Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/HU8aP6F3k5U0OSmjWSCZH-Xkfhg.roa
File: HU8aP6F3k5U0OSmjWSCZH-Xkfhg.roa (raw, json)
Hash identifier: EbHnDnFFBkCG9ovO2CeHF2FI/+wvYGGd8WwTRdCKo3g=
Subject key identifier: 1D:4F:1A:3F:A1:77:93:95:34:39:29:A3:59:20:99:1F:E5:E4:7E:18
Certificate issuer: /CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Certificate serial: 01884CB0398FB629660265A3A470DAA306D0
Authority key identifier: B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/HU8aP6F3k5U0OSmjWSCZH-Xkfhg.roa
Signing time: Wed 24 May 2023 07:36:37 +0000
ROA not before: Wed 24 May 2023 07:36:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 185.91.127.0/24 maxlen: 24
2a12:de40::/29 maxlen: 29
2a12:de41::/32 maxlen: 32
2a12:de40::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 09 Aug 2023 05:57:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:b0:39:8f:b6:29:66:02:65:a3:a4:70:da:a3:06:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9e6c41a2b04fcd8f8e95718fa7d2e12cc44ac1f
Validity
Not Before: May 24 07:36:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d4f1a3fa1779395343929a35920991fe5e47e18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:52:4d:3b:83:9a:29:1b:1a:58:5c:3d:01:
63:ef:03:e3:d2:a1:5b:e1:e2:79:d5:21:a7:ff:0d:
56:6d:d6:c8:d9:b4:cc:5d:c0:9f:c4:cc:ef:de:d8:
40:7a:20:0e:c0:3c:61:8f:cf:df:2d:9e:27:da:a5:
0e:88:e7:46:07:58:64:a5:30:ed:38:31:72:1b:50:
81:b3:e9:9b:f5:76:39:22:6c:b4:74:f1:7a:92:ab:
de:24:c4:11:b6:23:19:3f:e2:6d:16:77:89:91:22:
a3:48:49:bd:12:a6:90:f7:0f:8f:f5:53:77:36:c9:
74:06:95:0a:82:4f:18:19:d6:0b:9f:aa:ce:93:13:
0d:0e:0d:3c:78:23:ad:e9:79:8f:e5:09:c1:f4:73:
52:ce:d1:61:5b:80:46:cb:ac:74:ca:6b:ac:76:26:
31:d9:35:19:b6:2a:28:4e:8c:55:28:ce:79:72:59:
60:b6:65:4d:9e:ca:e7:50:8e:ab:b0:18:f5:0e:2b:
08:ed:73:f1:6e:70:9f:a4:be:0b:5a:f2:20:bd:be:
a2:5f:e0:c2:9f:67:b1:c9:92:1e:51:af:ff:cb:13:
c9:e1:41:b0:91:b1:f8:7a:07:45:09:51:56:cd:3c:
3c:f9:ef:57:14:20:95:f3:3a:6b:c0:5c:6c:8e:7b:
09:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4F:1A:3F:A1:77:93:95:34:39:29:A3:59:20:99:1F:E5:E4:7E:18
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:1A:2B:04:FC:D8:F8:E9:57:18:FA:7D:2E:12:CC:44:AC:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uebEGisE_Nj46VcY-n0uEsxErB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/HU8aP6F3k5U0OSmjWSCZH-Xkfhg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c261bf-6c6b-4b07-b5aa-c08c0446d613/1/uebEGisE_Nj46VcY-n0uEsxErB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.127.0/24
IPv6:
2a12:de40::/29
