Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S--OBQsBdhzJFphA34KYtF6eaIQ.roa
File: S--OBQsBdhzJFphA34KYtF6eaIQ.roa (raw, json)
Hash identifier: 2Oks0FwwqZUz0axFezqs3F0T90Q+sW0Nq/zhJTwk/Oo=
Subject key identifier: 4B:EF:8E:05:0B:01:76:1C:C9:16:98:40:DF:82:98:B4:5E:9E:68:84
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018BA8F259E387293DFCBFACBC425DAF069E
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S--OBQsBdhzJFphA34KYtF6eaIQ.roa
Signing time: Tue 07 Nov 2023 08:42:16 +0000
ROA not before: Tue 07 Nov 2023 08:42:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 270
IP address blocks: 194.85.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a8:f2:59:e3:87:29:3d:fc:bf:ac:bc:42:5d:af:06:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 7 08:42:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bef8e050b01761cc9169840df8298b45e9e6884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fb:ac:e7:07:b7:ea:d9:4d:6d:2f:83:7b:45:
63:bc:11:6b:9c:b1:14:0f:2d:64:57:25:b3:2f:c7:
3d:17:ff:79:4d:14:32:1f:90:af:a1:ef:1c:e5:e5:
00:98:de:8d:75:0c:25:07:98:91:1e:89:c9:78:93:
86:a8:88:f5:e3:26:2a:bd:3e:bf:3d:3c:b1:50:98:
a9:dd:17:2d:54:bf:26:34:c8:63:c3:25:5d:16:16:
e5:9b:b3:b2:f4:07:1b:9c:09:bf:1c:0a:3c:ec:91:
76:48:d3:36:f6:53:cb:eb:23:f8:85:be:28:a1:11:
a1:f3:89:8f:73:bc:62:b6:55:ad:74:15:45:1f:b7:
f4:8b:71:b3:16:ec:51:aa:8c:c6:49:ca:67:b3:4c:
b9:8d:15:46:a0:cd:63:41:66:ad:32:66:cd:12:79:
ae:85:36:4d:a8:42:9d:00:94:c6:7b:3f:89:09:70:
10:2d:04:45:db:51:18:b3:7c:73:10:0b:97:b0:05:
9a:2d:4f:33:01:77:98:7c:4c:2f:ad:52:a8:02:b7:
13:5e:b0:1a:50:51:00:19:3b:2e:eb:7e:2a:53:eb:
8d:c7:41:1b:27:cf:4a:2b:59:10:fa:ab:aa:f9:00:
de:b9:64:75:b9:d7:26:89:8f:0b:d6:a1:c0:99:ba:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EF:8E:05:0B:01:76:1C:C9:16:98:40:DF:82:98:B4:5E:9E:68:84
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/S--OBQsBdhzJFphA34KYtF6eaIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.85.23.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:ec:69:8e:32:5a:bc:95:a4:e5:32:5e:96:b8:7b:c8:4e:08:
02:cf:e6:2e:ce:45:37:5b:1c:ec:9a:a0:a0:d9:82:a2:00:c1:
65:b9:21:9b:35:cf:8a:fc:d8:6d:67:eb:2c:5b:d7:b5:3f:2d:
0d:8a:5c:aa:39:36:a9:ee:6f:ba:a7:83:34:d4:47:fe:bf:46:
9b:a4:8d:85:19:cc:47:48:89:78:57:f7:c5:38:e7:6d:a9:87:
20:a4:2b:9a:c8:0a:34:a2:9c:e4:ac:c9:32:af:4f:97:6f:ff:
bb:41:48:cf:95:71:f6:93:7a:e3:f8:9e:5d:bd:81:f3:15:c2:
e3:ca:56:c6:e9:f9:be:50:40:60:0c:1f:2e:25:7a:e3:7a:bd:
42:35:43:90:c8:0e:8b:c4:33:bb:5e:ff:16:b1:f8:bd:1d:e7:
96:7d:9e:61:69:85:3c:d9:e2:d4:ff:c1:27:e5:46:64:d9:17:
0e:8e:06:87:36:95:bb:5a:90:5d:c2:ec:b9:ad:5b:49:6d:98:
d9:2a:f4:ae:58:25:68:64:81:e0:2d:fc:a1:24:dc:86:ed:87:
b6:b3:8a:1e:88:a8:7d:59:62:a4:8d:b4:3e:3f:b2:f4:47:30:
cd:c3:cf:b8:df:85:8e:44:fa:6c:64:fc:df:8c:c7:f4:05:2e:
ba:9a:e0:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuo8lnjhyk9/L+svEJdrwaeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMxMTA3MDg0MjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YmVmOGUwNTBiMDE3NjFjYzkxNjk4NDBkZjgyOThiNDVlOWU2ODg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvus5we36tlNbS+De0VjvBFrnLEU
Dy1kVyWzL8c9F/95TRQyH5Cvoe8c5eUAmN6NdQwlB5iRHonJeJOGqIj14yYqvT6/
PTyxUJip3RctVL8mNMhjwyVdFhblm7Oy9AcbnAm/HAo87JF2SNM29lPL6yP4hb4o
oRGh84mPc7xitlWtdBVFH7f0i3GzFuxRqozGScpns0y5jRVGoM1jQWatMmbNEnmu
hTZNqEKdAJTGez+JCXAQLQRF21EYs3xzEAuXsAWaLU8zAXeYfEwvrVKoArcTXrAa
UFEAGTsu634qU+uNx0EbJ89KK1kQ+quq+QDeuWR1udcmiY8L1qHAmbp2PwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEvvjgULAXYcyRaYQN+CmLRenmiEMB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvUy0tT0JRc0JkaHpKRnBoQTM0S1l0RjZlYUlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwlUXMA0G
CSqGSIb3DQEBCwUAA4IBAQC37GmOMlq8laTlMl6WuHvITggCz+YuzkU3WxzsmqCg
2YKiAMFluSGbNc+K/NhtZ+ssW9e1Py0NilyqOTap7m+6p4M01Ef+v0abpI2FGcxH
SIl4V/fFOOdtqYcgpCuayAo0opzkrMkyr0+Xb/+7QUjPlXH2k3rj+J5dvYHzFcLj
ylbG6fm+UEBgDB8uJXrjer1CNUOQyA6LxDO7Xv8Wsfi9HeeWfZ5haYU82eLU/8En
5UZk2RcOjgaHNpW7WpBdwuy5rVtJbZjZKvSuWCVoZIHgLfyhJNyG7Ye2s4oeiKh9
WWKkjbQ+P7L0RzDNw8+434WORPpsZPzfjMf0BS66muBb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org