Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/utm3yhkQa-hrksEAhQ3daXK4aeM.roa
File: utm3yhkQa-hrksEAhQ3daXK4aeM.roa (raw, json)
Hash identifier: JvxzueH1pu9hcf6+Z/YgP99hahEa5QyTccl4UeDptd4=
Subject key identifier: BA:D9:B7:CA:19:10:6B:E8:6B:92:C1:00:85:0D:DD:69:72:B8:69:E3
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 018B27EF4C0179C41B3B284D7E67912FA051
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/utm3yhkQa-hrksEAhQ3daXK4aeM.roa
Signing time: Fri 13 Oct 2023 07:27:55 +0000
ROA not before: Fri 13 Oct 2023 07:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 193.160.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:27:ef:4c:01:79:c4:1b:3b:28:4d:7e:67:91:2f:a0:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Oct 13 07:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bad9b7ca19106be86b92c100850ddd6972b869e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:83:4d:e7:7c:d0:c0:ed:3d:17:90:60:7d:2a:
ce:91:8a:b7:81:89:73:34:59:59:b0:07:e5:ee:a2:
29:6e:44:d7:06:a9:87:4b:03:50:b3:9f:3a:13:9e:
ff:3e:bc:f5:2b:c4:b9:82:6b:bf:ca:10:cb:99:22:
1f:30:c4:5d:7a:a6:a0:d8:a7:da:83:9f:89:f3:c4:
e2:af:eb:7c:87:b1:6a:27:e0:80:76:0c:0a:41:14:
06:08:9d:4d:2d:91:93:3f:e7:51:fd:57:fc:b5:5c:
8a:ad:f2:0b:75:f1:92:0a:7a:79:e2:b4:26:9a:c2:
fa:64:1e:31:e6:14:77:b9:79:4d:e2:cf:d4:ff:39:
10:8f:b9:1b:55:8c:89:bc:14:fb:57:d5:5d:a8:1f:
e3:e9:eb:05:ed:dc:33:88:6c:dd:31:c6:64:ac:b2:
61:2b:a9:d8:ee:7d:29:fe:a3:4f:bf:e6:86:68:d5:
a4:3c:bf:10:28:fb:d4:14:1f:51:27:82:07:48:04:
48:6f:4f:80:24:4a:8c:6a:43:41:e6:56:2a:7c:5b:
c4:cc:2e:de:da:4d:bc:3e:ca:c2:8b:39:43:92:27:
23:84:23:d4:ea:16:cb:a1:ce:d4:ce:8c:82:ea:28:
c0:24:5b:da:7d:b2:47:34:c5:02:c2:73:6a:0f:13:
b2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D9:B7:CA:19:10:6B:E8:6B:92:C1:00:85:0D:DD:69:72:B8:69:E3
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/utm3yhkQa-hrksEAhQ3daXK4aeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.136.0/24
Signature Algorithm: sha256WithRSAEncryption
38:7a:10:a2:4d:ec:7f:a7:16:44:61:25:02:13:0b:62:ad:2c:
67:7e:20:49:90:f2:e1:c9:d0:e3:c2:4d:f8:ae:06:42:25:ac:
41:4e:9e:70:79:bc:dd:ef:c8:b8:30:27:ca:e8:2f:66:b0:83:
b6:0a:31:fb:6a:af:0a:d6:6c:9f:20:bd:02:46:17:20:02:ca:
22:24:6e:1f:6e:b6:99:11:67:d2:12:5e:89:c6:d6:47:5a:0c:
75:66:7e:22:0b:7d:a6:af:15:e4:a6:b6:65:47:e7:f5:97:30:
ce:a7:45:53:11:29:a9:cc:5d:56:7b:ee:63:cc:9f:4f:7b:df:
37:0a:d3:28:2d:59:83:c2:be:fa:38:f0:dd:e1:12:54:99:fc:
13:a1:fd:6d:c2:4b:b5:f8:4a:e9:3f:f7:ad:7e:02:13:58:20:
16:78:06:7a:41:8f:df:18:11:fb:d4:0c:79:80:53:25:dd:99:
b8:dd:9c:44:23:40:18:13:42:a9:53:c3:ae:0d:d3:ea:a4:50:
40:3e:76:5a:7a:d7:ea:27:61:7c:9f:67:f6:f4:be:1d:18:97:
04:97:37:ba:1f:f3:cb:58:4d:18:d5:c0:8d:2d:24:4e:71:5c:
e7:40:31:be:84:09:46:f9:eb:5b:ca:99:38:a3:de:8f:fa:a9:
ae:7a:85:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsn70wBecQbOyhNfmeRL6BRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZWUwZDdlNzMwODRhNDJlNGM3ZjcxMThmMjM4M2ZjZmYz
NjliYTQwHhcNMjMxMDEzMDcyNzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWQ5YjdjYTE5MTA2YmU4NmI5MmMxMDA4NTBkZGQ2OTcyYjg2OWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxINN53zQwO09F5BgfSrOkYq3gYlz
NFlZsAfl7qIpbkTXBqmHSwNQs586E57/Prz1K8S5gmu/yhDLmSIfMMRdeqag2Kfa
g5+J88Tir+t8h7FqJ+CAdgwKQRQGCJ1NLZGTP+dR/Vf8tVyKrfILdfGSCnp54rQm
msL6ZB4x5hR3uXlN4s/U/zkQj7kbVYyJvBT7V9VdqB/j6esF7dwziGzdMcZkrLJh
K6nY7n0p/qNPv+aGaNWkPL8QKPvUFB9RJ4IHSARIb0+AJEqMakNB5lYqfFvEzC7e
2k28PsrCizlDkicjhCPU6hbLoc7UzoyC6ijAJFvafbJHNMUCwnNqDxOyMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLrZt8oZEGvoa5LBAIUN3WlyuGnjMB8GA1UdIwQY
MBaAFF7uDX5zCEpC5Mf3EY8jg/z/NpukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHU0TmZuTUlTa0xreF9jUmp5T0RfUDgybTZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni83ODQzMjEtOTlkZC00NzU0LWIyMDgt
ZGRjMjY2NTY0NmNjLzEvdXRtM3loa1FhLWhya3NFQWhRM2RhWEs0YWVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni83ODQzMjEtOTlkZC00NzU0LWIyMDgtZGRjMjY2NTY0NmNj
LzEvWHU0TmZuTUlTa0xreF9jUmp5T0RfUDgybTZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaCIMA0G
CSqGSIb3DQEBCwUAA4IBAQA4ehCiTex/pxZEYSUCEwtirSxnfiBJkPLhydDjwk34
rgZCJaxBTp5webzd78i4MCfK6C9msIO2CjH7aq8K1myfIL0CRhcgAsoiJG4fbraZ
EWfSEl6JxtZHWgx1Zn4iC32mrxXkprZlR+f1lzDOp0VTESmpzF1We+5jzJ9Pe983
CtMoLVmDwr76OPDd4RJUmfwTof1twku1+ErpP/etfgITWCAWeAZ6QY/fGBH71Ax5
gFMl3Zm43ZxEI0AYE0KpU8OuDdPqpFBAPnZaetfqJ2F8n2f29L4dGJcElze6H/PL
WE0Y1cCNLSROcVznQDG+hAlG+etbypk4o96P+qmueoUM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:11 2024 by rpki-client on console-ams.rpki-client.org