Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/UflUZY53B-yVvNbChcw5QuIv1m4.roa
File: UflUZY53B-yVvNbChcw5QuIv1m4.roa (raw, json)
Hash identifier: k/7XpOWhdGh/RcmZph74H6EEEOfd9TZaq+4Ra7mp0zI=
Subject key identifier: 51:F9:54:65:8E:77:07:EC:95:BC:D6:C2:85:CC:39:42:E2:2F:D6:6E
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 018823D28FC91E22C3D5883B9C746F91CD60
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/UflUZY53B-yVvNbChcw5QuIv1m4.roa
Signing time: Tue 16 May 2023 09:09:41 +0000
ROA not before: Tue 16 May 2023 09:09:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209973
IP address blocks: 188.130.245.0/24 maxlen: 24
188.130.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:d2:8f:c9:1e:22:c3:d5:88:3b:9c:74:6f:91:cd:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: May 16 09:09:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51f954658e7707ec95bcd6c285cc3942e22fd66e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c7:ba:94:e6:38:51:e3:59:a2:fa:63:a9:b8:
01:ec:1d:55:11:36:e9:59:17:ec:23:0b:76:4f:c2:
c8:8a:bb:43:13:b3:9c:0c:ce:2f:05:d6:ca:4a:fc:
6e:ed:92:dd:fe:0a:11:8e:c4:a0:70:a1:d1:32:8f:
d6:80:a5:77:b5:49:0e:de:12:cc:e3:a2:38:3d:e5:
28:09:5c:2a:3e:56:5e:eb:78:5a:c2:87:81:0e:ee:
99:5d:cd:2a:98:7b:47:fd:f7:4d:6d:3a:7f:4b:5c:
ca:f0:5c:05:e1:7a:d3:2c:02:74:8c:be:97:e3:04:
20:ad:4b:8d:d4:e6:9b:3d:cf:72:0b:bb:84:2f:72:
d3:5b:cf:da:69:47:4d:4e:d9:0d:7a:32:e8:27:75:
2a:81:26:3a:10:58:d4:ee:c9:c3:f4:96:b5:40:75:
48:33:9a:95:9f:18:47:38:f4:45:20:13:0c:90:c1:
76:a9:69:b5:42:7c:fa:8f:cd:63:cf:66:33:16:e9:
01:f4:b5:50:4a:23:d1:7d:b7:3f:9d:74:b2:15:7d:
17:83:69:cc:62:18:2c:f2:da:57:6d:1a:13:d8:c8:
db:40:5f:35:51:b2:dd:76:1d:72:18:23:65:a2:ea:
30:54:c9:db:5e:5a:60:0f:58:c1:a5:2c:54:74:7b:
7c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:54:65:8E:77:07:EC:95:BC:D6:C2:85:CC:39:42:E2:2F:D6:6E
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/UflUZY53B-yVvNbChcw5QuIv1m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.130.244.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:65:8e:8f:88:40:1f:8a:11:55:94:27:01:1a:8e:20:eb:29:
5a:8b:02:eb:02:c9:58:a2:c0:82:5e:b5:e6:db:8b:cb:90:e7:
60:39:8c:77:53:5c:b8:1c:8f:8b:db:10:49:e1:54:62:32:6d:
3d:00:bf:29:14:ad:cb:d5:46:6e:d1:c3:a8:a2:35:17:0e:76:
14:31:01:e9:b5:d9:c2:df:6b:e3:63:c4:b7:5d:2d:ae:f5:fc:
09:cd:b4:fb:fe:fe:73:7b:4e:36:e0:84:2c:fb:cb:b1:5f:c4:
7d:75:63:5a:f5:92:99:bd:06:fe:fd:ce:27:d0:96:c5:ad:b3:
e2:c0:bb:d6:45:fb:c6:d3:8f:d4:28:d4:bc:3d:f1:a1:2c:47:
22:b4:c4:fd:39:96:93:c8:81:b3:61:e2:3a:34:9c:27:fb:5c:
ac:b3:44:e9:64:14:c3:e3:03:34:0f:f8:64:db:2d:6a:56:13:
ef:2d:18:83:83:89:51:c8:bf:d0:af:c5:79:0b:42:fd:eb:f8:
55:8e:11:18:a6:f6:d3:07:12:4a:01:b9:b2:b5:b7:bd:57:53:
c1:45:ca:26:96:ae:a2:47:a6:4e:80:71:ce:2a:f6:ef:29:c2:
6c:0f:9b:7c:79:eb:57:6a:e8:cf:7f:88:4c:76:3e:df:8e:cf:
9d:c9:35:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgj0o/JHiLD1Yg7nHRvkc1gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NWI4NTc3MDZkYWM1NGUyMGNhMGQxMWJkNjQxNmNiNjM0
MjAzYjQwHhcNMjMwNTE2MDkwOTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWY5NTQ2NThlNzcwN2VjOTViY2Q2YzI4NWNjMzk0MmUyMmZkNjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMe6lOY4UeNZovpjqbgB7B1VETbp
WRfsIwt2T8LIirtDE7OcDM4vBdbKSvxu7ZLd/goRjsSgcKHRMo/WgKV3tUkO3hLM
46I4PeUoCVwqPlZe63hawoeBDu6ZXc0qmHtH/fdNbTp/S1zK8FwF4XrTLAJ0jL6X
4wQgrUuN1OabPc9yC7uEL3LTW8/aaUdNTtkNejLoJ3UqgSY6EFjU7snD9Ja1QHVI
M5qVnxhHOPRFIBMMkMF2qWm1Qnz6j81jz2YzFukB9LVQSiPRfbc/nXSyFX0Xg2nM
Yhgs8tpXbRoT2MjbQF81UbLddh1yGCNlouowVMnbXlpgD1jBpSxUdHt8LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFH5VGWOdwfslbzWwoXMOULiL9ZuMB8GA1UdIwQY
MBaAFIhbhXcG2sVOIMoNEb1kFstjQgO0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMt
MTY2OTljOTZkZDVlLzEvVWZsVVpZNTNCLXlWdk5iQ2hjdzVRdUl2MW00LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMjFjZGMtMjE0My00YjVjLTk3MzMtMTY2OTljOTZkZDVl
LzEvaUZ1RmR3YmF4VTRneWcwUnZXUVd5Mk5DQTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBvIL0MA0G
CSqGSIb3DQEBCwUAA4IBAQCOZY6PiEAfihFVlCcBGo4g6ylaiwLrAslYosCCXrXm
24vLkOdgOYx3U1y4HI+L2xBJ4VRiMm09AL8pFK3L1UZu0cOoojUXDnYUMQHptdnC
32vjY8S3XS2u9fwJzbT7/v5ze0424IQs+8uxX8R9dWNa9ZKZvQb+/c4n0JbFrbPi
wLvWRfvG04/UKNS8PfGhLEcitMT9OZaTyIGzYeI6NJwn+1yss0TpZBTD4wM0D/hk
2y1qVhPvLRiDg4lRyL/Qr8V5C0L96/hVjhEYpvbTBxJKAbmytbe9V1PBRcomlq6i
R6ZOgHHOKvbvKcJsD5t8eetXaujPf4hMdj7fjs+dyTUi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org