Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/8e1204-4a03-4c97-a03f-97e080e2a910/1/UBHOwAoTm_bTvWr0X8Qvp-HcFRs.roa
File: UBHOwAoTm_bTvWr0X8Qvp-HcFRs.roa (raw, json)
Hash identifier: 9j6kVrVq6xxnNNadvkdzVzxoQOj5/WHa7xgFxK6wReA=
Subject key identifier: 50:11:CE:C0:0A:13:9B:F6:D3:BD:6A:F4:5F:C4:2F:A7:E1:DC:15:1B
Certificate issuer: /CN=a089c7211eb0cba0fd93ce316b389538ce1acb00
Certificate serial: 01856CE61CDDC19E53286CE4C53AE17B28AF
Authority key identifier: A0:89:C7:21:1E:B0:CB:A0:FD:93:CE:31:6B:38:95:38:CE:1A:CB:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oInHIR6wy6D9k84xaziVOM4aywA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/8e1204-4a03-4c97-a03f-97e080e2a910/1/UBHOwAoTm_bTvWr0X8Qvp-HcFRs.roa
Signing time: Sun 01 Jan 2023 10:34:58 +0000
ROA not before: Sun 01 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200852
IP address blocks: 193.239.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:1c:dd:c1:9e:53:28:6c:e4:c5:3a:e1:7b:28:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a089c7211eb0cba0fd93ce316b389538ce1acb00
Validity
Not Before: Jan 1 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5011cec00a139bf6d3bd6af45fc42fa7e1dc151b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f7:90:20:0f:a1:0a:d1:49:e0:04:eb:6a:37:
72:dc:04:d3:40:5a:16:d6:50:1a:57:ea:e1:0d:dd:
1e:07:ea:de:49:3b:c1:09:36:09:17:b7:67:3e:8f:
a9:9a:bb:40:a6:ba:97:e2:ef:c2:f6:97:b9:e0:aa:
f7:0f:69:75:6e:d3:b8:eb:9e:8a:3a:3e:16:49:73:
f8:60:8d:47:b6:a0:03:36:c7:32:88:f1:99:da:6c:
d3:0b:f3:10:c4:e9:be:29:0d:b0:18:63:18:0a:63:
7a:6c:b0:f8:7f:76:ef:ac:74:f2:ba:1e:11:d7:61:
25:8e:3e:d0:70:a1:ba:11:e6:96:66:3f:17:6e:d6:
4f:12:a9:23:b4:10:37:27:b0:4c:ee:e8:f4:84:ec:
59:c0:9b:c9:63:7e:db:48:7e:ea:9f:7f:78:b9:6c:
25:e9:5f:30:e4:91:17:f8:46:d7:f1:af:cb:4d:95:
b3:87:e6:f5:d7:a9:ff:85:e0:7c:6f:26:ab:13:25:
d2:60:00:c8:c1:c5:df:7f:54:3c:aa:6f:c3:5b:2e:
fd:d7:57:0a:7d:f5:36:9f:ed:93:e1:6c:b4:70:ec:
5d:4f:6e:8c:a9:a0:1b:ff:a5:1b:c7:70:2f:a2:65:
2a:90:7e:e2:36:b7:ee:a0:74:0b:2d:48:6d:3e:87:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:11:CE:C0:0A:13:9B:F6:D3:BD:6A:F4:5F:C4:2F:A7:E1:DC:15:1B
X509v3 Authority Key Identifier:
keyid:A0:89:C7:21:1E:B0:CB:A0:FD:93:CE:31:6B:38:95:38:CE:1A:CB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oInHIR6wy6D9k84xaziVOM4aywA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8e1204-4a03-4c97-a03f-97e080e2a910/1/UBHOwAoTm_bTvWr0X8Qvp-HcFRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/8e1204-4a03-4c97-a03f-97e080e2a910/1/oInHIR6wy6D9k84xaziVOM4aywA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.208.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:34:5d:e7:dd:04:64:5a:ff:ff:43:27:6b:84:66:9c:dd:dd:
9c:f6:a0:be:8d:10:52:30:70:9b:80:f7:83:0c:c9:45:70:5c:
62:c0:ff:20:33:5b:1a:24:e3:37:d0:0d:f3:78:b9:95:b9:d2:
98:c5:6f:3c:60:a9:04:e6:91:f1:bd:0a:e1:c2:8c:42:49:89:
63:72:c7:26:cd:46:de:e2:12:dc:e1:1a:ae:3b:7f:6d:6a:3f:
28:84:a0:91:fd:1d:75:6d:80:46:65:f6:5e:13:fb:f6:94:a9:
b4:2c:b9:f0:15:f1:3a:83:cf:fe:98:f3:dd:97:b4:b9:a5:8f:
01:a4:f7:1d:7a:ce:0f:25:9b:49:07:43:05:ad:f0:04:d0:4d:
fd:fd:15:fb:73:44:75:5d:22:7c:01:59:d7:67:64:9f:e5:c2:
06:8d:63:08:44:7c:25:46:c8:c5:ad:80:4e:25:b7:7b:12:e9:
bb:25:29:d2:fa:4f:27:5d:3d:75:f0:a8:6d:a1:0d:81:f1:f4:
f2:4a:4d:91:41:44:00:4e:2a:75:c7:10:49:b7:0e:68:f7:1b:
f6:f8:f1:b8:95:86:9d:b7:d5:23:e8:33:dd:64:d7:43:06:51:
c7:59:25:45:15:f4:2f:d8:12:5f:5b:b9:7b:6a:cc:bc:ac:c6:
23:cb:32:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5hzdwZ5TKGzkxTrheyivMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwODljNzIxMWViMGNiYTBmZDkzY2UzMTZiMzg5NTM4Y2Ux
YWNiMDAwHhcNMjMwMTAxMTAzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDExY2VjMDBhMTM5YmY2ZDNiZDZhZjQ1ZmM0MmZhN2UxZGMxNTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjfeQIA+hCtFJ4ATrajdy3ATTQFoW
1lAaV+rhDd0eB+reSTvBCTYJF7dnPo+pmrtAprqX4u/C9pe54Kr3D2l1btO4656K
Oj4WSXP4YI1HtqADNscyiPGZ2mzTC/MQxOm+KQ2wGGMYCmN6bLD4f3bvrHTyuh4R
12Eljj7QcKG6EeaWZj8XbtZPEqkjtBA3J7BM7uj0hOxZwJvJY37bSH7qn394uWwl
6V8w5JEX+EbX8a/LTZWzh+b116n/heB8byarEyXSYADIwcXff1Q8qm/DWy7911cK
ffU2n+2T4Wy0cOxdT26MqaAb/6Ubx3AvomUqkH7iNrfuoHQLLUhtPofDqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFARzsAKE5v2071q9F/EL6fh3BUbMB8GA1UdIwQY
MBaAFKCJxyEesMug/ZPOMWs4lTjOGssAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0luSElSNnd5NkQ5azg0eGF6aVZPTTRheXdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS84ZTEyMDQtNGEwMy00Yzk3LWEwM2Yt
OTdlMDgwZTJhOTEwLzEvVUJIT3dBb1RtX2JUdldyMFg4UXZwLUhjRlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS84ZTEyMDQtNGEwMy00Yzk3LWEwM2YtOTdlMDgwZTJhOTEw
LzEvb0luSElSNnd5NkQ5azg0eGF6aVZPTTRheXdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe/QMA0G
CSqGSIb3DQEBCwUAA4IBAQAtNF3n3QRkWv//QydrhGac3d2c9qC+jRBSMHCbgPeD
DMlFcFxiwP8gM1saJOM30A3zeLmVudKYxW88YKkE5pHxvQrhwoxCSYljcscmzUbe
4hLc4RquO39taj8ohKCR/R11bYBGZfZeE/v2lKm0LLnwFfE6g8/+mPPdl7S5pY8B
pPcdes4PJZtJB0MFrfAE0E39/RX7c0R1XSJ8AVnXZ2Sf5cIGjWMIRHwlRsjFrYBO
Jbd7Eum7JSnS+k8nXT118KhtoQ2B8fTySk2RQUQATip1xxBJtw5o9xv2+PG4lYad
t9Uj6DPdZNdDBlHHWSVFFfQv2BJfW7l7asy8rMYjyzIo
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:21 2024 by rpki-client on console-ams.rpki-client.org