Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uskzAwgaNY16LJLb-gj2k-5-L1M.roa
File: uskzAwgaNY16LJLb-gj2k-5-L1M.roa (raw, json)
Hash identifier: 5i4VY3KjQgnS1SY77MtchaWO9I1FEpD5oxGENUaJdng=
Subject key identifier: BA:C9:33:03:08:1A:35:8D:7A:2C:92:DB:FA:08:F6:93:EE:7E:2F:53
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 01905158D5A3FD6C244391612DAE1B719AD8
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uskzAwgaNY16LJLb-gj2k-5-L1M.roa
Signing time: Tue 25 Jun 2024 21:41:34 +0000
ROA not before: Tue 25 Jun 2024 21:41:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.197.135.0/24 maxlen: 24
2a06:e881:650f::/48 maxlen: 48
2a06:e881:7340::/42 maxlen: 48
2a06:e881:73ef::/48 maxlen: 48
2a06:e881:73ff::/48 maxlen: 48
2a06:e881:9200::/45 maxlen: 48
2a06:e881:9208::/45 maxlen: 48
2a06:e881:9300::/44 maxlen: 48
2a06:e881:9600::/48 maxlen: 48
2a06:e881:9700::/44 maxlen: 44
2a06:e881:9700::/48 maxlen: 48
2a06:e881:9701::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:51:58:d5:a3:fd:6c:24:43:91:61:2d:ae:1b:71:9a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jun 25 21:41:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bac93303081a358d7a2c92dbfa08f693ee7e2f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9f:1b:e8:7d:8f:5e:24:3a:98:91:7e:f6:16:
3b:fc:c8:c4:7f:07:2c:38:cb:fa:cc:61:06:6f:a0:
28:e2:75:fd:ca:a5:1d:23:b6:cc:5d:a9:57:bd:d5:
90:ea:70:1a:5f:78:c6:33:26:7a:95:a4:a8:d3:4e:
a9:51:37:7d:e1:ae:97:cb:ed:d0:9d:d2:58:b0:93:
9f:a4:77:9b:07:12:89:66:5b:57:8f:2b:eb:eb:c7:
13:51:3b:f5:9f:e6:be:1b:89:5d:92:93:88:61:d4:
e5:19:83:4a:52:70:ea:1c:b1:f1:06:02:dd:b7:b0:
02:12:ba:11:05:cb:92:0f:ff:16:b7:47:5a:b1:f4:
51:31:60:c1:cc:9e:dd:25:d0:de:51:a3:20:05:24:
25:4d:27:2f:5f:cd:d8:86:d5:bb:24:1f:a5:29:ab:
4f:dd:f4:ec:52:4d:08:aa:86:6a:bd:cf:8b:51:0d:
af:1f:84:9b:e9:e3:7f:de:43:cb:2b:57:6d:b0:f0:
9a:96:8c:da:81:47:7e:dc:8f:34:52:24:9d:a6:03:
a6:78:76:4a:80:3e:2b:6f:e8:be:03:27:96:c3:05:
63:11:b9:0f:38:02:2c:45:77:6c:bd:ac:bb:aa:5f:
9c:46:02:ff:43:31:41:3e:d5:76:a2:ca:b6:b9:b2:
10:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C9:33:03:08:1A:35:8D:7A:2C:92:DB:FA:08:F6:93:EE:7E:2F:53
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uskzAwgaNY16LJLb-gj2k-5-L1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.135.0/24
IPv6:
2a06:e881:650f::/48
2a06:e881:7340::/42
2a06:e881:73ef::/48
2a06:e881:73ff::/48
2a06:e881:9200::/44
2a06:e881:9300::/44
