Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/UaujuljH0jFB7zOsONP_1TKcd_Y.roa
File: UaujuljH0jFB7zOsONP_1TKcd_Y.roa (raw, json)
Hash identifier: UBlhw14UsZT6Dskv8IFxP85c+71naD3E73JZ6ihqQlU=
Subject key identifier: 51:AB:A3:BA:58:C7:D2:31:41:EF:33:AC:38:D3:FF:D5:32:9C:77:F6
Certificate issuer: /CN=9ca8a132519a242949497363b8caa33e72c673f8
Certificate serial: 01856F1DA5DDD5D56A1B8518E2396E6AF14C
Authority key identifier: 9C:A8:A1:32:51:9A:24:29:49:49:73:63:B8:CA:A3:3E:72:C6:73:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKihMlGaJClJSXNjuMqjPnLGc_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/UaujuljH0jFB7zOsONP_1TKcd_Y.roa
Signing time: Sun 01 Jan 2023 20:54:51 +0000
ROA not before: Sun 01 Jan 2023 20:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211820
IP address blocks: 157.180.214.0/24 maxlen: 24
157.180.215.0/24 maxlen: 24
194.45.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:a5:dd:d5:d5:6a:1b:85:18:e2:39:6e:6a:f1:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ca8a132519a242949497363b8caa33e72c673f8
Validity
Not Before: Jan 1 20:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51aba3ba58c7d23141ef33ac38d3ffd5329c77f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:47:d8:aa:b9:87:a8:60:49:e3:8a:84:dc:63:
45:fb:19:4b:9c:7e:aa:a4:12:63:19:6a:a1:60:a0:
16:98:d4:9f:e4:d4:0a:ec:87:7a:bd:8b:2e:64:8f:
15:51:e9:a6:e5:28:31:fb:3d:25:fb:90:a4:78:0c:
08:6e:6f:0b:b2:61:6a:00:ae:a1:7f:a1:71:54:1b:
22:e1:5c:b1:c2:3c:92:b1:46:10:19:7a:81:cb:a1:
20:04:e5:b7:c3:50:49:90:bf:5b:9d:e2:32:3f:e2:
28:94:ef:03:a1:10:f0:d2:d3:2e:62:21:16:69:07:
e1:82:cb:a6:e8:47:71:40:22:17:6c:a9:18:c8:93:
31:e5:e8:b6:4b:fe:42:db:5c:c8:c4:ea:6f:8a:07:
5c:08:7e:9c:41:11:1f:d4:49:31:f2:36:86:dc:36:
e2:3d:aa:e8:8e:81:65:9a:ba:c2:1d:23:49:03:6d:
e3:d4:7d:0a:4c:41:eb:3e:d0:95:56:b6:74:ba:46:
2c:dc:b0:88:e4:8f:91:2e:5f:24:6a:2d:5e:57:bb:
62:c9:b1:5e:5f:9c:61:43:a3:4c:b3:c9:69:42:8f:
b0:e3:15:05:81:27:7a:78:78:58:cf:06:8a:7d:cc:
4f:44:95:3c:17:e5:8f:32:7c:ae:dd:23:45:60:cb:
72:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AB:A3:BA:58:C7:D2:31:41:EF:33:AC:38:D3:FF:D5:32:9C:77:F6
X509v3 Authority Key Identifier:
keyid:9C:A8:A1:32:51:9A:24:29:49:49:73:63:B8:CA:A3:3E:72:C6:73:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKihMlGaJClJSXNjuMqjPnLGc_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/UaujuljH0jFB7zOsONP_1TKcd_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/nKihMlGaJClJSXNjuMqjPnLGc_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.180.214.0/23
194.45.20.0/24
