Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ujPZYeB3-7z0a-wUtKYXUzYIWuE.roa
File: ujPZYeB3-7z0a-wUtKYXUzYIWuE.roa (raw, json)
Hash identifier: AGsxwMP8QgCOVJL6qnNMsFFgJjf5d1LQSa/MEr4K6Cs=
Subject key identifier: BA:33:D9:61:E0:77:FB:BC:F4:6B:EC:14:B4:A6:17:53:36:08:5A:E1
Certificate issuer: /CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Certificate serial: 018879094B47E879C75D9F9C46A9BE116DC5
Authority key identifier: B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ujPZYeB3-7z0a-wUtKYXUzYIWuE.roa
Signing time: Thu 01 Jun 2023 22:17:12 +0000
ROA not before: Thu 01 Jun 2023 22:17:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.69.220.0/22 maxlen: 24
80.90.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 13:27:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:79:09:4b:47:e8:79:c7:5d:9f:9c:46:a9:be:11:6d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9ea8936f8e53063b4b3bdf0f3b15b2ae667ef13
Validity
Not Before: Jun 1 22:17:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba33d961e077fbbcf46bec14b4a6175336085ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d2:0d:bc:b7:3b:d2:58:97:d6:04:b8:b2:1e:
5e:85:fc:7e:60:16:3f:f5:81:d0:cb:9d:b3:90:91:
4b:71:94:f9:b8:f9:de:e8:45:81:41:6c:7d:05:f2:
e9:82:d1:f2:a3:7b:65:c5:55:50:9e:b6:25:d4:15:
01:65:f0:a5:18:b1:4d:c8:be:a1:2e:97:32:78:a1:
d2:33:0d:cb:2e:58:40:3f:dd:a4:50:d1:c9:e9:4e:
47:54:90:31:4a:57:23:51:b3:27:72:96:cf:e6:16:
25:61:6c:25:4e:59:6e:ff:11:f5:0d:93:48:88:9b:
d1:33:0b:3a:ec:4f:1e:58:6a:41:df:cc:73:21:fe:
29:62:98:fa:4e:9c:f6:f9:e7:a8:21:26:4f:b5:e1:
6b:a0:50:49:7c:37:4b:21:0b:41:d2:13:2b:ac:6e:
50:4e:b2:30:c9:53:43:58:9b:47:4e:ec:aa:b0:d1:
3f:23:cb:dc:14:3c:27:18:d3:a6:64:25:cd:6f:f2:
6c:bf:07:d2:02:66:ae:a6:8f:2d:ef:66:35:30:3c:
ba:b3:07:05:bc:12:f9:0a:6c:cd:0e:76:6c:61:af:
69:03:cc:2b:4e:ec:f1:b9:6f:25:6b:00:18:6e:1b:
0e:10:6c:77:9e:a9:45:97:45:b9:36:fa:c6:f0:73:
5f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:33:D9:61:E0:77:FB:BC:F4:6B:EC:14:B4:A6:17:53:36:08:5A:E1
X509v3 Authority Key Identifier:
keyid:B9:EA:89:36:F8:E5:30:63:B4:B3:BD:F0:F3:B1:5B:2A:E6:67:EF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqJNvjlMGO0s73w87FbKuZn7xM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ujPZYeB3-7z0a-wUtKYXUzYIWuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/ec29e2-3440-409a-986a-b250997fc75d/1/ueqJNvjlMGO0s73w87FbKuZn7xM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.90.178.0/24
185.69.220.0/22