2a06:e881:9600::/48
2a06:e881:9700::/44
Signature Algorithm: sha256WithRSAEncryption
18:c4:cd:25:9e:34:c6:95:1f:52:68:00:ad:8f:09:0b:bd:a8:
7f:bf:91:69:46:d6:5b:2d:8c:9f:19:63:61:86:75:15:ca:de:
1e:80:50:05:62:60:90:a3:f0:f3:4e:13:bb:ed:52:7a:82:22:
7f:39:37:bd:52:60:56:c5:78:2d:9b:5d:0a:e4:8d:f0:27:60:
f9:7f:2e:85:5d:d0:7a:8d:a7:02:33:4f:e3:c0:9f:53:e1:87:
ad:fe:75:fd:42:d5:ff:a3:37:ec:89:02:1e:3a:e1:49:cf:2d:
1a:af:21:00:1a:e9:b6:ea:1c:56:88:ca:b5:72:da:55:ca:21:
9e:6e:74:98:9c:69:e7:da:12:9c:28:28:58:f8:02:1d:3e:80:
b7:6b:1b:69:27:99:9d:35:6c:34:a7:f4:f1:79:6e:12:f5:c4:
c4:1a:ee:db:71:fb:a7:d1:6c:a9:df:65:3a:7b:31:82:9b:c6:
97:94:7e:1c:38:67:f7:66:95:0b:38:d0:5e:61:e4:c8:9b:ca:
49:b1:63:e6:85:53:53:f5:aa:24:c2:ec:4d:d3:ba:95:1d:87:
1a:f8:6c:a9:35:96:ed:07:62:fe:6f:13:59:40:ad:b9:a9:63:
9b:9d:59:c5:f6:d9:99:fc:db:e6:f7:2e:b3:c5:59:22:25:c4:
af:09:e7:31
-----BEGIN CERTIFICATE-----
MIIFTTCCBDWgAwIBAgISAZBRWNWj/WwkQ5FhLa4bcZrYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl
ZDc5NTQwHhcNMjQwNjI1MjE0MTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWM5MzMwMzA4MWEzNThkN2EyYzkyZGJmYTA4ZjY5M2VlN2UyZjUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAip8b6H2PXiQ6mJF+9hY7/MjEfwcs
OMv6zGEGb6Ao4nX9yqUdI7bMXalXvdWQ6nAaX3jGMyZ6laSo006pUTd94a6Xy+3Q
ndJYsJOfpHebBxKJZltXjyvr68cTUTv1n+a+G4ldkpOIYdTlGYNKUnDqHLHxBgLd
t7ACEroRBcuSD/8Wt0dasfRRMWDBzJ7dJdDeUaMgBSQlTScvX83YhtW7JB+lKatP
3fTsUk0IqoZqvc+LUQ2vH4Sb6eN/3kPLK1dtsPCalozagUd+3I80UiSdpgOmeHZK
gD4rb+i+AyeWwwVjEbkPOAIsRXdsvay7ql+cRgL/QzFBPtV2osq2ubIQWwIDAQAB
o4ICWTCCAlUwHQYDVR0OBBYEFLrJMwMIGjWNeiyS2/oI9pPufi9TMB8GA1UdIwQY
MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt
M2Q5MWVkZTViMmIxLzEvdXNrekF3Z2FOWTE2TEpMYi1najJrLTUtTDFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx
LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjAMBAIAATAGAwQAucWHME4E
AgACMEgDBwAqBuiBZQ8DBwYqBuiBc0ADBwAqBuiBc+8DBwAqBuiBc/8DBwQqBuiB
kgADBwQqBuiBkwADBwAqBuiBlgADBwQqBuiBlwAwDQYJKoZIhvcNAQELBQADggEB
ABjEzSWeNMaVH1JoAK2PCQu9qH+/kWlG1lstjJ8ZY2GGdRXK3h6AUAViYJCj8PNO
E7vtUnqCIn85N71SYFbFeC2bXQrkjfAnYPl/LoVd0HqNpwIzT+PAn1Phh63+df1C
1f+jN+yJAh464UnPLRqvIQAa6bbqHFaIyrVy2lXKIZ5udJicaefaEpwoKFj4Ah0+
gLdrG2knmZ01bDSn9PF5bhL1xMQa7ttx+6fRbKnfZTp7MYKbxpeUfhw4Z/dmlQs4
0F5h5MibykmxY+aFU1P1qiTC7E3TupUdhxr4bKk1lu0HYv5vE1lArbmpY5udWcX2
2Zn82+b3LrPFWSIlxK8J5zE=
-----END CERTIFICATE-----
Generated at Fri Jul 26 14:45:33 2024 by rpki-client on console-ams.rpki-client.org