Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/uycHeMBcyR8bV5vXoucEDZpsVEg.roa
File: uycHeMBcyR8bV5vXoucEDZpsVEg.roa (raw, json)
Hash identifier: gHfigSVpS9yPqq3HhQcBB4VIQkcqSzuzosU+oCneAXg=
Subject key identifier: BB:27:07:78:C0:5C:C9:1F:1B:57:9B:D7:A2:E7:04:0D:9A:6C:54:48
Certificate issuer: /CN=2f117ada3cb9515a6d8a6dcc15f2b0b1a7d9be1d
Certificate serial: 018BB9EFB92028BC082AAA0F57793919EB69
Authority key identifier: 2F:11:7A:DA:3C:B9:51:5A:6D:8A:6D:CC:15:F2:B0:B1:A7:D9:BE:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxF62jy5UVptim3MFfKwsafZvh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/uycHeMBcyR8bV5vXoucEDZpsVEg.roa
Signing time: Fri 10 Nov 2023 15:52:57 +0000
ROA not before: Fri 10 Nov 2023 15:52:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31898
IP address blocks: 141.93.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Dec 2023 11:55:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:ef:b9:20:28:bc:08:2a:aa:0f:57:79:39:19:eb:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f117ada3cb9515a6d8a6dcc15f2b0b1a7d9be1d
Validity
Not Before: Nov 10 15:52:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb270778c05cc91f1b579bd7a2e7040d9a6c5448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fd:e2:20:d4:6b:f1:0e:b5:73:0c:dd:bd:9c:
58:c4:c4:e1:5e:2d:cf:65:f7:b0:2b:ca:63:cd:22:
84:73:ec:5e:b7:a1:cb:3e:d6:db:ad:37:10:d6:b1:
27:69:96:50:a5:49:9d:d6:07:2d:b0:bb:e7:cc:1a:
8a:0d:f9:a6:7a:b9:1c:d2:09:79:4b:36:e3:b8:24:
2a:91:7a:28:b9:51:9f:51:39:0f:52:6e:60:ba:eb:
09:51:5c:12:a9:00:6a:b4:0b:dd:f5:a8:6e:39:d0:
91:b1:e7:80:c9:3e:c8:07:f9:e2:a3:54:7d:5c:7f:
10:9f:f3:51:6c:ee:69:f6:d3:0b:74:61:9b:f7:1c:
81:ed:d3:0b:96:b2:ae:4f:b1:23:0c:43:17:0d:6c:
f9:a5:e8:05:5f:a7:35:3d:3a:5f:07:4c:69:31:80:
d7:b5:2d:c7:c7:63:78:c6:4e:15:27:60:6a:33:83:
af:e5:e9:11:00:30:83:ac:d1:cb:8c:04:8c:a7:3b:
03:3e:a9:02:18:4b:1c:f1:0d:68:c7:0b:9c:14:45:
7a:13:97:b3:7a:14:7a:27:c8:c4:b4:a2:9a:4c:7d:
4e:ef:24:2e:af:7d:b6:f4:8f:40:05:27:f8:e2:1d:
db:9b:45:13:a2:c1:c0:a7:8c:2b:6b:9e:67:e4:68:
89:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:27:07:78:C0:5C:C9:1F:1B:57:9B:D7:A2:E7:04:0D:9A:6C:54:48
X509v3 Authority Key Identifier:
keyid:2F:11:7A:DA:3C:B9:51:5A:6D:8A:6D:CC:15:F2:B0:B1:A7:D9:BE:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxF62jy5UVptim3MFfKwsafZvh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/uycHeMBcyR8bV5vXoucEDZpsVEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/eff44d-24fd-4384-9507-7a034d170b85/1/LxF62jy5UVptim3MFfKwsafZvh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.93.24.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ae:70:09:98:b8:f5:66:8c:ee:cb:aa:48:5e:f1:7a:66:af:
