Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/umhLDeV9xOo-H-ltGMeh7_TNPNA.roa
File: umhLDeV9xOo-H-ltGMeh7_TNPNA.roa (raw, json)
Hash identifier: weaUTlvALQ8ckIrwzIbNw5iNx6j6ZUqqwO1E7wxGuUU=
Subject key identifier: BA:68:4B:0D:E5:7D:C4:EA:3E:1F:E9:6D:18:C7:A1:EF:F4:CD:3C:D0
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 018CC8DE48B4061EF78378F7589B3EE1FCF1
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/umhLDeV9xOo-H-ltGMeh7_TNPNA.roa
Signing time: Tue 02 Jan 2024 06:30:59 +0000
ROA not before: Tue 02 Jan 2024 06:30:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13259
IP address blocks: 185.221.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 15:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:48:b4:06:1e:f7:83:78:f7:58:9b:3e:e1:fc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Jan 2 06:30:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba684b0de57dc4ea3e1fe96d18c7a1eff4cd3cd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:bb:5d:7c:84:6a:8d:e0:09:74:16:f0:bf:6f:
cc:53:45:ca:75:43:68:07:e0:85:1b:7a:68:30:61:
84:b6:df:c8:dd:34:79:af:40:51:24:cc:b6:7b:78:
3b:60:cb:50:03:e8:e6:38:91:20:1a:ff:71:05:66:
1d:fa:a9:a9:6d:0e:35:d1:6e:79:2c:40:60:ed:a3:
3a:6d:2d:5d:9a:65:b6:6a:cd:6c:2a:a8:2e:85:98:
12:29:76:35:8f:2c:56:4b:26:9b:d1:11:84:c3:a0:
e0:65:11:81:49:68:63:4b:9f:f3:f4:55:1a:e6:92:
81:e9:24:fb:b5:21:01:78:4d:74:a8:de:c1:c2:00:
fa:31:b5:9a:ce:3c:d0:04:e0:31:f4:08:09:e8:69:
98:47:17:c4:8c:30:b7:e6:ad:35:7d:3e:f1:9a:15:
b2:5f:2c:62:5e:30:85:7c:da:56:16:e9:3f:ff:2b:
d1:e2:b1:cc:4b:7e:7e:12:26:97:10:13:f3:1b:6f:
22:0e:fd:81:af:4b:7f:1c:be:0e:51:e0:c0:22:ea:
ff:17:1e:59:c6:4d:69:03:da:53:de:dd:ce:31:4e:
d2:ee:b8:7f:29:26:34:a7:a6:1e:fc:ae:37:fd:7d:
f2:58:7b:39:94:dd:6e:cf:30:f3:c9:72:9d:73:67:
fb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:68:4B:0D:E5:7D:C4:EA:3E:1F:E9:6D:18:C7:A1:EF:F4:CD:3C:D0
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/umhLDeV9xOo-H-ltGMeh7_TNPNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.197.0/24
Signature Algorithm: sha256WithRSAEncryption
67:d0:73:54:e3:71:cb:25:f2:ca:80:d6:59:53:95:68:7b:86:
59:6d:37:d5:5e:71:f8:80:ef:77:fe:bd:26:40:9a:a1:08:02:
9d:02:2b:48:a2:44:46:8e:0c:c6:5f:f9:54:c3:ab:db:56:c7:
a2:76:d8:f0:2d:17:29:d3:0e:77:1d:88:b0:88:1e:18:8d:c3:
f7:29:18:2d:98:85:70:34:81:aa:3f:2b:f1:6c:76:47:3a:89:
28:c9:b6:97:dd:c3:8d:ac:03:70:39:6f:52:ed:dc:59:01:ee:
1b:7a:91:b3:28:d7:ba:61:e2:51:5e:80:e7:36:a8:e7:7d:57:
bb:3b:ef:92:5e:46:1a:0c:be:7b:7c:40:62:50:89:e3:22:32:
87:8a:7d:4d:97:67:3e:ad:f6:34:3e:9a:67:f7:ca:20:1d:8a:
8f:fa:7b:c5:6a:7e:9b:a0:77:f2:ce:6a:20:59:d4:e1:91:91:
aa:bb:09:30:b6:cc:60:a0:2b:e0:8c:1e:4d:dd:9a:cb:91:a9:
56:17:a2:5b:5f:02:07:c3:d5:9d:57:bd:4c:c8:c2:cb:08:b2:
cc:22:93:6a:c3:da:fd:05:2c:03:6f:67:3e:7e:51:f2:57:3b:
12:ef:1d:fa:fa:5b:19:ca:cc:aa:31:3e:ee:cf:ce:b1:43:53:
f4:77:2d:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3ki0Bh73g3j3WJs+4fzxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOWZkYzdmYjM5ZWJiYmVkNGVlNTRmNzAzZDNhYzYxNTNk
ZGVlNjkwHhcNMjQwMTAyMDYzMDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTY4NGIwZGU1N2RjNGVhM2UxZmU5NmQxOGM3YTFlZmY0Y2QzY2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubtdfIRqjeAJdBbwv2/MU0XKdUNo
B+CFG3poMGGEtt/I3TR5r0BRJMy2e3g7YMtQA+jmOJEgGv9xBWYd+qmpbQ410W55
LEBg7aM6bS1dmmW2as1sKqguhZgSKXY1jyxWSyab0RGEw6DgZRGBSWhjS5/z9FUa
5pKB6ST7tSEBeE10qN7BwgD6MbWazjzQBOAx9AgJ6GmYRxfEjDC35q01fT7xmhWy
XyxiXjCFfNpWFuk//yvR4rHMS35+EiaXEBPzG28iDv2Br0t/HL4OUeDAIur/Fx5Z
xk1pA9pT3t3OMU7S7rh/KSY0p6Ye/K43/X3yWHs5lN1uzzDzyXKdc2f7NQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLpoSw3lfcTqPh/pbRjHoe/0zTzQMB8GA1UdIwQY
MBaAFB6f3H+znru+1O5U9wPTrGFT3e5pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgt
NjkxZmY1YjQ0YjAxLzEvdW1oTERlVjl4T28tSC1sdEdNZWg3X1ROUE5BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS80MGZkZDEtMTA5Mi00ZjY5LWI2NDgtNjkxZmY1YjQ0YjAx
LzEvSHBfY2Y3T2V1NzdVN2xUM0E5T3NZVlBkN21rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud3FMA0G
CSqGSIb3DQEBCwUAA4IBAQBn0HNU43HLJfLKgNZZU5Voe4ZZbTfVXnH4gO93/r0m
QJqhCAKdAitIokRGjgzGX/lUw6vbVseidtjwLRcp0w53HYiwiB4YjcP3KRgtmIVw
NIGqPyvxbHZHOokoybaX3cONrANwOW9S7dxZAe4bepGzKNe6YeJRXoDnNqjnfVe7
O++SXkYaDL57fEBiUInjIjKHin1Nl2c+rfY0Pppn98ogHYqP+nvFan6boHfyzmog
WdThkZGquwkwtsxgoCvgjB5N3ZrLkalWF6JbXwIHw9WdV71MyMLLCLLMIpNqw9r9
BSwDb2c+flHyVzsS7x36+lsZysyqMT7uz86xQ1P0dy2r
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:40 2025 by rpki-client