Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Oyy4J3cJgv6FdUAO7nmZRvxDFQ4.roa
File: Oyy4J3cJgv6FdUAO7nmZRvxDFQ4.roa (raw, json)
Hash identifier: B87au6WTjvXVN9Qbu7lAfOTVzJj/tT2DA10W+ZlnCR8=
Subject key identifier: 3B:2C:B8:27:77:09:82:FE:85:75:40:0E:EE:79:99:46:FC:43:15:0E
Certificate issuer: /CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Certificate serial: 01856E2678D94DBFB2F17C3779FEC7E609F6
Authority key identifier: AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Oyy4J3cJgv6FdUAO7nmZRvxDFQ4.roa
Signing time: Sun 01 Jan 2023 16:24:52 +0000
ROA not before: Sun 01 Jan 2023 16:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204603
IP address blocks: 77.73.133.0/24 maxlen: 24
77.73.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 05:33:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:78:d9:4d:bf:b2:f1:7c:37:79:fe:c7:e6:09:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affa13f1ae053916280ec68ee1b0976f9ebd3ea8
Validity
Not Before: Jan 1 16:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b2cb827770982fe8575400eee799946fc43150e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f9:bf:94:14:c3:3a:b0:e4:4b:2f:68:7a:76:
17:33:a7:65:1a:bd:fd:4a:00:8b:1b:ef:7d:cb:09:
5d:81:ef:11:54:0a:25:4b:bf:93:09:81:a5:19:66:
41:1c:67:9c:25:34:4e:c4:85:77:7c:b7:e4:63:9a:
3b:a9:f3:f2:48:0a:ff:ec:72:cf:d9:32:fd:5b:e9:
ba:e9:4d:f5:88:ef:ab:d4:41:15:61:dc:0b:c6:14:
ea:7f:a0:3a:62:0b:f7:d4:12:9d:77:f7:3a:b2:68:
fd:b6:1d:6d:18:c9:c9:93:75:4c:2b:c6:9d:7d:41:
88:5f:43:69:69:68:5e:b4:e6:ef:ab:5a:f1:fa:9c:
4c:08:cd:10:29:71:d8:df:ca:75:16:e6:1e:b3:57:
61:cf:c8:ec:77:9e:a0:eb:1c:5f:91:cc:04:b9:71:
b7:90:2c:78:ef:d2:f5:b2:9d:da:3f:67:de:3b:a2:
a5:22:22:30:5a:43:0a:28:9e:a0:ef:f5:96:f3:c5:
3c:a7:cd:0f:f7:eb:fa:53:0e:8f:68:82:81:40:45:
34:05:4f:e3:57:5b:e5:4f:4e:f1:17:c2:98:3c:d9:
0d:fc:3d:15:b4:09:d2:bd:5f:49:42:dc:a6:8c:7c:
51:e3:21:68:94:83:18:73:aa:57:b1:2d:59:4e:e1:
ef:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2C:B8:27:77:09:82:FE:85:75:40:0E:EE:79:99:46:FC:43:15:0E
X509v3 Authority Key Identifier:
keyid:AF:FA:13:F1:AE:05:39:16:28:0E:C6:8E:E1:B0:97:6F:9E:BD:3E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_oT8a4FORYoDsaO4bCXb569Pqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/Oyy4J3cJgv6FdUAO7nmZRvxDFQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/a3c0a4-3191-4e51-8d80-478c2c8cb2a0/1/r_oT8a4FORYoDsaO4bCXb569Pqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.73.133.0-77.73.134.255