03:47:31:45:5a:b1:94:4d:6f:5e:9a:a7:84:11:8f:de:6e:d0:
87:ad:e7:ac:01:45:92:45:61:55:7c:54:8d:0d:b3:c7:1b:e9:
7b:2c:9c:3d:75:76:c1:c6:5a:94:15:bc:6a:08:2a:5c:ab:c9:
c6:7f:a4:f6:d6:f0:c4:8f:b2:92:99:95:76:b7:d5:0c:b8:4a:
41:4a:6c:72:a9:14:00:70:ce:60:4c:06:24:af:b1:9f:43:68:
51:f4:05:8d:e9:5e:e3:1d:a4:1b:03:3f:58:8d:91:14:0a:45:
11:37:4c:36:78:1d:17:37:d3:28:cf:f3:1f:49:49:2f:83:e1:
2a:d7:22:86:4f:cf:53:2c:f7:9c:d7:27:67:ca:c1:79:b2:96:
c5:1d:62:26:19:ee:6b:7e:47:37:b1:d4:b0:f8:ee:20:d6:e1:
14:42:69:c5:d9:89:24:51:b9:43:84:ad:68:a7:61:55:c1:48:
99:07:d7:f0:46:76:34:cf:41:46:7b:24:b4:48:5e:2c:d7:d0:
70:88:e5:ab:ba:bf:97:d0:81:32:0d:f6:10:64:2f:a1:54:93:
d3:cd:b1:6c:b9:5e:f9:19:02:9c:3e:46:49:3d:53:f4:24:bd:
ce:f7:b3:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYu577kgKLwIKqoPV3k5GetpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmMTE3YWRhM2NiOTUxNWE2ZDhhNmRjYzE1ZjJiMGIxYTdk
OWJlMWQwHhcNMjMxMTEwMTU1MjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjI3MDc3OGMwNWNjOTFmMWI1NzliZDdhMmU3MDQwZDlhNmM1NDQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/3iINRr8Q61cwzdvZxYxMThXi3P
ZfewK8pjzSKEc+xet6HLPtbbrTcQ1rEnaZZQpUmd1gctsLvnzBqKDfmmerkc0gl5
SzbjuCQqkXoouVGfUTkPUm5guusJUVwSqQBqtAvd9ahuOdCRseeAyT7IB/nio1R9
XH8Qn/NRbO5p9tMLdGGb9xyB7dMLlrKuT7EjDEMXDWz5pegFX6c1PTpfB0xpMYDX
tS3Hx2N4xk4VJ2BqM4Ov5ekRADCDrNHLjASMpzsDPqkCGEsc8Q1oxwucFEV6E5ez
ehR6J8jEtKKaTH1O7yQur3229I9ABSf44h3bm0UTosHAp4wra55n5GiJiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLsnB3jAXMkfG1eb16LnBA2abFRIMB8GA1UdIwQY
MBaAFC8Reto8uVFabYptzBXysLGn2b4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHhGNjJqeTVVVnB0aW0zTUZmS3dzYWZadmgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9lZmY0NGQtMjRmZC00Mzg0LTk1MDct
N2EwMzRkMTcwYjg1LzEvdXljSGVNQmN5UjhiVjV2WG91Y0VEWnBzVkVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9lZmY0NGQtMjRmZC00Mzg0LTk1MDctN2EwMzRkMTcwYjg1
LzEvTHhGNjJqeTVVVnB0aW0zTUZmS3dzYWZadmgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAjV0YMA0G
CSqGSIb3DQEBCwUAA4IBAQAfrnAJmLj1Zozuy6pIXvF6Zq8DRzFFWrGUTW9emqeE
EY/ebtCHreesAUWSRWFVfFSNDbPHG+l7LJw9dXbBxlqUFbxqCCpcq8nGf6T21vDE
j7KSmZV2t9UMuEpBSmxyqRQAcM5gTAYkr7GfQ2hR9AWN6V7jHaQbAz9YjZEUCkUR
N0w2eB0XN9Moz/MfSUkvg+Eq1yKGT89TLPec1ydnysF5spbFHWImGe5rfkc3sdSw
+O4g1uEUQmnF2YkkUblDhK1op2FVwUiZB9fwRnY0z0FGeyS0SF4s19BwiOWrur+X
0IEyDfYQZC+hVJPTzbFsuV75GQKcPkZJPVP0JL3O97P6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:47 2024 by rpki-client on console-ams.rpki-client.org