Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/uq0wsiBVUegJ1hWE1jM0656bRCQ.roa
File: uq0wsiBVUegJ1hWE1jM0656bRCQ.roa (raw, json)
Hash identifier: ttkUCqyt82+9hFCIbYjBPeB+Bwvp+ioSINWXGHGy/tA=
Subject key identifier: BA:AD:30:B2:20:55:51:E8:09:D6:15:84:D6:33:34:EB:9E:9B:44:24
Certificate issuer: /CN=d8454dc97809cfff2f2a9ab9fdb0a6fd336103ce
Certificate serial: 018570F079DE4460E55279C1269132552F2F
Authority key identifier: D8:45:4D:C9:78:09:CF:FF:2F:2A:9A:B9:FD:B0:A6:FD:33:61:03:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2EVNyXgJz_8vKpq5_bCm_TNhA84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/uq0wsiBVUegJ1hWE1jM0656bRCQ.roa
Signing time: Mon 02 Jan 2023 05:24:45 +0000
ROA not before: Mon 02 Jan 2023 05:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 193.163.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:79:de:44:60:e5:52:79:c1:26:91:32:55:2f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8454dc97809cfff2f2a9ab9fdb0a6fd336103ce
Validity
Not Before: Jan 2 05:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=baad30b2205551e809d61584d63334eb9e9b4424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:37:8e:3c:41:b3:c8:b3:6d:33:f4:c3:4d:6b:
af:60:1c:fe:96:44:cb:14:81:95:d1:d6:1f:a7:fd:
73:40:90:d2:58:bb:39:a3:5f:b5:66:71:10:7a:e2:
a9:0d:5d:d8:ad:14:43:f5:1a:09:5b:6b:8a:29:7d:
cf:b5:71:b6:f8:b9:b4:d3:66:c2:95:1c:dd:fd:5d:
2e:9a:95:5b:03:2d:37:da:cd:9b:84:01:d1:e2:b1:
0f:ac:37:3a:81:c7:6d:95:ee:c8:7b:e6:e7:53:5c:
ff:80:5f:57:ee:29:13:a6:c2:19:f9:c9:d8:a1:a0:
87:3d:c1:7d:5e:4a:f4:8e:65:fd:58:30:26:73:ab:
b5:2a:8e:b9:6a:c4:64:2e:fc:b6:b7:33:7c:3a:b8:
37:9a:0a:bb:4f:d0:47:54:5a:92:fa:d9:42:f6:67:
56:8e:cb:ea:fc:fb:56:d1:e9:f0:37:f5:e5:c1:c7:
35:34:de:22:6a:e5:f8:f1:8f:5f:06:f8:90:f2:4b:
8d:69:41:1a:44:c4:5e:d9:60:45:91:98:f5:0e:20:
2c:ae:ab:88:f1:79:b2:31:bc:ff:0c:05:34:8f:e9:
f0:2c:fb:54:a5:d2:ab:15:da:57:55:a9:55:dc:70:
06:11:76:bf:50:33:31:6e:a1:43:6a:9e:f6:82:fa:
c1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AD:30:B2:20:55:51:E8:09:D6:15:84:D6:33:34:EB:9E:9B:44:24
X509v3 Authority Key Identifier:
keyid:D8:45:4D:C9:78:09:CF:FF:2F:2A:9A:B9:FD:B0:A6:FD:33:61:03:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2EVNyXgJz_8vKpq5_bCm_TNhA84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/uq0wsiBVUegJ1hWE1jM0656bRCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/923ae4-af95-4a72-9c1f-6f97cfe54540/1/2EVNyXgJz_8vKpq5_bCm_TNhA84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.195.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a1:e6:c5:e7:96:d8:af:c9:27:63:4a:31:dd:e5:9d:39:23:
c5:5a:a6:6d:e0:b0:f3:e2:3e:d9:e4:f0:d7:aa:10:44:08:4c:
f9:0f:2a:0b:37:74:a6:ed:0b:16:61:33:90:f2:12:71:cc:f1:
ee:1a:a6:5b:f1:f6:e6:e4:aa:75:4e:40:a1:fc:fb:e4:6d:df:
97:8e:50:1c:a1:ea:b1:64:5c:75:37:c6:59:a7:53:56:cb:8c:
ec:fb:e5:05:6d:93:05:35:2d:92:0e:5e:ac:60:bb:98:a3:fd:
80:c0:7b:8c:73:56:e8:a0:e4:8e:d4:ee:fe:3c:35:de:44:98:
63:a3:00:53:83:12:cc:46:31:a9:e1:2d:68:a6:0a:19:ac:74:
9a:f4:7c:fb:82:61:df:ca:73:63:ec:4b:07:c8:e6:53:ce:83:
f9:53:5e:4b:6b:b7:ef:79:aa:e2:b2:d0:3d:72:22:d4:ce:42:
35:99:38:46:0b:78:55:9c:d6:e8:eb:33:9f:e7:29:00:c2:75:
cb:4a:85:ad:31:bb:a6:86:73:79:47:ae:de:af:43:e4:6f:d5:
0b:15:fb:56:83:b7:9b:82:68:a9:ac:c3:f1:df:0d:32:db:6d:
e5:39:38:ae:c9:b3:18:56:ef:51:5f:9e:fb:ff:2c:d0:ba:c2:
27:0b:f1:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8HneRGDlUnnBJpEyVS8vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NDU0ZGM5NzgwOWNmZmYyZjJhOWFiOWZkYjBhNmZkMzM2
MTAzY2UwHhcNMjMwMTAyMDUyNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWFkMzBiMjIwNTU1MWU4MDlkNjE1ODRkNjMzMzRlYjllOWI0NDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljeOPEGzyLNtM/TDTWuvYBz+lkTL
FIGV0dYfp/1zQJDSWLs5o1+1ZnEQeuKpDV3YrRRD9RoJW2uKKX3PtXG2+Lm002bC
lRzd/V0umpVbAy032s2bhAHR4rEPrDc6gcdtle7Ie+bnU1z/gF9X7ikTpsIZ+cnY
oaCHPcF9Xkr0jmX9WDAmc6u1Ko65asRkLvy2tzN8Org3mgq7T9BHVFqS+tlC9mdW
jsvq/PtW0enwN/Xlwcc1NN4iauX48Y9fBviQ8kuNaUEaRMRe2WBFkZj1DiAsrquI
8XmyMbz/DAU0j+nwLPtUpdKrFdpXValV3HAGEXa/UDMxbqFDap72gvrBqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLqtMLIgVVHoCdYVhNYzNOuem0QkMB8GA1UdIwQY
MBaAFNhFTcl4Cc//Lyqauf2wpv0zYQPOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkVWTnlYZ0p6Xzh2S3BxNV9iQ21fVE5oQTg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi85MjNhZTQtYWY5NS00YTcyLTljMWYt
NmY5N2NmZTU0NTQwLzEvdXEwd3NpQlZVZWdKMWhXRTFqTTA2NTZiUkNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi85MjNhZTQtYWY5NS00YTcyLTljMWYtNmY5N2NmZTU0NTQw
LzEvMkVWTnlYZ0p6Xzh2S3BxNV9iQ21fVE5oQTg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaPDMA0G
CSqGSIb3DQEBCwUAA4IBAQB7oebF55bYr8knY0ox3eWdOSPFWqZt4LDz4j7Z5PDX
qhBECEz5DyoLN3Sm7QsWYTOQ8hJxzPHuGqZb8fbm5Kp1TkCh/Pvkbd+XjlAcoeqx
ZFx1N8ZZp1NWy4zs++UFbZMFNS2SDl6sYLuYo/2AwHuMc1booOSO1O7+PDXeRJhj
owBTgxLMRjGp4S1opgoZrHSa9Hz7gmHfynNj7EsHyOZTzoP5U15La7fvearistA9
ciLUzkI1mThGC3hVnNbo6zOf5ykAwnXLSoWtMbumhnN5R67er0Pkb9ULFftWg7eb
gmiprMPx3w0y223lOTiuybMYVu9RX577/yzQusInC/E0
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org