Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/uGIR2lqYQgdH-LJpe-64fBc5Wn8.roa
File: uGIR2lqYQgdH-LJpe-64fBc5Wn8.roa (raw, json)
Hash identifier: lpw02NTxwtDHe+IejbO7H9zfLdysxEhWMq5SJDfmWIs=
Subject key identifier: B8:62:11:DA:5A:98:42:07:47:F8:B2:69:7B:EE:B8:7C:17:39:5A:7F
Certificate issuer: /CN=65179265803b7804d0fccf5962a8b163743e0d1e
Certificate serial: 018CC42534BF608148AA4F90D1083C56F15B
Authority key identifier: 65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/uGIR2lqYQgdH-LJpe-64fBc5Wn8.roa
Signing time: Mon 01 Jan 2024 08:30:21 +0000
ROA not before: Mon 01 Jan 2024 08:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 160.214.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Feb 2024 11:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:34:bf:60:81:48:aa:4f:90:d1:08:3c:56:f1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65179265803b7804d0fccf5962a8b163743e0d1e
Validity
Not Before: Jan 1 08:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b86211da5a98420747f8b2697beeb87c17395a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2c:b5:1f:20:ef:ce:41:11:50:a9:f4:f0:76:
2f:8b:a1:58:fa:51:4c:18:92:db:10:83:8d:fa:39:
df:1a:4e:19:17:d6:50:de:37:54:b1:89:00:19:5e:
47:8a:83:0b:b9:fd:58:c7:3a:c7:e3:5c:e6:68:74:
53:d9:6b:07:94:ea:5b:0e:d4:1e:b6:a2:93:73:91:
71:af:48:3e:6b:0a:5c:77:1f:df:1a:08:2e:36:8f:
5e:f1:57:22:b8:5d:09:52:3a:24:60:4f:ec:1c:1e:
7e:c9:ea:5a:20:97:52:07:7e:ce:62:c3:44:d1:1d:
8f:46:35:67:7c:96:90:44:60:38:6e:31:91:29:6f:
ad:88:6c:2b:aa:57:4b:65:af:21:ae:51:68:0f:14:
db:6c:17:74:e7:c4:39:a4:d4:81:ee:08:cf:29:7e:
2f:1a:12:de:9a:ca:dc:57:0a:d9:79:5c:1e:88:7f:
6c:8e:25:c9:3f:c7:76:2c:ce:a8:a2:f7:3f:41:89:
23:2e:d9:de:be:ae:94:35:7a:d3:88:0e:6e:18:ed:
47:64:93:7d:59:f4:2a:f2:2a:a3:94:5a:88:cc:b9:
45:73:47:fd:ff:de:10:94:cb:3c:ac:cc:a4:7a:0f:
13:61:97:1a:9c:b7:7c:a9:ae:bb:d5:3a:f7:77:07:
a4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:62:11:DA:5A:98:42:07:47:F8:B2:69:7B:EE:B8:7C:17:39:5A:7F
X509v3 Authority Key Identifier:
keyid:65:17:92:65:80:3B:78:04:D0:FC:CF:59:62:A8:B1:63:74:3E:0D:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/uGIR2lqYQgdH-LJpe-64fBc5Wn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/dbe865-6c06-4d9a-8db1-f7bb6d9a3be8/1/ZReSZYA7eATQ_M9ZYqixY3Q-DR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.214.112.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f1:b8:87:0d:c6:bf:a1:c6:49:7d:a3:3f:b2:92:10:05:d6:
