Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uLUpk-06yOtuQVCc7CAm_I5VdWo.roa
File: uLUpk-06yOtuQVCc7CAm_I5VdWo.roa (raw, json)
Hash identifier: tb8tFMgzwk1oqap+RXWxPcP8ePSZCDroJ8QbJD3OtlU=
Subject key identifier: B8:B5:29:93:ED:3A:C8:EB:6E:41:50:9C:EC:20:26:FC:8E:55:75:6A
Certificate issuer: /CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Certificate serial: 018B66988EDBE9C3E26401399CCD215C1F23
Authority key identifier: D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uLUpk-06yOtuQVCc7CAm_I5VdWo.roa
Signing time: Wed 25 Oct 2023 11:29:15 +0000
ROA not before: Wed 25 Oct 2023 11:29:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 217.147.180.0/24 maxlen: 24
217.147.181.0/24 maxlen: 24
2a0b:2900:ff00::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:66:98:8e:db:e9:c3:e2:64:01:39:9c:cd:21:5c:1f:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d87821a7c8761e08121e70c9ff42ff9b6ad34e51
Validity
Not Before: Oct 25 11:29:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8b52993ed3ac8eb6e41509cec2026fc8e55756a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ea:55:35:01:51:ab:ea:aa:01:51:10:f8:27:
c2:5d:3e:97:21:99:db:fc:20:95:45:01:da:45:dc:
b4:51:7e:63:0d:96:17:03:5f:03:0b:92:49:fe:4e:
b1:f4:64:b1:20:4f:94:04:81:a4:8f:a2:c2:11:dc:
7c:7f:20:44:f5:60:84:3f:b4:19:80:6b:9f:a5:a0:
d3:e0:12:74:c9:5e:fb:c5:9b:c2:b3:b2:56:f4:8d:
1a:a0:92:69:ed:a8:09:1e:db:ef:40:a3:bc:0f:a7:
9f:23:7f:11:ad:a7:52:46:e7:f7:75:51:ef:02:73:
f7:8f:28:66:7b:ba:43:b7:73:58:d6:a2:4e:2d:bf:
28:2a:56:bc:92:a5:dd:e3:f0:9c:28:0e:0f:85:20:
45:6f:8d:6f:6b:9f:57:23:14:10:c2:a4:55:8b:f6:
7b:43:7d:3f:69:a6:da:fc:40:ce:58:f7:e6:e3:82:
ac:eb:85:3a:6e:9b:5b:ec:3e:82:8c:db:51:40:32:
b1:22:d0:a8:67:6b:00:2c:4f:e1:f5:3d:d4:48:f0:
28:63:48:7a:c8:60:42:09:51:57:88:0f:4b:6c:63:
8e:b7:60:73:c2:86:4f:dd:83:f5:90:1b:82:ca:5b:
b5:f8:61:30:90:6f:d0:13:b1:b2:43:96:e6:6e:c8:
5d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:B5:29:93:ED:3A:C8:EB:6E:41:50:9C:EC:20:26:FC:8E:55:75:6A
X509v3 Authority Key Identifier:
keyid:D8:78:21:A7:C8:76:1E:08:12:1E:70:C9:FF:42:FF:9B:6A:D3:4E:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hghp8h2HggSHnDJ_0L_m2rTTlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/uLUpk-06yOtuQVCc7CAm_I5VdWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/e5725b-3128-44b3-9f83-5aa620a81149/1/2Hghp8h2HggSHnDJ_0L_m2rTTlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.180.0/23
IPv6:
2a0b:2900:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
