Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uSLwM0-hOrDBv2DfE9lt6gvQyQA.roa
File: uSLwM0-hOrDBv2DfE9lt6gvQyQA.roa (raw, json)
Hash identifier: vQpP55zqx2J+6lWIKFyiYKYDZ3gfcAgCnTUA5R5Tef0=
Subject key identifier: B9:22:F0:33:4F:A1:3A:B0:C1:BF:60:DF:13:D9:6D:EA:0B:D0:C9:00
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188AF33D153359F43FB6E226110BACAF440
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uSLwM0-hOrDBv2DfE9lt6gvQyQA.roa
Signing time: Mon 12 Jun 2023 10:43:08 +0000
ROA not before: Mon 12 Jun 2023 10:43:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 89.46.42.0/24 maxlen: 24
89.40.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 14:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:33:d1:53:35:9f:43:fb:6e:22:61:10:ba:ca:f4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 12 10:43:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b922f0334fa13ab0c1bf60df13d96dea0bd0c900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:49:da:69:39:c3:d6:67:ae:76:71:79:15:
2b:6e:c7:ad:68:40:e8:0d:fc:2c:07:22:06:36:cb:
2b:c1:e1:0e:1a:90:7c:be:b9:2c:94:a0:22:e6:14:
90:d8:96:26:6a:46:bd:92:7c:06:28:0e:b2:67:dd:
41:a7:5f:6f:3c:f6:59:3a:65:b7:96:b7:79:69:e8:
12:f5:c4:ac:35:d8:0b:f3:50:74:63:c2:41:dd:8f:
28:2f:56:65:95:85:4b:2a:0d:8c:b5:fe:25:d5:1a:
35:9a:ac:ef:78:11:14:0a:66:02:62:80:19:d8:98:
ab:5a:12:55:79:b6:9d:3b:5f:30:07:28:2e:30:1c:
f7:01:17:4e:0f:75:60:5f:16:ae:77:a7:02:88:aa:
9f:9f:96:d4:dd:78:f7:09:69:e5:8b:6c:7d:72:05:
f0:ed:db:31:25:df:35:62:df:9b:f6:76:32:13:4e:
1c:92:71:4b:34:4d:40:9c:0e:69:2a:eb:02:0d:30:
a6:ea:1c:90:71:d8:08:86:29:10:a9:0d:8c:3c:df:
48:4e:ea:d9:b6:1d:cb:22:01:6b:5e:e0:94:88:32:
9b:9f:b1:b2:c6:eb:c6:a9:ab:05:7c:f6:74:55:46:
55:5a:92:eb:db:a6:6e:55:4d:7d:c0:8e:7d:88:33:
17:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:22:F0:33:4F:A1:3A:B0:C1:BF:60:DF:13:D9:6D:EA:0B:D0:C9:00
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/uSLwM0-hOrDBv2DfE9lt6gvQyQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.215.0/24
89.46.42.0/24
Signature Algorithm: sha256WithRSAEncryption
68:72:ac:ad:56:28:69:38:01:74:53:8e:df:6f:06:ab:4e:f2:
d2:3d:52:e7:38:bf:60:68:bf:5d:4d:08:07:96:24:cd:96:33:
9f:cc:5a:79:60:a8:bb:43:18:42:90:a2:54:84:56:cb:3e:44:
ae:30:46:d9:a6:bb:45:ed:13:db:64:7b:a7:b3:4b:68:75:1f:
2e:85:c3:45:24:d4:e6:fd:25:0b:db:95:32:87:4b:43:cb:ea:
39:ec:c4:a7:73:ac:20:63:21:0c:45:39:50:91:24:0d:5c:df:
ec:5e:e5:78:aa:bd:ea:56:b9:9b:85:a3:fd:7f:26:a6:56:c1:
69:93:71:5c:a2:bd:fe:67:53:5e:ea:2e:f7:7d:71:d0:10:85:
c6:71:a7:7f:89:40:f1:55:62:a6:71:9d:db:1b:f6:aa:04:74:
53:e1:00:be:59:d0:d6:31:4a:36:15:4a:4a:6e:63:70:68:84:
c2:2c:76:3a:12:cd:c9:4e:eb:b0:7b:a4:7d:72:18:a0:62:13:
72:95:81:6c:be:6b:8c:ef:12:4b:c8:cd:a9:42:1e:25:a1:70:
e8:f8:fe:97:1d:93:8b:be:92:15:3f:a4:bb:c8:05:f6:d0:16:
2a:b4:c4:30:13:b3:8a:13:4e:45:b1:13:ae:d0:1e:56:fc:c0:
aa:0a:42:fc
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYivM9FTNZ9D+24iYRC6yvRAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwNjEyMTA0MzA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTIyZjAzMzRmYTEzYWIwYzFiZjYwZGYxM2Q5NmRlYTBiZDBjOTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPtJ2mk5w9ZnrnZxeRUrbsetaEDo
DfwsByIGNssrweEOGpB8vrkslKAi5hSQ2JYmaka9knwGKA6yZ91Bp19vPPZZOmW3
lrd5aegS9cSsNdgL81B0Y8JB3Y8oL1ZllYVLKg2Mtf4l1Ro1mqzveBEUCmYCYoAZ
2JirWhJVebadO18wByguMBz3ARdOD3VgXxaud6cCiKqfn5bU3Xj3CWnli2x9cgXw
7dsxJd81Yt+b9nYyE04cknFLNE1AnA5pKusCDTCm6hyQcdgIhikQqQ2MPN9ITurZ
th3LIgFrXuCUiDKbn7GyxuvGqasFfPZ0VUZVWpLr26ZuVU19wI59iDMXtwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLki8DNPoTqwwb9g3xPZbeoL0MkAMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvdVNMd00wLWhPckRCdjJEZkU5bHQ2Z3ZReVFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSjXAwQA
WS4qMA0GCSqGSIb3DQEBCwUAA4IBAQBocqytVihpOAF0U47fbwarTvLSPVLnOL9g
aL9dTQgHliTNljOfzFp5YKi7QxhCkKJUhFbLPkSuMEbZprtF7RPbZHuns0todR8u
hcNFJNTm/SUL25Uyh0tDy+o57MSnc6wgYyEMRTlQkSQNXN/sXuV4qr3qVrmbhaP9
fyamVsFpk3Fcor3+Z1Ne6i73fXHQEIXGcad/iUDxVWKmcZ3bG/aqBHRT4QC+WdDW
MUo2FUpKbmNwaITCLHY6Es3JTuuwe6R9chigYhNylYFsvmuM7xJLyM2pQh4loXDo
+P6XHZOLvpIVP6S7yAX20BYqtMQwE7OKE05FsROu0B5W/MCqCkL8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org