Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/uT1mouhdPksIF-JMaNDHSuYsCUY.roa
File: uT1mouhdPksIF-JMaNDHSuYsCUY.roa (raw, json)
Hash identifier: XSMlw6gE4bl7/4FCBWpLj1uBhuyVl74bxZwVdPZSuRs=
Subject key identifier: B9:3D:66:A2:E8:5D:3E:4B:08:17:E2:4C:68:D0:C7:4A:E6:2C:09:46
Certificate issuer: /CN=fbbe33c8d18e53bfd24822098dc748640550c504
Certificate serial: 01856F42AE47B2202F9C32DD648B246CBFD1
Authority key identifier: FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/uT1mouhdPksIF-JMaNDHSuYsCUY.roa
Signing time: Sun 01 Jan 2023 21:35:19 +0000
ROA not before: Sun 01 Jan 2023 21:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 185.118.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ae:47:b2:20:2f:9c:32:dd:64:8b:24:6c:bf:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbbe33c8d18e53bfd24822098dc748640550c504
Validity
Not Before: Jan 1 21:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b93d66a2e85d3e4b0817e24c68d0c74ae62c0946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8d:bc:a6:49:ba:61:e3:33:0b:7c:8b:41:cd:
2a:d5:69:97:30:10:3b:bd:dc:cf:21:fd:93:c6:9c:
14:9b:84:da:3b:63:5f:d1:38:3e:da:71:1d:01:65:
fe:dd:a0:6f:27:6a:0d:16:01:0f:30:ca:1a:7b:3c:
19:a8:2b:36:12:c4:ac:a7:01:2a:eb:ba:4f:80:60:
68:57:c8:f7:92:48:af:07:e6:c9:03:ba:a6:05:61:
e3:42:6b:39:e0:51:35:bc:2a:14:a6:62:ee:93:6a:
95:15:d1:95:69:45:c6:39:9b:b3:b7:bd:a7:e1:b8:
22:40:4b:57:c3:9a:44:17:42:b0:a1:9a:64:70:78:
6c:2d:d8:46:4d:45:f9:6d:6d:59:72:b8:d8:fc:93:
62:65:b4:fe:4f:1e:88:06:75:2c:a1:21:0e:67:5e:
28:ff:26:2b:3b:88:6a:11:46:b1:73:16:60:10:95:
68:b3:f5:4d:27:56:bd:3f:3c:42:f0:6a:d8:6d:ed:
04:0e:99:6c:97:4f:29:8a:12:0e:fd:d1:df:b8:69:
fa:68:c0:c0:18:ff:7a:13:fd:65:8c:66:52:61:14:
4b:07:16:20:e0:ac:32:72:a3:3d:17:b1:1e:a0:a8:
da:65:7c:36:6d:52:78:da:3e:44:a9:88:27:66:39:
6a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:3D:66:A2:E8:5D:3E:4B:08:17:E2:4C:68:D0:C7:4A:E6:2C:09:46
X509v3 Authority Key Identifier:
keyid:FB:BE:33:C8:D1:8E:53:BF:D2:48:22:09:8D:C7:48:64:05:50:C5:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/uT1mouhdPksIF-JMaNDHSuYsCUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9cfee8-9446-4f5e-ad1e-0554311d87b5/1/1-74zyNGOU7_SSCIJjcdIZAVQxQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.104.0/24
Signature Algorithm: sha256WithRSAEncryption
35:17:63:6d:d1:be:a9:44:07:55:e1:88:24:95:ed:aa:cf:c1:
5f:1f:37:56:5a:28:e9:5b:4a:2b:0c:89:03:73:64:5c:8b:0e:
e2:3d:0e:29:1c:fb:87:50:1f:f8:c8:e9:31:57:0a:b5:06:e1:
79:b1:e4:21:9f:b3:3a:6f:cf:e6:e8:fa:b1:a1:70:c7:d9:7e:
6c:42:48:97:54:e0:0a:24:fc:9a:30:b4:4c:5f:e2:55:2e:5f:
e2:83:1f:0d:8b:f1:a5:ac:60:06:04:ad:4b:dd:a6:dc:a9:c0:
82:46:3c:c1:af:44:b1:51:4c:de:93:9d:65:56:9e:4f:35:f2:
d5:01:0b:c0:35:fa:ca:51:9b:39:2e:02:01:4d:27:90:68:63:
69:52:ec:fb:ba:47:96:25:80:56:4c:3d:3e:27:4a:22:95:43:
27:81:b5:bd:b7:50:d5:fa:a2:39:ce:5a:fe:7b:ca:92:2d:58:
a7:33:c4:db:63:d7:00:c9:fb:4a:04:f6:9c:c7:82:ba:e1:8a:
98:72:59:97:0e:59:18:72:11:76:e4:2d:b8:95:28:bd:7b:59:
31:f6:40:c8:8d:54:40:58:82:b9:0b:e0:91:e4:78:02:34:57:
95:15:29:73:79:93:5a:09:38:bd:33:64:96:af:ec:d9:a4:c0:
d1:db:51:64
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVvQq5HsiAvnDLdZIskbL/RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiYmUzM2M4ZDE4ZTUzYmZkMjQ4MjIwOThkYzc0ODY0MDU1
MGM1MDQwHhcNMjMwMTAxMjEzNTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTNkNjZhMmU4NWQzZTRiMDgxN2UyNGM2OGQwYzc0YWU2MmMwOTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Y28pkm6YeMzC3yLQc0q1WmXMBA7
vdzPIf2TxpwUm4TaO2Nf0Tg+2nEdAWX+3aBvJ2oNFgEPMMoaezwZqCs2EsSspwEq
67pPgGBoV8j3kkivB+bJA7qmBWHjQms54FE1vCoUpmLuk2qVFdGVaUXGOZuzt72n
4bgiQEtXw5pEF0KwoZpkcHhsLdhGTUX5bW1ZcrjY/JNiZbT+Tx6IBnUsoSEOZ14o
/yYrO4hqEUaxcxZgEJVos/VNJ1a9PzxC8GrYbe0EDplsl08pihIO/dHfuGn6aMDA
GP96E/1ljGZSYRRLBxYg4KwycqM9F7EeoKjaZXw2bVJ42j5EqYgnZjlqBwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFLk9ZqLoXT5LCBfiTGjQx0rmLAlGMB8GA1UdIwQY
MBaAFPu+M8jRjlO/0kgiCY3HSGQFUMUEMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS03NHp5TkdPVTdfU1NDSUpqY2RJWkFWUXhRUS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvOWNmZWU4LTk0NDYtNGY1ZS1hZDFl
LTA1NTQzMTFkODdiNS8xL3VUMW1vdWhkUGtzSUYtSk1hTkRIU3VZc0NVWS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzAvOWNmZWU4LTk0NDYtNGY1ZS1hZDFlLTA1NTQzMTFkODdi
NS8xLzEtNzR6eU5HT1U3X1NTQ0lKamNkSVpBVlF4UVEuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC5dmgw
DQYJKoZIhvcNAQELBQADggEBADUXY23RvqlEB1XhiCSV7arPwV8fN1ZaKOlbSisM
iQNzZFyLDuI9Dikc+4dQH/jI6TFXCrUG4Xmx5CGfszpvz+bo+rGhcMfZfmxCSJdU
4Aok/JowtExf4lUuX+KDHw2L8aWsYAYErUvdptypwIJGPMGvRLFRTN6TnWVWnk81
8tUBC8A1+spRmzkuAgFNJ5BoY2lS7Pu6R5YlgFZMPT4nSiKVQyeBtb23UNX6ojnO
Wv57ypItWKczxNtj1wDJ+0oE9pzHgrrhiphyWZcOWRhyEXbkLbiVKL17WTH2QMiN
VEBYgrkL4JHkeAI0V5UVKXN5k1oJOL0zZJav7NmkwNHbUWQ=
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:48 2024 by rpki-client on console-fra.rpki-client.org