28:4f:24:1b:b5:8d:a4:9f:05:7d:94:8f:aa:33:57:b3:19:f0:
fb:3e:5d:be:08:64:69:05:49:0c:09:bb:39:97:96:3e:1b:2e:
15:0e:19:13:51:cd:e6:cc:3a:aa:a9:f6:65:38:ea:9d:91:ee:
d8:be:06:d4:51:b9:7b:52:da:ac:89:c1:59:49:f4:0b:c1:61:
6e:ad:f5:b2:65:36:09:a2:12:b5:d4:81:57:86:f9:6c:a3:f8:
f2:22:e6:59:4d:e8:22:f3:55:a0:8f:e0:67:ad:12:78:b7:1e:
20:0e:da:58:f1:68:1c:0b:4d:f3:0f:a5:e7:af:90:f5:16:bd:
2c:b9:ab:f8:7a:91:9e:45:5d:54:47:7d:e5:45:07:f2:80:6a:
07:81:c0:c0:f2:b0:f4:e2:de:5f:e6:a4:07:4d:70:8f:4a:4c:
31:26:40:9a:b2:15:b3:d2:40:af:8a:a9:f8:fb:1f:d0:33:45:
10:fa:0b:e0:67:d1:b8:c1:31:6e:7c:24:77:75:43:e0:ce:b7:
ec:38:7e:08:0d:32:9f:20:ff:02:61:2e:a0:9d:50:16:dd:9a:
61:14:2c:a3:ef:21:d1:41:c3:69:00:95:85:a2:76:07:fc:9d:
d3:eb:14:e0:f1:fe:f7:fb:5a:ca:44:ba:f6:fb:98:05:c2:24:
3d:d9:a0:5b
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYtmmI7b6cPiZAE5nM0hXB8jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4NzgyMWE3Yzg3NjFlMDgxMjFlNzBjOWZmNDJmZjliNmFk
MzRlNTEwHhcNMjMxMDI1MTEyOTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGI1Mjk5M2VkM2FjOGViNmU0MTUwOWNlYzIwMjZmYzhlNTU3NTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOpVNQFRq+qqAVEQ+CfCXT6XIZnb
/CCVRQHaRdy0UX5jDZYXA18DC5JJ/k6x9GSxIE+UBIGkj6LCEdx8fyBE9WCEP7QZ
gGufpaDT4BJ0yV77xZvCs7JW9I0aoJJp7agJHtvvQKO8D6efI38RradSRuf3dVHv
AnP3jyhme7pDt3NY1qJOLb8oKla8kqXd4/CcKA4PhSBFb41va59XIxQQwqRVi/Z7
Q30/aaba/EDOWPfm44Ks64U6bptb7D6CjNtRQDKxItCoZ2sALE/h9T3USPAoY0h6
yGBCCVFXiA9LbGOOt2BzwoZP3YP1kBuCylu1+GEwkG/QE7GyQ5bmbshdlwIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFLi1KZPtOsjrbkFQnOwgJvyOVXVqMB8GA1UdIwQY
MBaAFNh4IafIdh4IEh5wyf9C/5tq005RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkhnaHA4aDJIZ2dTSG5ESl8wTF9tMnJUVGxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni9lNTcyNWItMzEyOC00NGIzLTlmODMt
NWFhNjIwYTgxMTQ5LzEvdUxVcGstMDZ5T3R1UVZDYzdDQW1fSTVWZFdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ni9lNTcyNWItMzEyOC00NGIzLTlmODMtNWFhNjIwYTgxMTQ5
LzEvMkhnaHA4aDJIZ2dTSG5ESl8wTF9tMnJUVGxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQB2ZO0MA4E
AgACMAgDBgAqCykA/zANBgkqhkiG9w0BAQsFAAOCAQEAKE8kG7WNpJ8FfZSPqjNX
sxnw+z5dvghkaQVJDAm7OZeWPhsuFQ4ZE1HN5sw6qqn2ZTjqnZHu2L4G1FG5e1La
rInBWUn0C8Fhbq31smU2CaIStdSBV4b5bKP48iLmWU3oIvNVoI/gZ60SeLceIA7a
WPFoHAtN8w+l56+Q9Ra9LLmr+HqRnkVdVEd95UUH8oBqB4HAwPKw9OLeX+akB01w
j0pMMSZAmrIVs9JAr4qp+Psf0DNFEPoL4GfRuMExbnwkd3VD4M637Dh+CA0ynyD/
AmEuoJ1QFt2aYRQso+8h0UHDaQCVhaJ2B/yd0+sU4PH+9/taykS69vuYBcIkPdmg
Ww==
-----END CERTIFICATE-----
Generated at Wed Oct 25 14:32:45 2023 by rpki-client on console-fra.rpki-client.org