Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/u6NUicOvo6T-554v8D7E27PR_js.roa
File: u6NUicOvo6T-554v8D7E27PR_js.roa (raw, json)
Hash identifier: d9iOSgFbmii/T/0Nz54IXrSUo+VuuuChqMowbsG0khg=
Subject key identifier: BB:A3:54:89:C3:AF:A3:A4:FE:E7:9E:2F:F0:3E:C4:DB:B3:D1:FE:3B
Certificate issuer: /CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Certificate serial: 018CC6B7D81FB1257B2E299DA59E17CA9AA0
Authority key identifier: A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/u6NUicOvo6T-554v8D7E27PR_js.roa
Signing time: Mon 01 Jan 2024 20:29:46 +0000
ROA not before: Mon 01 Jan 2024 20:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44630
IP address blocks: 91.199.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:d8:1f:b1:25:7b:2e:29:9d:a5:9e:17:ca:9a:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Validity
Not Before: Jan 1 20:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bba35489c3afa3a4fee79e2ff03ec4dbb3d1fe3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cb:b5:09:b4:2f:5d:59:8d:aa:4e:2f:8b:18:
28:15:42:49:e7:8d:d8:5e:e4:fb:f4:e5:2a:b2:ee:
b0:4a:bd:26:96:92:3f:cc:7d:e7:36:59:a8:30:09:
c3:08:22:4e:d8:89:66:a8:e1:22:4f:c6:3b:4e:62:
29:d5:7b:39:db:5e:83:f1:6b:38:88:64:cf:0f:f7:
e6:8c:5b:94:b7:73:a3:d5:ba:b2:aa:6a:01:d2:f9:
21:72:fb:c2:98:99:8c:02:69:7d:5c:d9:83:5d:22:
08:5a:7c:59:95:13:b2:25:b6:bd:0c:d9:5f:70:cb:
9e:a5:fd:b5:ea:3f:a7:de:eb:e1:72:5c:fb:c1:1f:
1c:62:fc:a7:b0:d7:56:6d:6a:d4:7b:44:5d:52:3c:
c0:94:de:b1:90:a1:32:ce:e4:a4:ab:0b:82:15:d9:
2a:a5:76:51:28:e2:fd:f1:36:2f:06:3d:93:a0:be:
3a:31:ef:14:a6:14:cf:6e:c5:14:26:c7:7b:4d:0f:
46:04:9a:5f:c9:28:41:29:62:eb:6f:0f:e2:e5:f0:
d2:35:1c:95:f7:ee:80:29:83:3c:e6:58:23:2d:5a:
85:33:15:0f:f8:84:3b:a5:f5:f6:42:c2:d8:ce:a4:
88:75:1e:5f:3c:2e:2b:67:36:f5:3d:a1:71:fb:41:
b8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A3:54:89:C3:AF:A3:A4:FE:E7:9E:2F:F0:3E:C4:DB:B3:D1:FE:3B
X509v3 Authority Key Identifier:
keyid:A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/u6NUicOvo6T-554v8D7E27PR_js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/pdroBcyUvdKfwnEHzWOwvSfJFNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:2d:ca:7b:77:3a:59:73:2a:9b:06:35:de:e4:7c:c9:72:ea:
b9:a3:5b:34:74:51:d9:46:42:b4:f4:38:0d:fd:76:93:fa:f0:
b8:33:22:c0:36:f8:e5:1b:42:b5:a3:82:6a:8e:12:29:81:bb:
ba:89:27:35:d4:32:5e:31:4f:d2:b0:f9:fe:aa:7d:91:f8:d0:
e2:77:68:7e:de:47:d4:91:c6:4b:cb:ce:5c:51:5f:47:a0:a5:
39:57:1c:17:f3:8b:f4:56:3a:ad:c5:af:59:a3:46:10:6a:95:
03:6b:07:c8:1f:1d:e5:4d:d8:3a:41:76:16:38:fd:38:45:bf:
5d:f8:9e:dc:48:ea:2f:3b:1c:03:d2:76:36:29:38:f4:cf:37:
18:9e:95:e5:9f:38:a3:d2:6e:8b:d9:f8:9c:49:67:ac:c7:a9:
58:de:e0:2c:66:65:4f:79:36:20:a9:af:a1:ad:a7:9a:b3:60:
b6:d8:13:f1:83:84:b4:18:01:80:9a:cf:f6:d9:e2:3c:20:ce:
32:62:50:5f:1b:e2:ff:36:d8:6c:0f:7a:04:4d:17:c8:9d:23:
42:7b:69:00:4e:da:70:44:59:02:71:d6:3e:14:6b:e8:14:3f:
b3:f6:82:db:76:13:23:d8:40:e9:12:c8:c1:eb:d4:7a:59:52:
5b:cf:a1:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGt9gfsSV7LimdpZ4XypqgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1ZGFlODA1Y2M5NGJkZDI5ZmMyNzEwN2NkNjNiMGJkMjdj
OTE0ZDAwHhcNMjQwMTAxMjAyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmEzNTQ4OWMzYWZhM2E0ZmVlNzllMmZmMDNlYzRkYmIzZDFmZTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsu1CbQvXVmNqk4vixgoFUJJ543Y
XuT79OUqsu6wSr0mlpI/zH3nNlmoMAnDCCJO2IlmqOEiT8Y7TmIp1Xs5216D8Ws4
iGTPD/fmjFuUt3Oj1bqyqmoB0vkhcvvCmJmMAml9XNmDXSIIWnxZlROyJba9DNlf
cMuepf216j+n3uvhclz7wR8cYvynsNdWbWrUe0RdUjzAlN6xkKEyzuSkqwuCFdkq
pXZRKOL98TYvBj2ToL46Me8UphTPbsUUJsd7TQ9GBJpfyShBKWLrbw/i5fDSNRyV
9+6AKYM85lgjLVqFMxUP+IQ7pfX2QsLYzqSIdR5fPC4rZzb1PaFx+0G4LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLujVInDr6Ok/ueeL/A+xNuz0f47MB8GA1UdIwQY
MBaAFKXa6AXMlL3Sn8JxB81jsL0nyRTQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGRyb0JjeVV2ZEtmd25FSHpXT3d2U2ZKRk5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9jOGUwMDEtYWRhMy00NWJmLWFhNDYt
ZmQ1MTU2ODE2MjBjLzEvdTZOVWljT3ZvNlQtNTU0djhEN0UyN1BSX2pzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9jOGUwMDEtYWRhMy00NWJmLWFhNDYtZmQ1MTU2ODE2MjBj
LzEvcGRyb0JjeVV2ZEtmd25FSHpXT3d2U2ZKRk5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8e8MA0G
CSqGSIb3DQEBCwUAA4IBAQCfLcp7dzpZcyqbBjXe5HzJcuq5o1s0dFHZRkK09DgN
/XaT+vC4MyLANvjlG0K1o4JqjhIpgbu6iSc11DJeMU/SsPn+qn2R+NDid2h+3kfU
kcZLy85cUV9HoKU5VxwX84v0Vjqtxa9Zo0YQapUDawfIHx3lTdg6QXYWOP04Rb9d
+J7cSOovOxwD0nY2KTj0zzcYnpXlnzij0m6L2ficSWesx6lY3uAsZmVPeTYgqa+h
raeas2C22BPxg4S0GAGAms/22eI8IM4yYlBfG+L/NthsD3oETRfInSNCe2kATtpw
RFkCcdY+FGvoFD+z9oLbdhMj2EDpEsjB69R6WVJbz6GX
-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:30 2025 by rpki-client