Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/UqxFt7IgqmWrK4Bx_Pthl8ncpcM.roa
File: UqxFt7IgqmWrK4Bx_Pthl8ncpcM.roa (raw, json)
Hash identifier: xpI7ObJoGoP6m++Mc7xSNEGhNMOkPz+aG5DQUBgd6jw=
Subject key identifier: 52:AC:45:B7:B2:20:AA:65:AB:2B:80:71:FC:FB:61:97:C9:DC:A5:C3
Certificate issuer: /CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Certificate serial: 018570428E1C27194040B1603F7B75E75875
Authority key identifier: BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/UqxFt7IgqmWrK4Bx_Pthl8ncpcM.roa
Signing time: Mon 02 Jan 2023 02:14:47 +0000
ROA not before: Mon 02 Jan 2023 02:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44400
IP address blocks: 185.128.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:8e:1c:27:19:40:40:b1:60:3f:7b:75:e7:58:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Validity
Not Before: Jan 2 02:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ac45b7b220aa65ab2b8071fcfb6197c9dca5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:8c:62:b4:64:cb:bc:7b:b8:31:cd:02:0e:ce:
18:6f:af:eb:bd:54:38:ca:d2:25:c4:27:9b:b6:e4:
7a:04:16:10:44:d8:12:92:36:ea:25:dc:c3:20:e3:
bc:ce:56:3a:80:ae:4b:05:38:14:e5:76:9b:cc:68:
b2:78:0e:6c:f5:9b:db:a4:65:b4:30:64:9a:34:fb:
80:40:8e:6d:9a:9a:76:d9:e2:69:e6:e1:1d:89:86:
3d:c2:4a:64:44:f4:7f:69:bd:ee:2b:24:f5:cb:c8:
53:1b:87:7d:c3:90:88:fa:81:c9:8d:ba:3f:7d:0e:
4b:34:f9:c0:26:21:c2:12:19:f2:3d:36:b9:55:b3:
54:48:6b:3e:bc:ad:6b:10:2b:23:bd:91:1c:cf:80:
39:4a:88:3d:36:09:e7:c3:9a:0d:1b:09:f9:b1:58:
e8:d3:d1:18:46:18:2b:12:12:0a:99:18:dc:87:9b:
0c:ac:d7:8e:fc:28:19:48:3b:c3:bf:19:a8:37:14:
c3:43:94:01:c9:68:84:70:e0:37:f6:80:d0:ca:d7:
60:7f:78:e6:61:dc:47:8b:89:78:f6:9b:54:dd:1b:
60:34:c4:ea:19:1a:21:8b:e6:5e:93:0f:76:99:00:
ea:ad:6e:4c:cd:52:47:db:26:bd:5c:02:da:1c:68:
cd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AC:45:B7:B2:20:AA:65:AB:2B:80:71:FC:FB:61:97:C9:DC:A5:C3
X509v3 Authority Key Identifier:
keyid:BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/UqxFt7IgqmWrK4Bx_Pthl8ncpcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/vE8eawEfTWMxoSeVWlSPpQUlgKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.164.0/22
Signature Algorithm: sha256WithRSAEncryption
43:6e:63:f1:3c:34:ab:ed:a3:ae:9d:a1:94:7a:6c:0c:6e:09:
4e:c5:1a:a9:12:a9:bb:1e:3f:11:be:f7:01:c5:38:f6:79:b3:
ef:74:9c:0a:21:bb:7f:a1:01:c9:9f:cd:ac:be:c3:1f:fb:9b:
b5:35:58:52:2c:01:b1:5e:ee:f6:fa:de:2d:21:7e:7a:75:51:
ff:61:62:6d:3b:c2:01:c9:3d:54:fb:3a:0b:14:4a:f8:d6:dd:
ab:02:20:83:89:5f:5f:6f:f8:67:fe:5e:bd:1c:96:f8:1e:82:
11:16:b7:be:32:77:d4:97:a9:28:4a:36:fe:b5:68:c2:d2:b2:
94:c3:9a:55:54:7c:12:e0:4f:3b:f0:ad:ce:0a:06:7e:50:d2:
de:fd:49:fc:80:53:74:a6:4d:ff:da:f2:70:7e:21:47:cb:78:
40:c6:f0:43:c6:54:7a:1e:62:6f:38:c9:4b:54:09:77:bc:ea:
14:61:30:89:eb:d2:94:fe:36:5a:71:a4:90:65:93:2b:89:2d:
2a:96:59:b0:37:06:cd:46:a3:31:c5:c8:35:49:cc:12:1f:6a:
61:62:34:b0:bd:61:9c:09:64:44:dd:a3:18:94:db:f5:5b:68:
00:a9:cf:a8:97:e5:00:76:bc:07:ba:23:e5:e0:c4:32:ed:8a:
c6:3f:ef:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQo4cJxlAQLFgP3t151h1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNGYxZTZiMDExZjRkNjMzMWExMjc5NTVhNTQ4ZmE1MDUy
NTgwYTUwHhcNMjMwMTAyMDIxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmFjNDViN2IyMjBhYTY1YWIyYjgwNzFmY2ZiNjE5N2M5ZGNhNWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioxitGTLvHu4Mc0CDs4Yb6/rvVQ4
ytIlxCebtuR6BBYQRNgSkjbqJdzDIOO8zlY6gK5LBTgU5XabzGiyeA5s9ZvbpGW0
MGSaNPuAQI5tmpp22eJp5uEdiYY9wkpkRPR/ab3uKyT1y8hTG4d9w5CI+oHJjbo/
fQ5LNPnAJiHCEhnyPTa5VbNUSGs+vK1rECsjvZEcz4A5Sog9Ngnnw5oNGwn5sVjo
09EYRhgrEhIKmRjch5sMrNeO/CgZSDvDvxmoNxTDQ5QByWiEcOA39oDQytdgf3jm
YdxHi4l49ptU3RtgNMTqGRohi+Zekw92mQDqrW5MzVJH2ya9XALaHGjNlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFKsRbeyIKplqyuAcfz7YZfJ3KXDMB8GA1UdIwQY
MBaAFLxPHmsBH01jMaEnlVpUj6UFJYClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkU4ZWF3RWZUV014b1NlVldsU1BwUVVsZ0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi82NmEyMzctOWJjNS00YWJkLTliOGIt
YzU1NDc2NzU5ZDBjLzEvVXF4RnQ3SWdxbVdySzRCeF9QdGhsOG5jcGNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi82NmEyMzctOWJjNS00YWJkLTliOGItYzU1NDc2NzU5ZDBj
LzEvdkU4ZWF3RWZUV014b1NlVldsU1BwUVVsZ0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYCkMA0G
CSqGSIb3DQEBCwUAA4IBAQBDbmPxPDSr7aOunaGUemwMbglOxRqpEqm7Hj8RvvcB
xTj2ebPvdJwKIbt/oQHJn82svsMf+5u1NVhSLAGxXu72+t4tIX56dVH/YWJtO8IB
yT1U+zoLFEr41t2rAiCDiV9fb/hn/l69HJb4HoIRFre+MnfUl6koSjb+tWjC0rKU
w5pVVHwS4E878K3OCgZ+UNLe/Un8gFN0pk3/2vJwfiFHy3hAxvBDxlR6HmJvOMlL
VAl3vOoUYTCJ69KU/jZacaSQZZMriS0qllmwNwbNRqMxxcg1ScwSH2phYjSwvWGc
CWRE3aMYlNv1W2gAqc+ol+UAdrwHuiPl4MQy7YrGP+8x
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:28 2024 by rpki-client on console-ams.rpki-client.org