Signature Algorithm: sha256WithRSAEncryption
0c:f0:95:6f:3d:e9:18:c8:17:ed:d4:a6:83:d8:0e:68:18:08:
f5:d2:56:25:cc:62:75:68:78:7e:e4:6a:f5:a6:5b:fa:2c:ab:
0d:88:2d:c5:19:7b:8b:7d:3c:4f:7e:f5:22:a5:20:9e:51:0d:
d2:84:70:2c:3d:1e:02:bd:e1:5e:32:77:fe:a8:c9:bf:cb:e1:
95:6d:b7:1b:f8:cd:d1:4a:f6:25:44:51:35:4d:30:1b:bd:68:
c2:a4:27:1c:64:78:44:2c:13:ef:15:14:d9:10:6d:b2:cc:ba:
31:1f:e8:10:2e:10:fa:1f:70:05:d9:60:29:c8:81:ba:cd:f3:
53:82:5e:56:f9:1e:2f:f8:95:67:1e:9d:15:43:b9:9a:c8:7c:
28:3d:e1:71:65:19:1c:6a:e1:c2:98:37:a5:b5:77:c4:f9:0a:
a4:64:1d:f3:41:0f:1d:f6:8e:ae:6f:2e:c9:00:41:12:8d:f5:
84:16:69:3e:25:ef:3f:f7:85:8b:c2:03:83:cf:d6:af:41:c3:
b9:d9:63:2b:88:0b:e7:a6:dc:cb:da:c6:9b:b3:f0:ed:03:a6:
35:e2:98:79:2c:c5:d7:b7:e1:f5:67:b5:08:de:07:dd:c3:5e:
31:4b:b7:ca:aa:54:6a:6f:78:5e:00:bf:8c:33:6f:ee:ac:1b:
a5:bf:9c:48
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYhMsDmPtilmAmWjpHDaowbQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5ZTZjNDFhMmIwNGZjZDhmOGU5NTcxOGZhN2QyZTEyY2M0
NGFjMWYwHhcNMjMwNTI0MDczNjM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDRmMWEzZmExNzc5Mzk1MzQzOTI5YTM1OTIwOTkxZmU1ZTQ3ZTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW1STTuDmikbGlhcPQFj7wPj0qFb
4eJ51SGn/w1WbdbI2bTMXcCfxMzv3thAeiAOwDxhj8/fLZ4n2qUOiOdGB1hkpTDt
ODFyG1CBs+mb9XY5Imy0dPF6kqveJMQRtiMZP+JtFneJkSKjSEm9EqaQ9w+P9VN3
Nsl0BpUKgk8YGdYLn6rOkxMNDg08eCOt6XmP5QnB9HNSztFhW4BGy6x0ymusdiYx
2TUZtiooToxVKM55cllgtmVNnsrnUI6rsBj1DisI7XPxbnCfpL4LWvIgvb6iX+DC
n2exyZIeUa//yxPJ4UGwkbH4egdFCVFWzTw8+e9XFCCV8zprwFxsjnsJSQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFB1PGj+hd5OVNDkpo1kgmR/l5H4YMB8GA1UdIwQY
MBaAFLnmxBorBPzY+OlXGPp9LhLMRKwfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWViRUdpc0VfTmo0NlZjWS1uMHVFc3hFckI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jMjYxYmYtNmM2Yi00YjA3LWI1YWEt
YzA4YzA0NDZkNjEzLzEvSFU4YVA2RjNrNVUwT1NtaldTQ1pILVhrZmhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9jMjYxYmYtNmM2Yi00YjA3LWI1YWEtYzA4YzA0NDZkNjEz
LzEvdWViRUdpc0VfTmo0NlZjWS1uMHVFc3hFckI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuVt/MA0E
AgACMAcDBQMqEt5AMA0GCSqGSIb3DQEBCwUAA4IBAQAM8JVvPekYyBft1KaD2A5o
GAj10lYlzGJ1aHh+5Gr1plv6LKsNiC3FGXuLfTxPfvUipSCeUQ3ShHAsPR4CveFe
Mnf+qMm/y+GVbbcb+M3RSvYlRFE1TTAbvWjCpCccZHhELBPvFRTZEG2yzLoxH+gQ
LhD6H3AF2WApyIG6zfNTgl5W+R4v+JVnHp0VQ7mayHwoPeFxZRkcauHCmDeltXfE
+QqkZB3zQQ8d9o6uby7JAEESjfWEFmk+Je8/94WLwgODz9avQcO52WMriAvnptzL
2sabs/DtA6Y14ph5LMXXt+H1Z7UI3gfdw14xS7fKqlRqb3heAL+MM2/urBulv5xI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:01 2024 by rpki-client on console-ams.rpki-client.org