Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/uVx46JEpoRldUvTRLfuhEfs2dCI.roa
File: uVx46JEpoRldUvTRLfuhEfs2dCI.roa (raw, json)
Hash identifier: 0SwqkFn0D/m36/z1MttRKAI5usUciZUE2ukrSWlGKyo=
Subject key identifier: B9:5C:78:E8:91:29:A1:19:5D:52:F4:D1:2D:FB:A1:11:FB:36:74:22
Certificate issuer: /CN=42c30371986df5d564ee67074717b66a02ff5712
Certificate serial: 01856FD51C7B620AE1076A456080DBF0AF68
Authority key identifier: 42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/uVx46JEpoRldUvTRLfuhEfs2dCI.roa
Signing time: Mon 02 Jan 2023 00:15:15 +0000
ROA not before: Mon 02 Jan 2023 00:15:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57728
IP address blocks: 188.122.192.0/19 maxlen: 19
2a0a:b6c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:1c:7b:62:0a:e1:07:6a:45:60:80:db:f0:af:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c30371986df5d564ee67074717b66a02ff5712
Validity
Not Before: Jan 2 00:15:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b95c78e89129a1195d52f4d12dfba111fb367422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:b8:78:e2:c1:c6:3c:ae:11:41:cc:1b:5a:
b4:f2:d1:4d:1e:f0:ce:d0:6b:9a:70:05:b6:df:b1:
f6:ea:c0:85:7c:04:4d:b9:e0:56:d7:2f:b7:c0:b9:
ef:bd:e4:ef:12:22:cf:db:50:c6:08:16:0b:1e:a4:
a3:e0:25:c2:b7:b6:a5:8c:f5:13:f8:58:49:f5:11:
0b:af:87:e2:9c:de:98:03:ff:c4:f1:c9:b1:9d:ca:
52:d0:8e:8a:db:e3:ba:db:6b:cf:1a:d7:32:6f:57:
2a:42:06:c1:43:9c:66:3c:47:ed:60:f8:36:59:25:
1f:d1:3f:5d:55:78:28:d5:38:b6:93:b8:28:5c:ed:
29:aa:e3:59:99:06:4b:ab:d8:cc:4c:10:82:aa:11:
2e:d8:19:0a:c1:b7:02:82:47:18:81:ba:f2:b0:b1:
46:6b:b0:46:17:49:9f:8c:cb:6c:4c:97:49:2c:38:
54:97:a8:bc:c6:2e:c8:d7:9d:bf:a8:00:89:f2:28:
f5:a4:3b:7f:67:99:eb:b6:2d:ba:7f:ff:04:c7:4c:
de:0a:92:04:e1:a1:6e:68:58:21:49:98:84:d4:cd:
ac:33:ff:cd:8b:ab:ea:18:b4:13:7f:73:81:04:65:
20:7f:c1:ca:26:84:df:af:af:5a:c8:98:99:29:b7:
5a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5C:78:E8:91:29:A1:19:5D:52:F4:D1:2D:FB:A1:11:FB:36:74:22
X509v3 Authority Key Identifier:
keyid:42:C3:03:71:98:6D:F5:D5:64:EE:67:07:47:17:B6:6A:02:FF:57:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsMDcZht9dVk7mcHRxe2agL_VxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/uVx46JEpoRldUvTRLfuhEfs2dCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8ba0dd-2fbb-4a6f-9a37-c2454ce28d48/1/QsMDcZht9dVk7mcHRxe2agL_VxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.122.192.0/19
IPv6:
2a0a:b6c0::/32
Signature Algorithm: sha256WithRSAEncryption
8c:b0:81:70:81:a1:16:35:29:92:99:7f:1d:3c:56:20:13:21:
00:a3:76:f0:cc:2c:63:93:f7:c1:b7:52:b3:83:07:c0:f9:06:
58:f1:f4:d8:f3:8c:de:fd:a1:c2:f3:36:15:84:69:fe:84:56:
83:a6:cb:4d:ca:af:cf:59:c6:b2:b0:d5:76:e2:7a:96:1c:02:
c7:84:57:7f:b6:6d:18:37:a8:b7:39:40:8a:e7:46:0a:a9:db:
32:96:e5:43:e5:e2:76:90:5f:07:80:ee:bd:c7:12:01:63:f8:
9d:6e:ac:5d:93:4b:17:4b:48:39:18:8b:1f:54:c5:db:09:da:
c6:d1:57:fd:d9:70:9d:ca:30:8a:7e:fc:86:cd:bc:c8:4b:28:
2a:0c:0d:4f:c3:58:78:45:47:8d:0d:5e:64:26:1a:03:75:4d:
fd:c6:82:98:1a:3e:a9:8f:fb:01:28:b8:df:2d:2c:da:3f:5c:
1c:60:2c:dc:a9:75:4a:21:11:fa:36:5f:b8:c9:ac:d6:3a:67:
46:ae:77:d9:00:75:c8:97:b6:6a:b7:52:96:46:36:a9:da:af:
26:13:d6:73:81:c8:3c:5f:5f:ca:18:8e:53:40:f0:33:a5:1a:
1c:5c:c4:d5:81:c8:92:e9:ae:5b:8d:ad:c1:bf:ef:80:4e:1c:
f1:01:17:2b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVv1Rx7YgrhB2pFYIDb8K9oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzMwMzcxOTg2ZGY1ZDU2NGVlNjcwNzQ3MTdiNjZhMDJm
ZjU3MTIwHhcNMjMwMTAyMDAxNTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTVjNzhlODkxMjlhMTE5NWQ1MmY0ZDEyZGZiYTExMWZiMzY3NDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBa4eOLBxjyuEUHMG1q08tFNHvDO
0GuacAW237H26sCFfARNueBW1y+3wLnvveTvEiLP21DGCBYLHqSj4CXCt7aljPUT
+FhJ9RELr4finN6YA//E8cmxncpS0I6K2+O622vPGtcyb1cqQgbBQ5xmPEftYPg2
WSUf0T9dVXgo1Ti2k7goXO0pquNZmQZLq9jMTBCCqhEu2BkKwbcCgkcYgbrysLFG
a7BGF0mfjMtsTJdJLDhUl6i8xi7I152/qACJ8ij1pDt/Z5nrti26f/8Ex0zeCpIE
4aFuaFghSZiE1M2sM//Ni6vqGLQTf3OBBGUgf8HKJoTfr69ayJiZKbdaXwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLlceOiRKaEZXVL00S37oRH7NnQiMB8GA1UdIwQY
MBaAFELDA3GYbfXVZO5nB0cXtmoC/1cSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNNRGNaaHQ5ZFZrN21jSFJ4ZTJhZ0xfVnhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84YmEwZGQtMmZiYi00YTZmLTlhMzct
YzI0NTRjZTI4ZDQ4LzEvdVZ4NDZKRXBvUmxkVXZUUkxmdWhFZnMyZENJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC84YmEwZGQtMmZiYi00YTZmLTlhMzctYzI0NTRjZTI4ZDQ4
LzEvUXNNRGNaaHQ5ZFZrN21jSFJ4ZTJhZ0xfVnhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQFvHrAMA0E
AgACMAcDBQAqCrbAMA0GCSqGSIb3DQEBCwUAA4IBAQCMsIFwgaEWNSmSmX8dPFYg
EyEAo3bwzCxjk/fBt1KzgwfA+QZY8fTY84ze/aHC8zYVhGn+hFaDpstNyq/PWcay
sNV24nqWHALHhFd/tm0YN6i3OUCK50YKqdsyluVD5eJ2kF8HgO69xxIBY/idbqxd
k0sXS0g5GIsfVMXbCdrG0Vf92XCdyjCKfvyGzbzISygqDA1Pw1h4RUeNDV5kJhoD
dU39xoKYGj6pj/sBKLjfLSzaP1wcYCzcqXVKIRH6Nl+4yazWOmdGrnfZAHXIl7Zq
t1KWRjap2q8mE9Zzgcg8X1/KGI5TQPAzpRocXMTVgciS6a5bja3Bv++AThzxARcr
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:41 2024 by rpki-client on console-fra.rpki-client.org