Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uJv38970-WH1ZsTQg3MHYo57Ev8.roa
File: uJv38970-WH1ZsTQg3MHYo57Ev8.roa (raw, json)
Hash identifier: x87GNdWhwPdWZSX92ZeRJevh4+3afqH8np7CSYBanJU=
Subject key identifier: B8:9B:F7:F3:DE:F4:F9:61:F5:66:C4:D0:83:73:07:62:8E:7B:12:FF
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 01856C1393C7142AB5B0B5AA882EBEC1424B
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uJv38970-WH1ZsTQg3MHYo57Ev8.roa
Signing time: Sun 01 Jan 2023 06:45:00 +0000
ROA not before: Sun 01 Jan 2023 06:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51740
IP address blocks: 95.170.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:93:c7:14:2a:b5:b0:b5:aa:88:2e:be:c1:42:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 06:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b89bf7f3def4f961f566c4d0837307628e7b12ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d3:7e:57:f7:64:b0:58:37:dc:f8:35:13:fc:
20:d5:79:79:a1:11:60:55:ae:ed:5f:e7:16:d7:9e:
d9:62:be:49:b2:26:3a:2e:a7:90:a1:e3:a1:99:69:
12:9b:99:6a:29:41:b8:b0:34:a4:28:78:61:63:1a:
de:49:7a:e7:0e:01:80:55:30:ad:db:94:9c:94:83:
80:8c:83:b6:58:74:35:ed:91:f7:91:22:50:d7:a1:
60:50:f6:b2:90:2e:97:e1:02:da:59:e3:83:f5:2f:
70:35:8c:a4:7d:d1:f6:a1:6b:d8:0c:6b:68:d6:02:
ac:36:2a:5f:23:b4:ce:fd:dc:c1:76:3a:04:7d:05:
e6:5e:f2:0d:ab:40:1d:d2:ab:43:38:2c:53:cb:a7:
c8:f4:3b:28:73:09:0d:78:5e:37:52:d7:cf:04:75:
f9:53:94:f8:8e:d3:dc:62:e6:09:e0:f0:e8:be:03:
c3:05:f1:d4:4e:8c:10:c6:66:a2:71:ff:9a:15:d8:
35:e0:12:89:0b:3a:79:9a:76:74:7e:7e:90:74:8b:
4b:c3:a1:eb:55:95:c1:a1:4b:24:03:d3:8a:6a:82:
5c:20:15:de:bd:96:15:bf:5f:c8:a3:a9:24:87:30:
fd:14:a0:ed:c6:2e:b9:d3:cf:9a:88:ef:76:51:59:
b7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:9B:F7:F3:DE:F4:F9:61:F5:66:C4:D0:83:73:07:62:8E:7B:12:FF
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/uJv38970-WH1ZsTQg3MHYo57Ev8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.170.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:91:2b:51:c3:8f:4e:6a:3e:02:a2:14:21:0f:da:be:89:ee:
27:45:cf:42:02:eb:79:7c:7c:45:e2:31:20:c6:b1:b5:ef:6d:
e4:09:f7:a2:bc:5f:be:d5:14:c5:3f:01:a4:03:c7:71:db:77:
fd:57:bf:e2:57:35:dd:29:dd:99:94:21:01:87:95:03:0b:0b:
f5:cf:59:cb:27:8c:10:3b:ab:42:fa:5a:4d:80:22:08:38:4d:
56:cf:61:f3:f0:bf:fc:9f:81:e2:00:27:86:bf:27:bf:4d:41:
c1:43:53:8c:52:b6:8c:dc:b1:85:82:f0:47:22:72:f5:06:14:
46:7c:cd:1d:a3:01:bf:a0:b6:6e:50:66:d3:e0:2c:0d:b2:64:
e1:ad:bb:d2:a6:d4:95:10:d4:8e:36:c0:1d:a2:04:a3:00:18:
dc:6c:52:ec:a2:06:de:f0:7d:c9:9c:9e:d7:cd:bf:1a:ba:c4:
a2:70:f6:e2:a0:e9:ae:6d:dc:9c:03:a3:b5:c4:e8:01:71:b0:
7e:63:40:01:d3:8a:29:33:69:51:35:3e:92:86:93:c6:88:7c:
c5:36:49:7b:30:5b:28:18:48:59:89:75:93:c7:ad:e4:e6:fc:
37:1b:7e:83:7a:02:40:2b:8e:7b:32:cd:7e:0b:87:73:19:96:
f0:e1:3a:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsE5PHFCq1sLWqiC6+wUJLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NTNlNjVhMzA4N2I0Y2E4NWM4ODAyYjYwZmYwZjAyYjQx
MDZkOTcwHhcNMjMwMTAxMDY0NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODliZjdmM2RlZjRmOTYxZjU2NmM0ZDA4MzczMDc2MjhlN2IxMmZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9N+V/dksFg33Pg1E/wg1Xl5oRFg
Va7tX+cW157ZYr5JsiY6LqeQoeOhmWkSm5lqKUG4sDSkKHhhYxreSXrnDgGAVTCt
25SclIOAjIO2WHQ17ZH3kSJQ16FgUPaykC6X4QLaWeOD9S9wNYykfdH2oWvYDGto
1gKsNipfI7TO/dzBdjoEfQXmXvINq0Ad0qtDOCxTy6fI9DsocwkNeF43UtfPBHX5
U5T4jtPcYuYJ4PDovgPDBfHUTowQxmaicf+aFdg14BKJCzp5mnZ0fn6QdItLw6Hr
VZXBoUskA9OKaoJcIBXevZYVv1/Io6kkhzD9FKDtxi6508+aiO92UVm3wwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLib9/Pe9Plh9WbE0INzB2KOexL/MB8GA1UdIwQY
MBaAFFhT5lowh7TKhciAK2D/DwK0EG2XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQt
ZTE4NjAyNzM5Y2Q1LzEvdUp2Mzg5NzAtV0gxWnNUUWczTUhZbzU3RXY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi82YWZkMWUtY2I3ZS00ZTZlLWE4YTQtZTE4NjAyNzM5Y2Q1
LzEvV0ZQbVdqQ0h0TXFGeUlBcllQOFBBclFRYlpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX6poMA0G
CSqGSIb3DQEBCwUAA4IBAQCLkStRw49Oaj4CohQhD9q+ie4nRc9CAut5fHxF4jEg
xrG1723kCfeivF++1RTFPwGkA8dx23f9V7/iVzXdKd2ZlCEBh5UDCwv1z1nLJ4wQ
O6tC+lpNgCIIOE1Wz2Hz8L/8n4HiACeGvye/TUHBQ1OMUraM3LGFgvBHInL1BhRG
fM0dowG/oLZuUGbT4CwNsmThrbvSptSVENSONsAdogSjABjcbFLsogbe8H3JnJ7X
zb8ausSicPbioOmubdycA6O1xOgBcbB+Y0AB04opM2lRNT6ShpPGiHzFNkl7MFso
GEhZiXWTx63k5vw3G36DegJAK457Ms1+C4dzGZbw4Tqj
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:56 2024 by rpki-client on console-ams.rpki-client.org