Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UzYmvY7y_ZqznNY0uFQSoWWPMYU.roa
File: UzYmvY7y_ZqznNY0uFQSoWWPMYU.roa (raw, json)
Hash identifier: 796ArCATVrKFPafoV17lswZC3CYiz7lSv9wJQZHz1SU=
Subject key identifier: 53:36:26:BD:8E:F2:FD:9A:B3:9C:D6:34:B8:54:12:A1:65:8F:31:85
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018823D55039DD05061E1BB4A98CE11D6E56
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UzYmvY7y_ZqznNY0uFQSoWWPMYU.roa
Signing time: Tue 16 May 2023 09:12:42 +0000
ROA not before: Tue 16 May 2023 09:12:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199470
IP address blocks: 194.103.166.0/24 maxlen: 24
194.103.164.0/24 maxlen: 24
194.103.162.0/24 maxlen: 24
194.103.160.0/24 maxlen: 24
194.103.165.0/24 maxlen: 24
194.103.163.0/24 maxlen: 24
194.103.161.0/24 maxlen: 24
194.103.170.0/24 maxlen: 24
194.103.168.0/24 maxlen: 24
194.103.172.0/24 maxlen: 24
194.103.169.0/24 maxlen: 24
194.103.167.0/24 maxlen: 24
194.103.171.0/24 maxlen: 24
194.103.178.0/24 maxlen: 24
194.103.176.0/24 maxlen: 24
194.103.174.0/24 maxlen: 24
194.103.179.0/24 maxlen: 24
194.103.177.0/24 maxlen: 24
194.103.175.0/24 maxlen: 24
194.103.173.0/24 maxlen: 24
194.103.184.0/23 maxlen: 24
194.103.182.0/24 maxlen: 24
194.103.180.0/24 maxlen: 24
194.103.183.0/24 maxlen: 24
194.103.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:d5:50:39:dd:05:06:1e:1b:b4:a9:8c:e1:1d:6e:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 16 09:12:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=533626bd8ef2fd9ab39cd634b85412a1658f3185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:e6:2c:0a:7e:6a:be:95:2d:70:89:bd:61:7f:
2c:0c:68:63:93:ba:4f:58:a0:49:d6:d7:51:d7:83:
0f:9f:5a:10:f3:07:ee:b2:a0:8a:5d:fa:d3:7b:21:
ab:dc:d0:6d:55:7f:5c:a1:47:76:80:7d:41:15:bb:
e5:3f:68:89:92:cb:50:91:b0:86:61:a2:db:ee:bc:
de:e6:a5:45:05:2a:32:c9:14:be:1b:37:85:05:39:
a2:20:43:6d:34:46:4b:88:f3:79:81:88:56:69:3d:
b2:31:23:44:c2:3f:7a:60:cb:79:84:81:19:17:aa:
b3:4c:89:25:3d:da:ab:ef:43:46:30:e4:26:21:69:
3a:ee:a4:0c:97:dd:f8:bc:e6:57:a3:56:4d:6e:f0:
55:7f:52:56:da:0f:ef:93:43:10:b4:ca:88:74:a1:
11:77:8b:6e:98:a5:03:73:80:4b:f5:bd:69:3b:80:
b6:25:31:8c:1e:d5:89:d0:d1:f6:d1:c6:3b:5f:c0:
76:32:ee:be:3b:a8:a1:50:4e:f5:28:95:54:e7:85:
0d:70:a6:db:b7:af:47:82:0e:bd:53:d4:2b:a8:46:
c0:4d:45:3e:a0:64:b8:9d:52:d4:de:bb:32:a6:93:
5c:15:4a:6f:7a:68:79:84:e5:b1:2c:15:ce:38:b9:
