Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uBiwMkbVjvpqWe4xS7SAjv_BShw.roa
File: uBiwMkbVjvpqWe4xS7SAjv_BShw.roa (raw, json)
Hash identifier: 77qNs2yA8vc4mtcc79A/OM5u0ypx0WQm9hM/f0YqtEY=
Subject key identifier: B8:18:B0:32:46:D5:8E:FA:6A:59:EE:31:4B:B4:80:8E:FF:C1:4A:1C
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B81C112D848F4928AB42E8C70A299E682
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uBiwMkbVjvpqWe4xS7SAjv_BShw.roa
Signing time: Mon 30 Oct 2023 18:03:15 +0000
ROA not before: Mon 30 Oct 2023 18:03:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202972
IP address blocks: 94.154.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 20:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:c1:12:d8:48:f4:92:8a:b4:2e:8c:70:a2:99:e6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Oct 30 18:03:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b818b03246d58efa6a59ee314bb4808effc14a1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1f:48:fa:06:f0:7e:da:6b:f3:e5:3e:47:3f:
4d:13:d9:b6:25:30:21:09:db:8d:58:9b:77:c8:9f:
de:3a:5d:71:25:08:16:29:ad:4b:65:2c:09:ad:25:
20:40:27:61:3c:b6:a5:6a:b9:ff:66:9f:59:3f:f0:
89:7c:1f:f8:89:95:82:37:99:28:91:aa:35:a0:3a:
e4:bd:8f:10:67:74:24:31:16:bb:3a:09:ab:3b:c3:
13:7e:5b:a5:b0:21:dc:24:73:43:a1:e0:84:a3:73:
8c:44:67:5c:e2:bf:5c:16:8d:69:ce:69:c7:3a:f6:
9f:ee:cb:c6:22:66:86:86:be:87:ee:32:c1:fd:fc:
d3:d1:f0:9d:3a:68:23:7e:ed:f2:50:59:e8:d2:91:
42:4b:b1:7c:67:65:c3:1b:18:ee:5d:c2:64:89:f5:
36:14:2b:1f:c9:96:22:f0:94:83:c8:35:dd:99:ef:
f4:89:38:6a:da:78:af:36:62:de:35:29:61:c0:f8:
0b:8e:e3:b9:f6:98:08:18:e1:5c:bc:3b:0d:d2:02:
f5:13:da:bc:0e:9b:ec:f3:42:a9:bc:29:6c:c2:1e:
ef:c3:9b:b8:46:8f:a9:fa:a5:e5:cc:1a:e2:b7:0b:
ae:66:37:66:0d:3b:d7:90:34:6a:37:f3:0e:68:7a:
5d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:18:B0:32:46:D5:8E:FA:6A:59:EE:31:4B:B4:80:8E:FF:C1:4A:1C
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/uBiwMkbVjvpqWe4xS7SAjv_BShw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.37.0/24
Signature Algorithm: sha256WithRSAEncryption
95:df:b4:d8:e7:95:1a:8a:f6:55:65:3c:8d:4a:43:04:74:28:
af:d0:b9:f3:9a:01:49:b6:1d:76:46:fa:b9:85:d1:ec:51:8a:
75:84:2c:e4:e3:1f:5d:71:ec:df:ff:3f:75:39:24:04:34:e7:
97:ca:46:ee:d1:9a:80:22:8b:3b:2b:11:44:e4:6c:c6:d8:ae:
5a:a5:db:e2:2f:ca:33:e0:d8:17:12:d5:fd:e4:18:19:ae:ce:
fc:f5:eb:9e:1d:b3:77:c4:49:42:f9:9a:0a:84:d6:49:3b:e8:
83:6e:b7:a9:9b:f4:9d:68:d8:71:8b:e5:62:8e:9b:be:4d:97:
63:fd:5d:45:06:7d:16:b7:2e:0e:1c:5e:a2:04:65:26:96:e5:
38:d3:fa:4d:a5:70:2a:e7:d6:76:72:8e:27:33:01:07:8d:ad:
1d:4a:be:09:4d:39:80:d2:b6:dc:70:b8:3e:f1:bb:65:75:ae:
fa:71:3a:70:0f:ae:b8:47:32:d3:29:ab:49:fd:21:8d:87:9c:
44:b4:2c:92:cc:32:4d:42:19:96:9c:13:7e:75:a3:08:85:97:
02:d5:8c:b4:67:6d:83:17:6f:24:d7:38:a6:e4:53:fb:e7:e7:
f2:97:83:6c:83:fb:91:0a:d8:60:60:aa:25:b5:6a:9e:8e:2e:
2b:1c:3e:29
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuBwRLYSPSSirQujHCimeaCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Y2YzODg0Yjc4MDA3YTI1ZGJlMmUyY2VmMGNjNzNiNjk5
MjFmODgwHhcNMjMxMDMwMTgwMzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODE4YjAzMjQ2ZDU4ZWZhNmE1OWVlMzE0YmI0ODA4ZWZmYzE0YTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArx9I+gbwftpr8+U+Rz9NE9m2JTAh
CduNWJt3yJ/eOl1xJQgWKa1LZSwJrSUgQCdhPLalarn/Zp9ZP/CJfB/4iZWCN5ko
kao1oDrkvY8QZ3QkMRa7OgmrO8MTflulsCHcJHNDoeCEo3OMRGdc4r9cFo1pzmnH
Ovaf7svGImaGhr6H7jLB/fzT0fCdOmgjfu3yUFno0pFCS7F8Z2XDGxjuXcJkifU2
FCsfyZYi8JSDyDXdme/0iThq2nivNmLeNSlhwPgLjuO59pgIGOFcvDsN0gL1E9q8
Dpvs80KpvClswh7vw5u4Ro+p+qXlzBritwuuZjdmDTvXkDRqN/MOaHpdVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLgYsDJG1Y76alnuMUu0gI7/wUocMB8GA1UdIwQY
MBaAFOfPOIS3gAeiXb4uLO8Mxztpkh+IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgt
YTE4NGYzNTU2ZTQzLzEvdUJpd01rYlZqdnBxV2U0eFM3U0Fqdl9CU2h3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgtYTE4NGYzNTU2ZTQz
LzEvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXpolMA0G
CSqGSIb3DQEBCwUAA4IBAQCV37TY55UaivZVZTyNSkMEdCiv0LnzmgFJth12Rvq5
hdHsUYp1hCzk4x9dcezf/z91OSQENOeXykbu0ZqAIos7KxFE5GzG2K5apdviL8oz
4NgXEtX95BgZrs789eueHbN3xElC+ZoKhNZJO+iDbrepm/SdaNhxi+Vijpu+TZdj
/V1FBn0Wty4OHF6iBGUmluU40/pNpXAq59Z2co4nMwEHja0dSr4JTTmA0rbccLg+
8btlda76cTpwD664RzLTKatJ/SGNh5xEtCySzDJNQhmWnBN+daMIhZcC1Yy0Z22D
F28k1zim5FP75+fyl4Nsg/uRCthgYKoltWqeji4rHD4p
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:26 2024 by rpki-client on console-ams.rpki-client.org