c9:27:ef:a4:7e:3a:42:70:b5:5d:a1:9e:8f:33:e1:c1:d1:85:
3f:8b:5f:c9:36:d2:d4:71:eb:5b:08:f9:f6:97:39:fa:6c:36:
65:5a:42:82:3a:0d:05:91:dc:3b:ed:23:a2:a3:f0:d8:a1:9f:
4a:73:4d:b9:73:c5:d0:fd:ff:da:c7:35:11:34:31:09:07:8c:
d7:a5:04:94:cd:2e:04:73:78:43:bf:1f:15:1c:d7:1e:f2:fa:
7e:45:9b:fd:82:40:d6:29:30:e4:81:c7:79:33:00:3a:50:43:
b9:89:69:4f:d8:14:49:af:2f:da:ab:e7:19:82:af:4e:11:99:
a2:c2:1f:45:a2:2a:6d:78:04:26:e0:75:a1:9e:c2:60:8d:73:
52:0b:2e:aa:96:28:7d:89:b0:ae:5f:68:22:e5:7b:be:d1:b4:
6c:64:e2:6f:9b:92:3e:a0:bf:31:cf:0d:23:c2:a1:f7:85:bd:
ab:e5:81:fd:73:4b:57:33:e4:61:1c:0a:67:cf:41:7a:41:dd:
03:d8:9d:a9:99:03:56:da:ec:e1:e5:e8:53:53:c3:e4:88:7f:
52:cd:7a:65:76:6b:06:19:2d:5e:e6:5b:20:b3:cf:1b:26:b5:
b4:2a:2d:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJTS/YIFIqk+Q0Qg8VvFbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1MTc5MjY1ODAzYjc4MDRkMGZjY2Y1OTYyYThiMTYzNzQz
ZTBkMWUwHhcNMjQwMTAxMDgzMDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiODYyMTFkYTVhOTg0MjA3NDdmOGIyNjk3YmVlYjg3YzE3Mzk1YTdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviy1HyDvzkERUKn08HYvi6FY+lFM
GJLbEION+jnfGk4ZF9ZQ3jdUsYkAGV5HioMLuf1YxzrH41zmaHRT2WsHlOpbDtQe
tqKTc5Fxr0g+awpcdx/fGgguNo9e8VciuF0JUjokYE/sHB5+yepaIJdSB37OYsNE
0R2PRjVnfJaQRGA4bjGRKW+tiGwrqldLZa8hrlFoDxTbbBd058Q5pNSB7gjPKX4v
GhLemsrcVwrZeVweiH9sjiXJP8d2LM6oovc/QYkjLtnevq6UNXrTiA5uGO1HZJN9
WfQq8iqjlFqIzLlFc0f9/94QlMs8rMykeg8TYZcanLd8qa671Tr3dwekpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLhiEdpamEIHR/iyaXvuuHwXOVp/MB8GA1UdIwQY
MBaAFGUXkmWAO3gE0PzPWWKosWN0Pg0eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlJlU1pZQTdlQVRRX005WllxaXhZM1EtRFI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9kYmU4NjUtNmMwNi00ZDlhLThkYjEt
ZjdiYjZkOWEzYmU4LzEvdUdJUjJscVlRZ2RILUxKcGUtNjRmQmM1V244LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi9kYmU4NjUtNmMwNi00ZDlhLThkYjEtZjdiYjZkOWEzYmU4
LzEvWlJlU1pZQTdlQVRRX005WllxaXhZM1EtRFI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoNZwMA0G
CSqGSIb3DQEBCwUAA4IBAQBX8biHDca/ocZJfaM/spIQBdbJJ++kfjpCcLVdoZ6P
M+HB0YU/i1/JNtLUcetbCPn2lzn6bDZlWkKCOg0Fkdw77SOio/DYoZ9Kc025c8XQ
/f/axzURNDEJB4zXpQSUzS4Ec3hDvx8VHNce8vp+RZv9gkDWKTDkgcd5MwA6UEO5
iWlP2BRJry/aq+cZgq9OEZmiwh9FoipteAQm4HWhnsJgjXNSCy6qlih9ibCuX2gi
5Xu+0bRsZOJvm5I+oL8xzw0jwqH3hb2r5YH9c0tXM+RhHApnz0F6Qd0D2J2pmQNW
2uzh5ehTU8PkiH9SzXpldmsGGS1e5lsgs88bJrW0Ki27
-----END CERTIFICATE-----
Generated at Wed Feb 21 16:10:54 2024 by rpki-client on console-ams.rpki-client.org