bb:ee:81:6d:88:d2:66:e1:bf:9c:f2:4b:
52:60:13:a4:b8:fd:d2:ff:a0:57:cb:f5:8e:e8:23:6a:9d:ef:
b8:a5:33:10:a0:f7:6c:c9:57:23:55:cc:25:5d:bf:5c:0a:cb:
a3:5a:64:0f:0b:1a:47:c6:2f:c4:61:e8:d6:60:7b:22:10:7a:
ca:95:fc:25:f0:e6:47:ad:35:8b:0b:49:dd:2b:9a:5b:49:86:
8e:02:ef:07:24:80:10:d2:f0:a8:e4:1e:49:38:40:bb:dd:38:
38:53:41:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2wV30AeMCclEXR8HqGZCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NWM2MmM2YmNkNGNmYjg5MzNiY2I2YTYxY2Y3YjNkYWQy
ZmIxMTgwHhcNMjQwMTAxMDIyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MjFiNWM1YTI2OGFhYjNjOWE4MzI0Nzk4YzE0ZjdlMWNjMTUyZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwAZTxpb26gnwWbrw/lP0RetSipq
fn0V6Gbtt7nIwgquPzeqa7zdE/a0meRbbEhJwz73aPTgzIt2U+SQHW1m2VHv32+h
UoQEdCmI4701MG3tA+4rGHh0WKd7W7+kt0UsIAvwyIfN1hzqlCCiFvMp0GGlekxg
Pu2lesXwoi7Lxcce9HfogRY7lLCkZ5MMs4PX1/LR6Y+7gkLhtcYNLoT9OcIJx4Ic
lM2OaNEQdzxBJL3iTAAeVm5eYACNrie7HWHkJcXPvEQPXALtOzmGIPYD8ASrEC9M
+zuAUvqAHHeDa1jtTACTJaB9fWf8HnQsIU+jXgtYnTPu3BUIgWc0ek2I/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFIbXFomiqs8moMkeYwU9+HMFS3XMB8GA1UdIwQY
MBaAFEZcYsa81M+4kzvLamHPez2tL7EYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmx4aXhyelV6N2lUTzh0cVljOTdQYTB2c1JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC80OWEyMjEtNjdmNS00ZWRkLWIwMGQt
NGQyYzRjNWFkMTRlLzEvVWh0Y1dpYUtxenlhZ3lSNWpCVDM0Y3dWTGRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC80OWEyMjEtNjdmNS00ZWRkLWIwMGQtNGQyYzRjNWFkMTRl
LzEvUmx4aXhyelV6N2lUTzh0cVljOTdQYTB2c1JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATV9yMA0G
CSqGSIb3DQEBCwUAA4IBAQAcgngH101As1LMnjHxPzw8yBpLJ14hIFTjGLPzB1VS
3HkFW5yWa7J/FJixo7hb0xUfuzx7ZeLMn4Hp3R0YXFICaLpMpvOFYO9RbzGG3Inj
szSKdIdl922fUqSn4VWqzvUoCANSf6qlERvE/IiCw9zjYXYL8h+2t0z1SNUNocdM
gGDIF4TsayTOPmA1ir7cZDtX2rwEuHC77oFtiNJm4b+c8ktSYBOkuP3S/6BXy/WO
6CNqne+4pTMQoPdsyVcjVcwlXb9cCsujWmQPCxpHxi/EYejWYHsiEHrKlfwl8OZH
rTWLC0ndK5pbSYaOAu8HJIAQ0vCo5B5JOEC73Tg4U0Ee
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:12 2025 by rpki-client