Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UMo6tddtGc_xlXGbjfyrDBitlUY.roa
File: UMo6tddtGc_xlXGbjfyrDBitlUY.roa (raw, json)
Hash identifier: ISOxvpi6nfRkp5UhSOdQ4vNmth1u3k+fGAbN5TzRoyc=
Subject key identifier: 50:CA:3A:B5:D7:6D:19:CF:F1:95:71:9B:8D:FC:AB:0C:18:AD:95:46
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018ABC1EA74E1BBA732A4168523983552412
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UMo6tddtGc_xlXGbjfyrDBitlUY.roa
Signing time: Fri 22 Sep 2023 09:00:40 +0000
ROA not before: Fri 22 Sep 2023 09:00:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208453
IP address blocks: 193.181.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bc:1e:a7:4e:1b:ba:73:2a:41:68:52:39:83:55:24:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Sep 22 09:00:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50ca3ab5d76d19cff195719b8dfcab0c18ad9546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d1:2b:be:dd:34:df:cd:35:94:7c:83:78:89:
28:d6:95:e2:6b:db:fa:ce:d2:18:e6:ef:fb:d6:84:
de:54:61:aa:66:d3:01:e9:68:08:53:c1:aa:ee:a1:
cc:6f:30:38:37:46:4e:14:05:42:61:3d:08:13:ea:
30:da:74:65:8c:fc:18:3f:b1:d2:f0:35:7e:da:2c:
f3:55:41:e9:ae:31:2a:84:e5:b4:c8:5e:70:e9:4f:
b0:2f:56:64:7c:de:b2:58:f1:29:68:2c:58:9e:f4:
17:e2:06:ac:da:e1:9f:ac:ec:42:22:dc:1d:83:87:
45:26:bd:9a:fd:4c:46:31:7e:3a:2f:27:d4:d2:03:
61:08:5b:ca:1c:23:ee:98:8e:f1:63:1b:19:bd:25:
a0:80:c6:7c:cd:ed:c5:dd:6b:75:14:21:4e:14:6e:
bc:77:bd:e2:07:58:dc:e6:c1:41:dd:c4:ed:25:8e:
16:63:32:c1:29:c9:d0:ec:ca:ed:75:ea:e9:9c:af:
83:34:59:ef:94:23:8c:94:3c:c9:f7:18:b0:fb:f2:
0c:85:04:23:96:75:21:3a:d5:a7:72:bc:7d:f7:85:
2c:57:1d:73:09:e8:70:b0:9e:8c:95:d1:5e:bd:3d:
d3:11:62:43:bb:d1:29:b0:72:85:d1:fc:4b:ae:e0:
1e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:CA:3A:B5:D7:6D:19:CF:F1:95:71:9B:8D:FC:AB:0C:18:AD:95:46
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UMo6tddtGc_xlXGbjfyrDBitlUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.23.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f8:61:a8:b2:a1:49:eb:de:06:f6:23:37:54:58:5a:9c:61:
ef:72:cc:ff:7a:03:84:cf:1c:fc:8c:99:e7:88:17:98:c4:76:
5c:72:38:c2:03:74:87:36:5d:08:10:fc:39:ac:2e:e6:28:cb:
0f:61:df:bd:32:b7:dd:6e:f9:b2:c5:81:c8:c1:02:61:45:5a:
7e:00:70:e9:5d:ec:82:c9:c6:d7:8b:2b:8c:a6:0b:dc:7f:84:
32:c2:35:47:00:09:00:d4:c6:95:a3:17:17:d9:3c:35:fd:0a:
3b:ef:ba:a2:f5:16:c5:f1:80:72:cb:23:00:f4:53:4e:a6:18:
0d:81:c0:4a:91:17:ed:f4:c9:07:aa:3b:e4:10:27:91:98:11:
9b:f1:bd:64:c0:a8:8b:fd:ca:18:4f:1a:3c:86:0b:4d:4b:c5:
af:1e:02:4b:7f:52:58:c4:7a:cf:1d:32:cb:cb:8b:1b:b1:b3:
ae:91:68:cd:1d:81:0d:81:36:13:af:f3:c0:bb:73:df:87:57:
d0:36:c8:a4:44:17:83:d9:00:2b:64:61:99:31:67:5b:7c:ad:
f5:87:4f:70:63:64:b0:11:d4:9e:f0:28:f8:d7:59:bb:e4:eb:
79:db:33:e4:52:11:ca:01:6a:70:78:79:fb:16:c1:a3:db:de:
91:8e:5a:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYq8HqdOG7pzKkFoUjmDVSQSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjMwOTIyMDkwMDQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGNhM2FiNWQ3NmQxOWNmZjE5NTcxOWI4ZGZjYWIwYzE4YWQ5NTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dErvt003801lHyDeIko1pXia9v6
ztIY5u/71oTeVGGqZtMB6WgIU8Gq7qHMbzA4N0ZOFAVCYT0IE+ow2nRljPwYP7HS
8DV+2izzVUHprjEqhOW0yF5w6U+wL1ZkfN6yWPEpaCxYnvQX4gas2uGfrOxCItwd
g4dFJr2a/UxGMX46LyfU0gNhCFvKHCPumI7xYxsZvSWggMZ8ze3F3Wt1FCFOFG68
d73iB1jc5sFB3cTtJY4WYzLBKcnQ7MrtderpnK+DNFnvlCOMlDzJ9xiw+/IMhQQj
lnUhOtWncrx994UsVx1zCehwsJ6MldFevT3TEWJDu9EpsHKF0fxLruAeywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFDKOrXXbRnP8ZVxm438qwwYrZVGMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvVU1vNnRkZHRHY194bFhHYmpmeXJEQml0bFVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbUXMA0G
CSqGSIb3DQEBCwUAA4IBAQB8+GGosqFJ694G9iM3VFhanGHvcsz/egOEzxz8jJnn
iBeYxHZccjjCA3SHNl0IEPw5rC7mKMsPYd+9MrfdbvmyxYHIwQJhRVp+AHDpXeyC
ycbXiyuMpgvcf4QywjVHAAkA1MaVoxcX2Tw1/Qo777qi9RbF8YByyyMA9FNOphgN
gcBKkRft9MkHqjvkECeRmBGb8b1kwKiL/coYTxo8hgtNS8WvHgJLf1JYxHrPHTLL
y4sbsbOukWjNHYENgTYTr/PAu3Pfh1fQNsikRBeD2QArZGGZMWdbfK31h09wY2Sw
EdSe8Cj411m75Ot52zPkUhHKAWpweHn7FsGj296Rjlqz
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:53 2024 by rpki-client on console-fra.rpki-client.org