3b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:36:26:BD:8E:F2:FD:9A:B3:9C:D6:34:B8:54:12:A1:65:8F:31:85
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UzYmvY7y_ZqznNY0uFQSoWWPMYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.103.160.0-194.103.185.255
Signature Algorithm: sha256WithRSAEncryption
5a:a1:5b:4f:c1:35:84:9a:9b:b9:d5:a8:01:f0:f5:b4:5c:c4:
b5:7f:bb:77:e4:c3:0a:f3:08:ab:de:5f:b8:89:8a:95:2d:34:
c2:21:bb:6a:78:35:9c:58:a4:2b:c3:9e:24:df:83:ad:41:1b:
18:84:7c:83:86:ac:55:23:2c:d0:3b:4b:59:39:1b:3c:72:2f:
99:7d:1f:dd:ab:75:b7:90:61:eb:43:76:7e:ef:80:1d:38:82:
b0:93:d2:b4:62:8e:24:09:bc:c9:89:a3:0f:66:05:09:cb:fc:
33:c4:64:f5:21:c3:b3:bd:b5:f2:f3:d4:93:34:66:dc:4f:87:
87:8a:1f:96:3c:b2:d2:d8:52:18:64:36:f7:d8:fc:ae:db:89:
50:b8:a9:d7:d0:de:2b:36:76:34:e9:e7:11:7e:b3:05:82:87:
81:70:ad:91:7f:39:4c:68:b3:32:de:8a:60:68:d9:00:36:c3:
cb:11:a5:26:64:2f:ba:bc:db:91:03:d4:54:23:46:f3:2c:7f:
fa:e9:7b:4f:1c:f8:18:66:73:ef:bf:42:f3:65:f6:53:85:dc:
7d:00:d3:a0:ad:77:b1:f8:83:98:ee:47:d5:ce:a3:f7:e8:1c:
99:6e:a5:8e:21:d5:0f:8d:f6:99:31:74:8b:88:3e:d3:3b:c5:
66:d7:60:bd
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYgj1VA53QUGHhu0qYzhHW5WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjMwNTE2MDkxMjQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzM2MjZiZDhlZjJmZDlhYjM5Y2Q2MzRiODU0MTJhMTY1OGYzMTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg+YsCn5qvpUtcIm9YX8sDGhjk7pP
WKBJ1tdR14MPn1oQ8wfusqCKXfrTeyGr3NBtVX9coUd2gH1BFbvlP2iJkstQkbCG
YaLb7rze5qVFBSoyyRS+GzeFBTmiIENtNEZLiPN5gYhWaT2yMSNEwj96YMt5hIEZ
F6qzTIklPdqr70NGMOQmIWk67qQMl934vOZXo1ZNbvBVf1JW2g/vk0MQtMqIdKER
d4tumKUDc4BL9b1pO4C2JTGMHtWJ0NH20cY7X8B2Mu6+O6ihUE71KJVU54UNcKbb
t69Hgg69U9QrqEbATUU+oGS4nVLU3rsyppNcFUpvemh5hOWxLBXOOLk7iwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFFM2Jr2O8v2as5zWNLhUEqFljzGFMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvVXpZbXZZN3lfWnF6bk5ZMHVGUVNvV1dQTVlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAXCZ6AD
BAHCZ7gwDQYJKoZIhvcNAQELBQADggEBAFqhW0/BNYSam7nVqAHw9bRcxLV/u3fk
wwrzCKveX7iJipUtNMIhu2p4NZxYpCvDniTfg61BGxiEfIOGrFUjLNA7S1k5Gzxy
L5l9H92rdbeQYetDdn7vgB04grCT0rRijiQJvMmJow9mBQnL/DPEZPUhw7O9tfLz
1JM0ZtxPh4eKH5Y8stLYUhhkNvfY/K7biVC4qdfQ3is2djTp5xF+swWCh4FwrZF/
OUxoszLeimBo2QA2w8sRpSZkL7q825ED1FQjRvMsf/rpe08c+Bhmc++/QvNl9lOF
3H0A06Ctd7H4g5juR9XOo/foHJlupY4h1Q+N9pkxdIuIPtM7xWbXYL0=
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:20 2024 by rpki-client on console-ams.rpki-client.org