Signature Algorithm: sha256WithRSAEncryption
2b:ca:2f:58:f6:54:35:eb:63:b5:b1:dd:ef:ef:7a:05:69:1c:
03:b9:bb:17:42:69:ba:9c:c0:85:6c:3c:94:28:e4:9d:24:ad:
62:07:19:95:79:49:41:39:a5:ed:69:a0:e5:ee:26:7b:39:38:
f4:bb:8b:20:9d:8e:58:99:b5:76:aa:cc:ef:af:ca:07:af:59:
12:06:cf:f1:19:f5:d5:2c:c6:9e:fd:9e:5f:b2:b0:5b:67:3a:
14:9e:54:fc:bf:c2:cb:80:6a:60:76:cd:c9:90:6d:d8:3c:fb:
3b:e3:4e:82:ae:19:ad:00:d1:b5:0c:aa:95:5c:f7:ae:37:f6:
bc:a9:91:b8:c7:f4:83:9e:6b:42:22:bf:4c:31:9c:95:03:8c:
90:b3:5d:3d:c3:20:b5:30:67:6c:17:fe:df:bc:ae:d4:08:77:
a6:a9:12:f2:7b:c2:09:db:f5:ca:28:54:ee:9a:38:0a:ce:6e:
1c:ac:5a:59:3d:6e:ff:59:dd:54:cd:b9:9f:78:ad:e0:a3:f6:
58:f1:3b:c4:e2:65:12:58:bc:be:56:2e:a1:23:f2:d2:a5:8b:
e2:68:1f:84:95:12:85:9e:65:39:88:75:ed:f7:3d:2c:99:5b:
03:2a:bd:51:d0:9c:42:6b:37:3f:de:14:38:48:41:66:e0:4d:
04:14:e4:3b
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVuJnjZTb+y8Xw3ef7H5gn2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmExM2YxYWUwNTM5MTYyODBlYzY4ZWUxYjA5NzZmOWVi
ZDNlYTgwHhcNMjMwMTAxMTYyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjJjYjgyNzc3MDk4MmZlODU3NTQwMGVlZTc5OTk0NmZjNDMxNTBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPm/lBTDOrDkSy9oenYXM6dlGr39
SgCLG+99ywldge8RVAolS7+TCYGlGWZBHGecJTROxIV3fLfkY5o7qfPySAr/7HLP
2TL9W+m66U31iO+r1EEVYdwLxhTqf6A6Ygv31BKdd/c6smj9th1tGMnJk3VMK8ad
fUGIX0NpaWhetObvq1rx+pxMCM0QKXHY38p1FuYes1dhz8jsd56g6xxfkcwEuXG3
kCx479L1sp3aP2feO6KlIiIwWkMKKJ6g7/WW88U8p80P9+v6Uw6PaIKBQEU0BU/j
V1vlT07xF8KYPNkN/D0VtAnSvV9JQtymjHxR4yFolIMYc6pXsS1ZTuHv2wIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFDssuCd3CYL+hXVADu55mUb8QxUOMB8GA1UdIwQY
MBaAFK/6E/GuBTkWKA7GjuGwl2+evT6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAt
NDc4YzJjOGNiMmEwLzEvT3l5NEozY0pndjZGZFVBTzdubVpSdnhERlE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hM2MwYTQtMzE5MS00ZTUxLThkODAtNDc4YzJjOGNiMmEw
LzEvcl9vVDhhNEZPUllvRHNhTzRiQ1hiNTY5UHFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABNSYUD
BABNSYYwDQYJKoZIhvcNAQELBQADggEBACvKL1j2VDXrY7Wx3e/vegVpHAO5uxdC
abqcwIVsPJQo5J0krWIHGZV5SUE5pe1poOXuJns5OPS7iyCdjliZtXaqzO+vygev
WRIGz/EZ9dUsxp79nl+ysFtnOhSeVPy/wsuAamB2zcmQbdg8+zvjToKuGa0A0bUM
qpVc96439rypkbjH9IOea0Iiv0wxnJUDjJCzXT3DILUwZ2wX/t+8rtQId6apEvJ7
wgnb9cooVO6aOArObhysWlk9bv9Z3VTNuZ94reCj9ljxO8TiZRJYvL5WLqEj8tKl
i+JoH4SVEoWeZTmIde33PSyZWwMqvVHQnEJrNz/eFDhIQWbgTQQU5Ds=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:23 2024 by rpki-client on console-fra.rpki-client.org