Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UDPIai6-DCF_H_Tvf6V1cFjGR_s.roa
File: UDPIai6-DCF_H_Tvf6V1cFjGR_s.roa (raw, json)
Hash identifier: pbxVUjJCdPBK41AQDBKJ5RHpq5P6ji9EMmHHlYZy4Bo=
Subject key identifier: 50:33:C8:6A:2E:BE:0C:21:7F:1F:F4:EF:7F:A5:75:70:58:C6:47:FB
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 019423D7E0945CA0EFA515917ACC94A939EC
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UDPIai6-DCF_H_Tvf6V1cFjGR_s.roa
Signing time: Wed 01 Jan 2025 21:48:57 +0000
ROA not before: Wed 01 Jan 2025 21:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47256
IP address blocks: 212.22.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Jan 2025 07:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:e0:94:5c:a0:ef:a5:15:91:7a:cc:94:a9:39:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 21:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5033c86a2ebe0c217f1ff4ef7fa5757058c647fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2f:c1:93:cb:3f:5b:05:26:06:55:d2:2f:a1:
74:0d:5a:5e:d2:b4:53:17:af:52:73:55:63:e4:f3:
00:fe:89:24:64:37:16:e3:7e:e9:cb:65:73:bf:1f:
99:4c:47:0e:a1:bc:aa:15:28:29:43:21:97:19:6e:
94:f6:8f:5e:d7:41:91:44:07:87:d1:7f:8e:27:29:
89:57:74:c2:0b:57:eb:17:c6:a6:7e:51:2c:d7:d0:
46:47:29:43:cf:04:a3:52:24:fa:01:45:f9:69:0e:
5a:9e:8e:bd:02:40:63:e9:1f:4f:e1:08:fb:37:14:
e3:d2:a3:18:0d:56:45:a5:8a:a2:16:2f:d3:68:cd:
31:bc:4e:e8:a3:92:29:b5:3a:1e:a3:3a:53:b4:22:
07:19:b8:67:3b:a4:b4:0d:9a:a6:31:77:76:b7:30:
9c:f8:97:6d:9f:79:42:cd:24:1a:31:f7:f9:5a:aa:
1f:01:a0:66:01:7a:91:83:8d:0f:08:21:4d:24:91:
d2:85:49:07:a0:ab:7a:f6:87:d8:3b:72:80:2f:c2:
f6:bf:50:6b:d5:cf:9a:e0:47:96:32:5c:c5:92:6d:
0e:84:12:2b:2d:d1:2a:ad:e0:85:e5:78:2b:25:05:
7c:50:6f:aa:8e:8c:4f:3b:83:cb:04:58:3d:b4:2e:
d8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:33:C8:6A:2E:BE:0C:21:7F:1F:F4:EF:7F:A5:75:70:58:C6:47:FB
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UDPIai6-DCF_H_Tvf6V1cFjGR_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.68.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:fe:54:03:1b:22:34:d9:1e:64:42:49:bd:a3:b5:c3:2f:12:
32:00:ae:ad:22:a9:9d:d3:b0:6a:81:e5:80:97:a6:aa:8b:b2:
d2:a7:fe:59:11:29:6a:27:69:b4:ba:3b:10:21:73:4b:98:67:
35:19:1b:0d:6b:c6:15:28:8b:11:0d:7d:ec:f3:11:b0:52:4c:
52:0a:ec:67:6b:26:14:8c:cc:1d:d4:f5:f1:42:5b:af:08:c2:
89:f9:53:79:20:c3:c4:c4:d1:ac:62:d9:fe:00:c6:94:a3:ac:
0d:81:b1:66:80:fe:51:ac:80:28:15:bc:89:7b:34:20:11:3e:
47:7e:3c:13:6b:e1:25:4f:dc:82:f5:e5:1c:43:15:eb:e9:b2:
5b:3b:6c:e8:f4:69:a0:29:4b:00:18:85:27:82:b7:2f:b1:bc:
70:ca:b3:a0:7a:41:f3:53:5f:a2:ca:0e:36:22:19:d0:c8:7f:
ef:9e:f0:88:77:f5:c3:b4:24:90:72:23:03:db:8f:71:bb:c1:
c4:cc:3c:7f:3b:7e:5b:e4:d7:cd:b4:84:9e:d6:e6:10:18:d0:
df:84:c7:bf:02:c9:92:3a:fb:f0:fe:c1:67:31:b9:bb:26:05:
32:b8:27:d8:a7:f3:c2:e6:28:af:00:51:da:76:1e:81:cf:98:
a0:3f:6c:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1+CUXKDvpRWResyUqTnsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM2NTM1NWI2NjU1NjRhMjEwYzM1OGM2OGEwMTE3Yjdm
YmViOWEwHhcNMjUwMTAxMjE0ODU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDMzYzg2YTJlYmUwYzIxN2YxZmY0ZWY3ZmE1NzU3MDU4YzY0N2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi/Bk8s/WwUmBlXSL6F0DVpe0rRT
F69Sc1Vj5PMA/okkZDcW437py2Vzvx+ZTEcOobyqFSgpQyGXGW6U9o9e10GRRAeH
0X+OJymJV3TCC1frF8amflEs19BGRylDzwSjUiT6AUX5aQ5ano69AkBj6R9P4Qj7
NxTj0qMYDVZFpYqiFi/TaM0xvE7oo5IptToeozpTtCIHGbhnO6S0DZqmMXd2tzCc
+Jdtn3lCzSQaMff5WqofAaBmAXqRg40PCCFNJJHShUkHoKt69ofYO3KAL8L2v1Br
1c+a4EeWMlzFkm0OhBIrLdEqreCF5XgrJQV8UG+qjoxPO4PLBFg9tC7YHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFAzyGouvgwhfx/073+ldXBYxkf7MB8GA1UdIwQY
MBaAFHRjZTVbZlVkohDDWMaKARe3++uaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGIt
NmE0ZWNhZjhiM2IxLzEvVURQSWFpNi1EQ0ZfSF9UdmY2VjFjRmpHUl9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGItNmE0ZWNhZjhiM2Ix
LzEvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BZEMA0G
CSqGSIb3DQEBCwUAA4IBAQAq/lQDGyI02R5kQkm9o7XDLxIyAK6tIqmd07BqgeWA
l6aqi7LSp/5ZESlqJ2m0ujsQIXNLmGc1GRsNa8YVKIsRDX3s8xGwUkxSCuxnayYU
jMwd1PXxQluvCMKJ+VN5IMPExNGsYtn+AMaUo6wNgbFmgP5RrIAoFbyJezQgET5H
fjwTa+ElT9yC9eUcQxXr6bJbO2zo9GmgKUsAGIUngrcvsbxwyrOgekHzU1+iyg42
IhnQyH/vnvCId/XDtCSQciMD249xu8HEzDx/O35b5NfNtISe1uYQGNDfhMe/AsmS
Ovvw/sFnMbm7JgUyuCfYp/PC5iivAFHadh6Bz5igP2y0
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:58:19 2025 by rpki-client