Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/uB1-dxTM-Xy4FQAsUSlbmuzATco.roa
File: uB1-dxTM-Xy4FQAsUSlbmuzATco.roa (raw, json)
Hash identifier: 3+CT/oGFYZVPi3grMZhR/YaeIgNsFK0XQ6kXAuGU93U=
Subject key identifier: B8:1D:7E:77:14:CC:F9:7C:B8:15:00:2C:51:29:5B:9A:EC:C0:4D:CA
Certificate issuer: /CN=064dcd0ee7014efb2e3b554fbb706384ef11d051
Certificate serial: 01856DE6471058DCA75209B109320BBD4BD0
Authority key identifier: 06:4D:CD:0E:E7:01:4E:FB:2E:3B:55:4F:BB:70:63:84:EF:11:D0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bk3NDucBTvsuO1VPu3BjhO8R0FE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/uB1-dxTM-Xy4FQAsUSlbmuzATco.roa
Signing time: Sun 01 Jan 2023 15:14:45 +0000
ROA not before: Sun 01 Jan 2023 15:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209830
IP address blocks: 193.135.122.0/24 maxlen: 24
193.135.121.0/24 maxlen: 24
193.135.123.0/24 maxlen: 24
193.135.120.0/24 maxlen: 24
193.141.24.0/24 maxlen: 24
193.141.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Jan 2023 14:55:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:47:10:58:dc:a7:52:09:b1:09:32:0b:bd:4b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064dcd0ee7014efb2e3b554fbb706384ef11d051
Validity
Not Before: Jan 1 15:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b81d7e7714ccf97cb815002c51295b9aecc04dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e1:6f:9d:f7:e7:73:4d:81:83:b7:a4:dc:b4:
95:85:71:25:c9:cb:78:24:83:d8:ed:4a:ae:f2:25:
c4:75:c1:a4:48:82:cf:cc:7a:c0:ac:c2:58:95:13:
51:ad:08:48:76:be:78:86:ea:e3:da:be:7e:ed:ad:
2f:2d:12:70:83:77:be:27:55:06:35:10:5a:f2:f3:
01:db:1f:e3:35:67:e3:c6:f5:e3:b8:77:60:d8:23:
70:4b:18:ca:f5:dd:d3:a1:44:a3:ca:2a:1d:16:32:
88:d9:75:ec:5c:99:03:5c:e7:84:72:5e:69:4c:88:
2d:18:44:a5:d9:4d:49:d6:90:39:65:6c:88:a5:f9:
bb:da:88:d1:55:e8:cc:0d:ac:9d:b7:39:c0:4e:85:
d4:10:70:94:7d:71:e5:25:55:59:20:ff:3e:23:5a:
42:2d:5d:6d:ea:dd:c6:02:c9:9f:53:b1:f1:18:7c:
96:bc:53:4e:b3:bb:e7:be:2c:23:29:68:95:8d:06:
df:a5:e9:dd:f7:b6:d5:cd:9c:69:46:08:c8:fe:80:
a5:b5:94:c3:58:be:df:9f:f3:32:32:86:0c:08:44:
13:f6:13:d8:b2:32:72:fe:55:44:76:ef:1d:c2:f4:
86:34:c1:f0:ee:c9:b2:6e:76:81:42:56:2f:00:df:
a1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:1D:7E:77:14:CC:F9:7C:B8:15:00:2C:51:29:5B:9A:EC:C0:4D:CA
X509v3 Authority Key Identifier:
keyid:06:4D:CD:0E:E7:01:4E:FB:2E:3B:55:4F:BB:70:63:84:EF:11:D0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bk3NDucBTvsuO1VPu3BjhO8R0FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/uB1-dxTM-Xy4FQAsUSlbmuzATco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/Bk3NDucBTvsuO1VPu3BjhO8R0FE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.120.0/22