Signature Algorithm: sha256WithRSAEncryption
14:0b:b9:e4:80:37:1e:8b:e3:eb:66:27:2a:43:79:0f:1e:7c:
76:53:f9:02:ff:b2:74:58:ff:a8:1f:2f:86:b7:3b:a9:29:06:
bc:0c:2a:37:b4:b1:f9:b7:ad:0c:85:79:da:49:d2:71:9f:6a:
98:c0:8d:63:31:f1:55:c7:66:39:c5:eb:01:cc:2a:37:3a:86:
62:f7:2e:96:67:24:7c:26:4f:d0:6a:aa:2a:e5:86:14:50:ef:
5d:05:8f:6c:e5:28:2e:66:42:cc:c2:4e:c8:39:32:a9:82:46:
a8:4d:c7:1b:d5:d7:9b:13:21:d9:f8:76:54:ab:aa:e4:3c:c4:
f5:01:05:59:ad:3e:0a:02:2b:2d:63:85:91:de:9f:24:bd:fc:
9e:25:88:0d:a1:59:c5:3b:ea:39:94:74:29:21:90:66:8a:5b:
95:c1:2c:cc:1b:d8:b2:c6:b1:85:32:46:76:60:b2:23:84:bd:
fe:bd:02:0e:02:50:50:92:f8:cb:8d:9f:a6:c3:2a:5a:ed:f9:
2b:31:f3:84:d0:35:08:d6:d6:63:0e:9a:f9:fc:fd:72:4e:b0:
4a:24:b5:b9:5f:c7:f1:fe:ad:82:43:c0:28:61:10:d9:ab:f3:
80:8b:5f:e2:b0:c0:a4:fb:03:f3:6c:b9:09:34:22:0d:21:67:
d3:0a:de:2a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvHaXd1dVqG4UY4jluavFMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljYThhMTMyNTE5YTI0Mjk0OTQ5NzM2M2I4Y2FhMzNlNzJj
NjczZjgwHhcNMjMwMTAxMjA1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWFiYTNiYTU4YzdkMjMxNDFlZjMzYWMzOGQzZmZkNTMyOWM3N2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0fYqrmHqGBJ44qE3GNF+xlLnH6q
pBJjGWqhYKAWmNSf5NQK7Id6vYsuZI8VUemm5Sgx+z0l+5CkeAwIbm8LsmFqAK6h
f6FxVBsi4VyxwjySsUYQGXqBy6EgBOW3w1BJkL9bneIyP+IolO8DoRDw0tMuYiEW
aQfhgsum6EdxQCIXbKkYyJMx5ei2S/5C21zIxOpvigdcCH6cQREf1Ekx8jaG3Dbi
ParojoFlmrrCHSNJA23j1H0KTEHrPtCVVrZ0ukYs3LCI5I+RLl8kai1eV7tiybFe
X5xhQ6NMs8lpQo+w4xUFgSd6eHhYzwaKfcxPRJU8F+WPMnyu3SNFYMtyLQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFGro7pYx9IxQe8zrDjT/9UynHf2MB8GA1UdIwQY
MBaAFJyooTJRmiQpSUlzY7jKoz5yxnP4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbktpaE1sR2FKQ2xKU1hOanVNcWpQbkxHY19nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8zZTBlOWEtNTFmMy00OWRlLTlkMWIt
MDBjZDg2YWY4NDlkLzEvVWF1anVsakgwakZCN3pPc09OUF8xVEtjZF9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8zZTBlOWEtNTFmMy00OWRlLTlkMWItMDBjZDg2YWY4NDlk
LzEvbktpaE1sR2FKQ2xKU1hOanVNcWpQbkxHY19nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBnbTWAwQA
wi0UMA0GCSqGSIb3DQEBCwUAA4IBAQAUC7nkgDcei+PrZicqQ3kPHnx2U/kC/7J0
WP+oHy+GtzupKQa8DCo3tLH5t60MhXnaSdJxn2qYwI1jMfFVx2Y5xesBzCo3OoZi
9y6WZyR8Jk/Qaqoq5YYUUO9dBY9s5SguZkLMwk7IOTKpgkaoTccb1debEyHZ+HZU
q6rkPMT1AQVZrT4KAistY4WR3p8kvfyeJYgNoVnFO+o5lHQpIZBmiluVwSzMG9iy
xrGFMkZ2YLIjhL3+vQIOAlBQkvjLjZ+mwypa7fkrMfOE0DUI1tZjDpr5/P1yTrBK
JLW5X8fx/q2CQ8AoYRDZq/OAi1/isMCk+wPzbLkJNCINIWfTCt4q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:50 2024 by rpki-client on console-fra.rpki-client.org