Signature Algorithm: sha256WithRSAEncryption
95:ef:8e:de:8f:ac:23:2e:bd:95:f7:57:bb:28:00:e2:ff:35:
54:dd:be:79:b1:03:8f:ec:98:41:8b:e2:f4:29:3b:4e:37:f1:
19:a6:91:fb:ba:4a:ab:8b:8b:c9:4b:ef:cc:8a:22:48:77:ec:
58:43:f2:a8:3f:d5:58:a7:64:a0:bb:99:c2:c2:23:a3:17:75:
b2:19:d3:cf:f2:b6:3e:2a:9b:34:db:15:1f:1f:48:bb:f1:6e:
c0:ee:58:10:7f:54:4a:7a:23:60:a4:97:9c:07:05:f2:e2:6d:
43:c5:14:e8:5e:08:5c:d2:9f:f0:93:1b:af:21:10:f8:cf:07:
4d:8d:d5:57:2a:a0:bf:1f:6e:73:da:e8:57:ce:60:73:a5:eb:
27:56:83:32:bb:a8:fd:42:80:4a:f1:c8:9d:d2:e0:3e:d5:2c:
c1:a5:9f:a4:1f:8f:e5:1c:59:f8:df:86:70:38:93:4f:8a:fc:
3c:46:14:6f:9a:5d:b6:39:74:4f:cc:a1:f3:33:18:11:37:80:
96:33:2b:98:e4:2a:f0:8b:d0:e3:1f:9b:07:4a:aa:37:62:f9:
f2:55:a3:27:b3:49:9b:5a:1f:48:2b:b6:f8:0a:fe:27:a9:71:
56:6f:0a:9c:6c:6f:55:99:2b:59:89:89:77:ea:3d:53:05:03:
55:1b:3e:90
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYh5CUtH6HnHXZ+cRqm+EW3FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZWE4OTM2ZjhlNTMwNjNiNGIzYmRmMGYzYjE1YjJhZTY2
N2VmMTMwHhcNMjMwNjAxMjIxNzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTMzZDk2MWUwNzdmYmJjZjQ2YmVjMTRiNGE2MTc1MzM2MDg1YWUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldINvLc70liX1gS4sh5ehfx+YBY/
9YHQy52zkJFLcZT5uPne6EWBQWx9BfLpgtHyo3tlxVVQnrYl1BUBZfClGLFNyL6h
LpcyeKHSMw3LLlhAP92kUNHJ6U5HVJAxSlcjUbMncpbP5hYlYWwlTllu/xH1DZNI
iJvRMws67E8eWGpB38xzIf4pYpj6Tpz2+eeoISZPteFroFBJfDdLIQtB0hMrrG5Q
TrIwyVNDWJtHTuyqsNE/I8vcFDwnGNOmZCXNb/JsvwfSAmaupo8t72Y1MDy6swcF
vBL5CmzNDnZsYa9pA8wrTuzxuW8lawAYbhsOEGx3nqlFl0W5NvrG8HNfBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLoz2WHgd/u89GvsFLSmF1M2CFrhMB8GA1UdIwQY
MBaAFLnqiTb45TBjtLO98POxWyrmZ+8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEt
YjI1MDk5N2ZjNzVkLzEvdWpQWlllQjMtN3owYS13VXRLWVhVellJV3VFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9lYzI5ZTItMzQ0MC00MDlhLTk4NmEtYjI1MDk5N2ZjNzVk
LzEvdWVxSk52amxNR08wczczdzg3RmJLdVpuN3hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUFqyAwQC
uUXcMA0GCSqGSIb3DQEBCwUAA4IBAQCV747ej6wjLr2V91e7KADi/zVU3b55sQOP
7JhBi+L0KTtON/EZppH7ukqri4vJS+/MiiJId+xYQ/KoP9VYp2Sgu5nCwiOjF3Wy
GdPP8rY+Kps02xUfH0i78W7A7lgQf1RKeiNgpJecBwXy4m1DxRToXghc0p/wkxuv
IRD4zwdNjdVXKqC/H25z2uhXzmBzpesnVoMyu6j9QoBK8cid0uA+1SzBpZ+kH4/l
HFn434ZwOJNPivw8RhRvml22OXRPzKHzMxgRN4CWMyuY5Crwi9DjH5sHSqo3Yvny
VaMns0mbWh9IK7b4Cv4nqXFWbwqcbG9VmStZiYl36j1TBQNVGz6Q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:15 2024 by rpki-client on console-fra.rpki-client.org