Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/uMeYeM8nrcNiEvRkMUMuE6IXV64.roa
File: uMeYeM8nrcNiEvRkMUMuE6IXV64.roa (raw, json)
Hash identifier: UGp/fAO7suh+Lnn/PUH8cQWhHL47brU/irVYovgEesA=
Subject key identifier: B8:C7:98:78:CF:27:AD:C3:62:12:F4:64:31:43:2E:13:A2:17:57:AE
Certificate issuer: /CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Certificate serial: 01856F94BE0CD5B5AEEAB8BECA131810A2F1
Authority key identifier: FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/uMeYeM8nrcNiEvRkMUMuE6IXV64.roa
Signing time: Sun 01 Jan 2023 23:04:56 +0000
ROA not before: Sun 01 Jan 2023 23:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1271
IP address blocks: 192.166.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:be:0c:d5:b5:ae:ea:b8:be:ca:13:18:10:a2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Validity
Not Before: Jan 1 23:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8c79878cf27adc36212f46431432e13a21757ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:14:8d:61:fa:2c:91:19:0d:68:78:73:3d:fe:
ec:f7:a6:49:78:66:5f:00:dc:9b:55:40:4a:6e:37:
39:51:7b:94:db:db:70:8e:77:1a:15:88:cc:97:c6:
4c:67:dc:6e:16:a6:74:ee:49:ea:0e:59:be:40:93:
6e:44:5a:44:8f:f4:17:e9:7e:14:33:ed:d9:c9:5d:
28:df:31:9b:02:64:5c:15:54:36:dd:3d:15:14:06:
a1:cd:bf:e5:79:fa:3a:b5:23:aa:14:f6:01:40:21:
95:8d:c6:74:ea:62:c2:59:d3:22:32:f9:56:a7:32:
fc:bf:6d:44:e5:3d:85:b8:44:ca:f9:4f:cf:3d:21:
a4:2b:88:5b:47:3d:25:80:c0:39:c4:a2:a0:eb:c3:
b0:84:b5:80:c0:26:44:85:4c:69:57:8f:c7:4f:31:
49:39:a0:54:3e:ca:c1:16:22:52:b9:be:e8:4d:94:
82:49:90:9d:ee:74:ec:0c:7a:49:94:8c:b2:a5:82:
49:e8:77:27:3d:0c:d6:df:db:70:a4:48:7f:d4:db:
50:6a:39:1f:91:c6:f5:f6:6d:18:46:fe:71:80:4f:
e3:9b:99:4e:ac:4e:fd:aa:7a:2f:69:b2:bb:9c:3d:
3b:34:4a:8e:a5:8e:0e:ae:e2:63:2b:d1:e5:15:e2:
73:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C7:98:78:CF:27:AD:C3:62:12:F4:64:31:43:2E:13:A2:17:57:AE
X509v3 Authority Key Identifier:
keyid:FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/uMeYeM8nrcNiEvRkMUMuE6IXV64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/1-tcQDnftkRnWbiMhu2cR1-dgmCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.166.48.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cb:32:aa:14:1d:c9:9b:97:94:3a:d3:11:60:c6:74:62:c9:
1d:0a:12:4b:d4:c4:21:ba:4e:38:32:7f:90:67:cf:2e:14:55:
e5:4b:bf:85:b5:f9:75:b7:4a:c0:10:b2:61:29:f8:22:c6:bb:
66:84:fb:aa:ad:1c:f6:37:a7:c3:32:35:6c:3e:e6:d1:e9:92:
2f:cd:b2:08:58:56:97:d3:98:a0:b5:be:58:5a:24:8a:e7:ca:
aa:56:d9:75:63:67:d6:63:d4:f4:7e:85:ac:4a:a6:da:e4:45:
c3:35:6b:53:99:76:ea:8b:d8:19:06:2c:c5:f7:a9:a8:55:6a:
f2:f9:51:28:24:43:2a:57:98:1d:c5:43:85:be:6d:3b:8c:65:
d0:22:58:48:02:85:18:70:22:4c:6a:87:ed:da:53:a2:5c:0a:
bc:e4:e6:5a:97:cd:d6:40:fb:8d:bb:7a:10:08:7c:62:79:ff:
c8:8c:18:ed:c4:8b:c8:40:86:6d:ba:f3:a0:c0:19:21:05:05:
b7:9a:65:5b:05:4d:a3:79:f2:49:9f:48:37:fc:d4:d6:97:b8:
9d:8a:09:e1:6b:27:b6:13:c7:8a:37:9c:de:06:5a:97:5f:19:
a5:07:09:42:98:6f:8d:c2:a5:ee:09:b3:73:3e:69:1a:aa:5e:
8d:74:29:63
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVvlL4M1bWu6ri+yhMYEKLxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDcxMDBlNzdlZDkxMTlkNjZlMjMyMWJiNjcxMWQ3ZTc2
MDk4MmIwHhcNMjMwMTAxMjMwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGM3OTg3OGNmMjdhZGMzNjIxMmY0NjQzMTQzMmUxM2EyMTc1N2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BSNYfoskRkNaHhzPf7s96ZJeGZf
ANybVUBKbjc5UXuU29twjncaFYjMl8ZMZ9xuFqZ07knqDlm+QJNuRFpEj/QX6X4U
M+3ZyV0o3zGbAmRcFVQ23T0VFAahzb/lefo6tSOqFPYBQCGVjcZ06mLCWdMiMvlW
pzL8v21E5T2FuETK+U/PPSGkK4hbRz0lgMA5xKKg68OwhLWAwCZEhUxpV4/HTzFJ
OaBUPsrBFiJSub7oTZSCSZCd7nTsDHpJlIyypYJJ6HcnPQzW39twpEh/1NtQajkf
kcb19m0YRv5xgE/jm5lOrE79qnovabK7nD07NEqOpY4OruJjK9HlFeJzkQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFLjHmHjPJ63DYhL0ZDFDLhOiF1euMB8GA1UdIwQY
MBaAFPrXEA537ZEZ1m4jIbtnEdfnYJgrMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10Y1FEbmZ0a1JuV2JpTWh1MmNSMS1kZ21Dcy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2UvMDFkNDExLWQ5MTUtNDI3Ny04ZmUy
LTc2YjBkZGEyYmYzZS8xL3VNZVllTThucmNOaUV2UmtNVU11RTZJWFY2NC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvM2UvMDFkNDExLWQ5MTUtNDI3Ny04ZmUyLTc2YjBkZGEyYmYz
ZS8xLzEtdGNRRG5mdGtSbldiaU1odTJjUjEtZGdtQ3MuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADApjAw
DQYJKoZIhvcNAQELBQADggEBAHHLMqoUHcmbl5Q60xFgxnRiyR0KEkvUxCG6Tjgy
f5Bnzy4UVeVLv4W1+XW3SsAQsmEp+CLGu2aE+6qtHPY3p8MyNWw+5tHpki/NsghY
VpfTmKC1vlhaJIrnyqpW2XVjZ9Zj1PR+haxKptrkRcM1a1OZduqL2BkGLMX3qahV
avL5USgkQypXmB3FQ4W+bTuMZdAiWEgChRhwIkxqh+3aU6JcCrzk5lqXzdZA+427
ehAIfGJ5/8iMGO3Ei8hAhm2686DAGSEFBbeaZVsFTaN58kmfSDf81NaXuJ2KCeFr
J7YTx4o3nN4GWpdfGaUHCUKYb43Cpe4Js3M+aRqqXo10KWM=
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:29 2024 by rpki-client on console-ams.rpki-client.org