Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/uAUZHpEby_Mn3EfUG-i5swe5byE.roa
File: uAUZHpEby_Mn3EfUG-i5swe5byE.roa (raw, json)
Hash identifier: 3lsJZSgX2rvueriQpEcV1dwHTZKMO91NU85AFJjDkkQ=
Subject key identifier: B8:05:19:1E:91:1B:CB:F3:27:DC:47:D4:1B:E8:B9:B3:07:B9:6F:21
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0190DFA21361F1A20399DE3F5162E43A5B33
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/uAUZHpEby_Mn3EfUG-i5swe5byE.roa
Signing time: Tue 23 Jul 2024 12:47:39 +0000
ROA not before: Tue 23 Jul 2024 12:47:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206271
IP address blocks: 195.93.226.0/24 maxlen: 24
2a0a:280::/29 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 Jul 2024 05:18:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:df:a2:13:61:f1:a2:03:99:de:3f:51:62:e4:3a:5b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jul 23 12:47:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b805191e911bcbf327dc47d41be8b9b307b96f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e8:24:3f:b8:9b:79:11:b6:6d:8c:03:43:9a:
0f:bb:70:e5:23:90:40:f8:b1:c3:ff:dc:e5:d6:b9:
68:21:1a:5b:14:75:3a:ed:35:ce:26:81:1a:58:05:
19:3e:1c:e8:24:4d:6b:6d:04:b9:a5:47:7d:d7:d5:
41:04:ff:1f:f8:05:72:c2:04:e8:63:fc:9a:26:57:
8c:f1:ce:6c:4a:c4:ef:df:3e:4e:c8:d5:2f:fa:37:
b6:cf:b0:4c:75:b5:fa:da:1d:53:af:81:cc:06:ec:
da:c8:79:da:77:df:0c:b8:6c:ea:32:64:17:b1:62:
62:10:c8:42:12:33:d6:f0:b6:56:9d:01:d4:97:d8:
aa:d5:aa:f8:42:0f:36:20:b8:f7:12:a5:f1:7e:cd:
8a:0c:5d:59:3f:61:0b:48:d6:0f:16:4e:3f:cb:c7:
45:95:22:f8:42:17:e8:41:be:1e:28:29:78:ff:03:
94:52:dc:8a:4b:1d:50:23:7f:1f:ed:97:6d:01:d6:
33:57:f8:fb:f6:7a:fe:4e:a3:4f:72:1e:ed:58:19:
d8:9d:f7:e1:90:48:6d:ec:14:6b:35:a4:9d:49:1e:
ae:14:9d:10:cd:18:72:16:f9:ae:ef:c1:de:86:d5:
45:f8:0f:74:9b:be:ce:6b:b7:05:ce:e7:4c:28:4b:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:05:19:1E:91:1B:CB:F3:27:DC:47:D4:1B:E8:B9:B3:07:B9:6F:21
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/uAUZHpEby_Mn3EfUG-i5swe5byE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.226.0/24
IPv6:
2a0a:280::/29
Signature Algorithm: sha256WithRSAEncryption
42:af:a6:29:f8:5a:35:52:05:86:de:bd:09:f7:c9:66:36:a7:
8d:4a:a7:6e:c4:dd:7e:0e:dc:df:6e:ef:e8:e3:51:67:98:c7:
19:69:a3:a7:16:fd:59:b8:04:0c:e7:77:ef:8a:3a:46:a4:82:
58:47:3e:2d:14:24:32:61:9a:e7:43:80:42:c1:0d:1e:c0:8e:
aa:79:26:51:7a:4e:46:77:ba:78:4b:33:fb:fd:53:ab:5a:5f:
65:ad:fe:6e:51:3f:79:12:4f:bc:90:ff:bc:a7:7e:2d:1a:be:
09:2d:9e:39:3a:7b:85:ac:42:ac:4d:53:b0:a8:86:a2:62:23:
b1:81:36:fb:c4:99:df:aa:d0:b0:e3:d8:ab:ea:34:f8:7c:fb:
29:ea:51:a6:3f:74:c1:b8:d7:c0:ac:25:61:fe:e1:73:e0:af:
db:e0:b3:9e:e9:25:b6:84:ed:33:97:4e:62:c4:c2:fd:0c:9f:
97:a3:4a:79:8b:41:41:0c:78:dc:35:58:a3:98:33:89:9a:43:
05:4d:ff:79:5e:06:97:ff:93:c1:75:f5:f5:8c:0f:a6:ac:44:
d5:de:cc:23:b7:50:5e:9c:41:78:1d:b3:45:93:8b:df:7f:bf:
fa:ee:19:89:a3:69:e7:8c:fe:fa:af:c6:b0:d3:9f:59:2e:5b:
05:f4:c8:08
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZDfohNh8aIDmd4/UWLkOlszMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjQwNzIzMTI0NzM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODA1MTkxZTkxMWJjYmYzMjdkYzQ3ZDQxYmU4YjliMzA3Yjk2ZjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+gkP7ibeRG2bYwDQ5oPu3DlI5BA
+LHD/9zl1rloIRpbFHU67TXOJoEaWAUZPhzoJE1rbQS5pUd919VBBP8f+AVywgTo
Y/yaJleM8c5sSsTv3z5OyNUv+je2z7BMdbX62h1Tr4HMBuzayHnad98MuGzqMmQX
sWJiEMhCEjPW8LZWnQHUl9iq1ar4Qg82ILj3EqXxfs2KDF1ZP2ELSNYPFk4/y8dF
lSL4QhfoQb4eKCl4/wOUUtyKSx1QI38f7ZdtAdYzV/j79nr+TqNPch7tWBnYnffh
kEht7BRrNaSdSR6uFJ0QzRhyFvmu78HehtVF+A90m77Oa7cFzudMKEuL8QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLgFGR6RG8vzJ9xH1BvoubMHuW8hMB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvdUFVWkhwRWJ5X01uM0VmVUctaTVzd2U1YnlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAw13iMA0E
AgACMAcDBQMqCgKAMA0GCSqGSIb3DQEBCwUAA4IBAQBCr6Yp+Fo1UgWG3r0J98lm
NqeNSqduxN1+Dtzfbu/o41FnmMcZaaOnFv1ZuAQM53fvijpGpIJYRz4tFCQyYZrn
Q4BCwQ0ewI6qeSZRek5Gd7p4SzP7/VOrWl9lrf5uUT95Ek+8kP+8p34tGr4JLZ45
OnuFrEKsTVOwqIaiYiOxgTb7xJnfqtCw49ir6jT4fPsp6lGmP3TBuNfArCVh/uFz
4K/b4LOe6SW2hO0zl05ixML9DJ+Xo0p5i0FBDHjcNVijmDOJmkMFTf95XgaX/5PB
dfX1jA+mrETV3swjt1BenEF4HbNFk4vff7/67hmJo2nnjP76r8aw059ZLlsF9MgI
-----END CERTIFICATE-----
Generated at Fri Jul 26 07:01:29 2024 by rpki-client on console-fra.rpki-client.org