Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/3Rh3SQv5jtpK-9viwV38Bw_UKCA.roa
File: 3Rh3SQv5jtpK-9viwV38Bw_UKCA.roa (raw, json)
Hash identifier: w0EgrmYnPrZXbPLlxknRLMNpCR4bwO35JNQZPUIF55s=
Subject key identifier: DD:18:77:49:0B:F9:8E:DA:4A:FB:DB:E2:C1:5D:FC:07:0F:D4:28:20
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018571F111817E8359CFAD6E0BAD2E07694F
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/3Rh3SQv5jtpK-9viwV38Bw_UKCA.roa
Signing time: Mon 02 Jan 2023 10:05:02 +0000
ROA not before: Mon 02 Jan 2023 10:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 212.116.248.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:11:81:7e:83:59:cf:ad:6e:0b:ad:2e:07:69:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Jan 2 10:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd1877490bf98eda4afbdbe2c15dfc070fd42820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b4:53:41:b6:45:b8:c6:cf:39:57:6a:fd:ff:
16:7b:3b:74:3f:24:f1:8a:a2:d5:71:e8:73:f8:23:
99:d8:25:ce:17:13:1c:6c:84:1e:6d:76:49:27:6b:
ad:d8:09:e7:e1:97:0d:cf:99:26:d6:24:6d:21:a6:
ea:9b:73:5d:fb:32:82:cc:1a:96:b6:52:e9:d1:92:
9d:e6:7c:80:0c:ed:bb:dc:4c:65:88:75:33:d7:ea:
fb:93:26:45:e7:9b:bd:f1:39:df:21:09:e0:18:41:
9a:43:46:78:ce:2e:0e:42:50:15:ca:94:18:57:17:
80:37:8a:73:aa:c4:d4:2b:f3:3e:ae:b4:5d:6f:a3:
25:b7:e1:1a:49:a9:fa:2a:f2:5b:74:fa:c8:b6:ff:
01:6e:ed:ca:5a:ab:61:a0:aa:88:cb:ff:aa:80:17:
a1:e8:63:77:ff:ac:16:d5:be:87:84:2a:ed:33:91:
7b:05:2b:4b:02:bf:a6:96:6f:63:86:22:75:29:bd:
c0:e4:ae:d7:fc:83:91:d4:5a:92:58:88:b2:30:c5:
37:16:ba:e8:02:84:7d:b5:2d:ef:d4:7d:65:e0:e5:
21:de:71:90:d3:8f:76:8f:a2:4a:db:10:28:a8:e5:
dc:3e:27:04:1d:c9:ac:50:c4:0a:1b:ff:0c:e8:cc:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:18:77:49:0B:F9:8E:DA:4A:FB:DB:E2:C1:5D:FC:07:0F:D4:28:20
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/3Rh3SQv5jtpK-9viwV38Bw_UKCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.116.248.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:f8:5e:7b:73:c1:94:fb:f0:bc:16:b6:5b:19:51:70:4e:d4:
ff:20:39:df:7a:bf:26:9f:8c:cb:ad:3e:50:55:7a:92:3d:ab:
51:34:d8:74:a8:20:df:a2:45:91:67:15:e5:ac:65:bc:3f:47:
dc:b5:1b:8c:22:ea:83:bd:5b:12:af:24:c8:17:79:f0:10:e5:
96:95:b0:35:a0:1d:c7:24:91:69:b6:a6:0b:62:30:a3:e3:26:
55:3d:f0:bb:e9:0b:b7:77:91:0a:f5:a9:f0:cb:22:5b:17:16:
bf:d1:99:ae:c9:a3:16:20:69:be:d3:8f:fe:94:10:4c:01:20:
40:9d:bc:17:cd:8b:27:3f:4b:e5:b5:a6:ff:64:24:56:f3:3b:
eb:49:3e:ae:d0:76:a1:9d:f6:c8:a5:ad:dc:7d:f1:ee:ea:c7:
9d:93:95:2b:d5:14:a2:75:f0:c4:78:31:d0:6b:3f:ed:f0:d0:
b9:be:03:30:0b:df:83:50:97:bd:c3:8b:32:5c:4c:c5:45:47:
9c:77:5e:00:6e:97:46:64:ff:b5:41:f2:b2:41:37:d5:75:b1:
3a:f7:93:2f:d7:ff:a6:49:3c:6a:c1:cb:35:a4:7f:a8:48:16:
4f:b3:4d:e6:65:5a:d5:71:b6:ee:b6:d6:dc:14:fe:b3:00:90:
54:ae:e6:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx8RGBfoNZz61uC60uB2lPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMDk4ZTQ1ZWY0YmI1ZDE4ZGJjODZjNWExMzVmNTdlYmNi
ZTAwNWQwHhcNMjMwMTAyMTAwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDE4Nzc0OTBiZjk4ZWRhNGFmYmRiZTJjMTVkZmMwNzBmZDQyODIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLRTQbZFuMbPOVdq/f8Wezt0PyTx
iqLVcehz+COZ2CXOFxMcbIQebXZJJ2ut2Ann4ZcNz5km1iRtIabqm3Nd+zKCzBqW
tlLp0ZKd5nyADO273ExliHUz1+r7kyZF55u98TnfIQngGEGaQ0Z4zi4OQlAVypQY
VxeAN4pzqsTUK/M+rrRdb6Mlt+EaSan6KvJbdPrItv8Bbu3KWqthoKqIy/+qgBeh
6GN3/6wW1b6HhCrtM5F7BStLAr+mlm9jhiJ1Kb3A5K7X/IOR1FqSWIiyMMU3Frro
AoR9tS3v1H1l4OUh3nGQ0492j6JK2xAoqOXcPicEHcmsUMQKG/8M6MxwJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN0Yd0kL+Y7aSvvb4sFd/AcP1CggMB8GA1UdIwQY
MBaAFDsJjkXvS7XRjbyGxaE19X68vgBdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3dtT1JlOUx0ZEdOdkliRm9UWDFmcnktQUYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85NTRkMzEtZjc0Yy00NjdiLTkwMTMt
ZTEyYjE2NDIxNWI5LzEvM1JoM1NRdjVqdHBLLTl2aXdWMzhCd19VS0NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi85NTRkMzEtZjc0Yy00NjdiLTkwMTMtZTEyYjE2NDIxNWI5
LzEvT3dtT1JlOUx0ZEdOdkliRm9UWDFmcnktQUYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1HT4MA0G
CSqGSIb3DQEBCwUAA4IBAQDF+F57c8GU+/C8FrZbGVFwTtT/IDnfer8mn4zLrT5Q
VXqSPatRNNh0qCDfokWRZxXlrGW8P0fctRuMIuqDvVsSryTIF3nwEOWWlbA1oB3H
JJFptqYLYjCj4yZVPfC76Qu3d5EK9anwyyJbFxa/0ZmuyaMWIGm+04/+lBBMASBA
nbwXzYsnP0vltab/ZCRW8zvrST6u0HahnfbIpa3cffHu6sedk5Ur1RSidfDEeDHQ
az/t8NC5vgMwC9+DUJe9w4syXEzFRUecd14AbpdGZP+1QfKyQTfVdbE695Mv1/+m
STxqwcs1pH+oSBZPs03mZVrVcbbuttbcFP6zAJBUruai
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-fra.rpki-client.org