Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/uKbKgo1-Yf0Tp606HjoDb9lxrcQ.roa
File: uKbKgo1-Yf0Tp606HjoDb9lxrcQ.roa (raw, json)
Hash identifier: uZMbWZlDsIlGN6PGFfcYRlABCqqhCJeNtHzzyDa09K0=
Subject key identifier: B8:A6:CA:82:8D:7E:61:FD:13:A7:AD:3A:1E:3A:03:6F:D9:71:AD:C4
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018D80FACA1D800828E56253449569F9030C
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/uKbKgo1-Yf0Tp606HjoDb9lxrcQ.roa
Signing time: Wed 07 Feb 2024 00:32:15 +0000
ROA not before: Wed 07 Feb 2024 00:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56603
IP address blocks: 192.145.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 06:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:80:fa:ca:1d:80:08:28:e5:62:53:44:95:69:f9:03:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Feb 7 00:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b8a6ca828d7e61fd13a7ad3a1e3a036fd971adc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:54:87:3b:47:50:0f:13:4d:8c:aa:a9:21:ca:
7e:02:eb:81:84:0a:f8:a0:f4:94:dc:9f:82:90:cc:
1c:f1:21:f6:ba:1c:a1:5a:73:ae:c2:1b:c7:1c:a0:
33:26:06:06:ff:f3:46:b9:77:d3:12:5f:ae:bf:78:
d8:51:a9:e1:9d:13:b6:c6:93:86:30:3b:39:d6:9c:
a9:f0:79:24:d6:4e:f5:67:ad:4c:27:d7:3d:c4:fb:
a0:39:db:49:9e:ea:4f:e1:51:f2:30:55:65:de:5e:
20:02:e2:3b:c9:d9:da:d6:d0:b8:48:cd:03:a3:5f:
a9:f2:98:da:42:5a:69:2b:9b:2b:b4:ee:c7:f9:7a:
59:43:fc:90:75:56:87:d6:27:9f:ff:3d:c4:6d:23:
dd:8c:db:f9:ec:ff:a0:02:ab:20:d4:7d:2f:76:ad:
60:f3:b7:9e:a2:c3:ce:99:8c:de:56:8b:d6:b9:85:
3a:24:02:db:78:18:18:8f:be:ac:7a:f6:ee:91:3e:
ba:1f:36:a3:3f:a2:af:d3:6b:0d:67:c3:47:5e:27:
97:70:c9:4d:31:f4:56:c1:60:5b:1e:75:60:39:1a:
26:0c:93:05:2a:f7:da:38:5d:c2:17:4b:f0:df:bc:
e0:b4:0b:5a:01:de:02:3f:29:e6:b8:f9:2e:50:bc:
d0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A6:CA:82:8D:7E:61:FD:13:A7:AD:3A:1E:3A:03:6F:D9:71:AD:C4
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/uKbKgo1-Yf0Tp606HjoDb9lxrcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.96.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:3e:79:5d:90:7f:4d:04:27:ad:b3:99:71:85:64:8d:de:93:
73:9f:95:e8:06:50:d6:16:64:75:c2:cc:c8:d2:cd:1a:17:74:
c7:a0:8c:f8:3f:3d:12:39:25:61:17:31:ee:ab:d6:8e:43:d6:
27:43:84:d5:c1:75:c5:93:b8:42:7d:27:ae:8a:7e:0f:d8:a0:
eb:30:95:16:e0:bf:fb:09:c7:07:4f:ab:55:ec:f6:d9:11:06:
69:95:d7:92:fd:72:5d:4e:5a:6d:05:4c:ea:64:68:5a:3a:7a:
1d:b2:3a:e8:4a:3a:1a:cc:0f:cd:da:f4:8b:1a:f2:98:26:bc:
51:e0:7d:eb:e4:84:29:77:19:a4:d9:df:21:a6:a0:c1:56:43:
cf:9e:95:db:0d:26:e9:a3:72:c8:23:d3:b2:d6:1f:b7:a4:66:
50:85:ed:03:86:d1:0b:f8:c6:d0:65:20:1d:e7:27:77:1a:39:
b3:a5:ab:c1:d6:05:bc:d9:e5:96:66:e4:09:68:66:a0:15:9e:
df:24:8e:8c:45:de:06:70:dd:cb:1c:f7:c4:18:88:78:6a:61:
e0:33:c7:cb:3d:20:67:cf:09:a9:08:44:9f:43:c7:ae:7c:38:
44:96:4d:34:f5:c0:4d:d9:19:c2:d1:f8:eb:ac:81:79:69:6b:
f9:5b:35:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2A+sodgAgo5WJTRJVp+QMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjQwMjA3MDAzMjE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOGE2Y2E4MjhkN2U2MWZkMTNhN2FkM2ExZTNhMDM2ZmQ5NzFhZGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1SHO0dQDxNNjKqpIcp+AuuBhAr4
oPSU3J+CkMwc8SH2uhyhWnOuwhvHHKAzJgYG//NGuXfTEl+uv3jYUanhnRO2xpOG
MDs51pyp8Hkk1k71Z61MJ9c9xPugOdtJnupP4VHyMFVl3l4gAuI7ydna1tC4SM0D
o1+p8pjaQlppK5srtO7H+XpZQ/yQdVaH1ief/z3EbSPdjNv57P+gAqsg1H0vdq1g
87eeosPOmYzeVovWuYU6JALbeBgYj76sevbukT66HzajP6Kv02sNZ8NHXieXcMlN
MfRWwWBbHnVgORomDJMFKvfaOF3CF0vw37zgtAtaAd4CPynmuPkuULzQrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLimyoKNfmH9E6etOh46A2/Zca3EMB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEvdUtiS2dvMS1ZZjBUcDYwNkhqb0RiOWx4cmNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwJFgMA0G
CSqGSIb3DQEBCwUAA4IBAQDDPnldkH9NBCets5lxhWSN3pNzn5XoBlDWFmR1wszI
0s0aF3THoIz4Pz0SOSVhFzHuq9aOQ9YnQ4TVwXXFk7hCfSeuin4P2KDrMJUW4L/7
CccHT6tV7PbZEQZpldeS/XJdTlptBUzqZGhaOnodsjroSjoazA/N2vSLGvKYJrxR
4H3r5IQpdxmk2d8hpqDBVkPPnpXbDSbpo3LII9Oy1h+3pGZQhe0DhtEL+MbQZSAd
5yd3GjmzpavB1gW82eWWZuQJaGagFZ7fJI6MRd4GcN3LHPfEGIh4amHgM8fLPSBn
zwmpCESfQ8eufDhElk009cBN2RnC0fjrrIF5aWv5WzU2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org