193.141.23.0-193.141.24.255
Signature Algorithm: sha256WithRSAEncryption
63:1a:e4:f9:02:36:7d:12:fb:58:7a:1e:1e:52:9c:95:e8:14:
48:50:8b:e6:7c:1b:49:90:98:fa:b1:24:57:ce:df:34:76:b6:
e1:a2:32:96:e1:01:98:bd:c9:74:43:cb:25:18:d9:3a:c8:d5:
60:50:42:cf:21:e5:a8:02:7b:a1:98:e3:9f:c8:ca:e5:e6:53:
c2:fb:26:84:4c:70:6f:11:9f:36:51:8d:f2:82:9e:cd:73:f4:
e1:90:64:09:2b:e7:aa:5c:3e:3a:35:3e:6f:6a:19:a4:fa:8a:
1d:73:24:51:ab:26:01:0d:ac:b0:04:16:9e:1d:6d:99:36:46:
ee:f5:14:7b:32:30:1e:06:d1:d4:8f:7f:2d:b5:68:ec:2c:c8:
30:4f:ec:11:cf:dd:8b:69:3f:ea:30:87:47:58:b2:a1:f3:2e:
e4:27:8b:f2:03:b8:9b:34:4a:e8:9e:96:90:d0:9f:33:8a:7f:
a5:28:7b:a2:6d:4b:fa:60:e1:c7:9f:1a:16:37:86:e7:76:96:
df:91:11:dd:1e:2a:d6:05:b5:6b:44:52:ef:75:30:4b:c7:d9:
1a:d4:b7:83:fb:05:3b:63:2f:76:32:d1:e9:1a:40:bd:47:b6:
64:bb:3b:5c:d2:21:9d:c0:ef:46:d5:c3:72:2a:fc:32:b4:cc:
b6:6e:95:6f
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYVt5kcQWNynUgmxCTILvUvQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NGRjZDBlZTcwMTRlZmIyZTNiNTU0ZmJiNzA2Mzg0ZWYx
MWQwNTEwHhcNMjMwMTAxMTUxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODFkN2U3NzE0Y2NmOTdjYjgxNTAwMmM1MTI5NWI5YWVjYzA0ZGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+Fvnffnc02Bg7ek3LSVhXElyct4
JIPY7Uqu8iXEdcGkSILPzHrArMJYlRNRrQhIdr54hurj2r5+7a0vLRJwg3e+J1UG
NRBa8vMB2x/jNWfjxvXjuHdg2CNwSxjK9d3ToUSjyiodFjKI2XXsXJkDXOeEcl5p
TIgtGESl2U1J1pA5ZWyIpfm72ojRVejMDaydtznAToXUEHCUfXHlJVVZIP8+I1pC
LV1t6t3GAsmfU7HxGHyWvFNOs7vnviwjKWiVjQbfpend97bVzZxpRgjI/oCltZTD
WL7fn/MyMoYMCEQT9hPYsjJy/lVEdu8dwvSGNMHw7smybnaBQlYvAN+hswIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFLgdfncUzPl8uBUALFEpW5rswE3KMB8GA1UdIwQY
MBaAFAZNzQ7nAU77LjtVT7twY4TvEdBRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmszTkR1Y0JUdnN1TzFWUHUzQmpoTzhSMEZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9kY2IwOGMtNTUxNS00NDVjLWFkOTkt
ZmI0NzQwZmRhMjUwLzEvdUIxLWR4VE0tWHk0RlFBc1VTbGJtdXpBVGNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9kY2IwOGMtNTUxNS00NDVjLWFkOTktZmI0NzQwZmRhMjUw
LzEvQmszTkR1Y0JUdnN1TzFWUHUzQmpoTzhSMEZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCwYd4MAwD
BADBjRcDBADBjRgwDQYJKoZIhvcNAQELBQADggEBAGMa5PkCNn0S+1h6Hh5SnJXo
FEhQi+Z8G0mQmPqxJFfO3zR2tuGiMpbhAZi9yXRDyyUY2TrI1WBQQs8h5agCe6GY
45/IyuXmU8L7JoRMcG8RnzZRjfKCns1z9OGQZAkr56pcPjo1Pm9qGaT6ih1zJFGr
JgENrLAEFp4dbZk2Ru71FHsyMB4G0dSPfy21aOwsyDBP7BHP3YtpP+owh0dYsqHz
LuQni/IDuJs0SuielpDQnzOKf6Uoe6JtS/pg4cefGhY3hud2lt+REd0eKtYFtWtE
Uu91MEvH2RrUt4P7BTtjL3Yy0ekaQL1HtmS7O1zSIZ3A70bVw3Iq/DK0zLZulW8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:50 2024 by rpki-client on console-fra.rpki-client.org