Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/731b4c-8ca8-497b-8a2b-43c1c61d02eb/1/O_XLL5kLur48j0P2_9OCaCahAnE.roa
File: O_XLL5kLur48j0P2_9OCaCahAnE.roa (raw, json)
Hash identifier: BGBKpLFCeQSF7W9StF2cMqGPmchOckn2dDwK8u4zgMI=
Subject key identifier: 3B:F5:CB:2F:99:0B:BA:BE:3C:8F:43:F6:FF:D3:82:68:26:A1:02:71
Certificate issuer: /CN=50da588f5e9a1c2af56be08f7e6a2c9981ab6026
Certificate serial: 0186B76786C7EF519878537044BC21C4A8B6
Authority key identifier: 50:DA:58:8F:5E:9A:1C:2A:F5:6B:E0:8F:7E:6A:2C:99:81:AB:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNpYj16aHCr1a-CPfmosmYGrYCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/731b4c-8ca8-497b-8a2b-43c1c61d02eb/1/O_XLL5kLur48j0P2_9OCaCahAnE.roa
Signing time: Mon 06 Mar 2023 14:51:00 +0000
ROA not before: Mon 06 Mar 2023 14:51:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203
IP address blocks: 193.178.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:67:86:c7:ef:51:98:78:53:70:44:bc:21:c4:a8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50da588f5e9a1c2af56be08f7e6a2c9981ab6026
Validity
Not Before: Mar 6 14:51:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bf5cb2f990bbabe3c8f43f6ffd3826826a10271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:5b:8d:20:24:97:96:31:ba:54:c7:3e:7c:
6f:7e:7c:4e:81:f5:8f:d8:81:63:e5:a0:9a:0a:12:
da:98:48:19:47:63:75:4f:f9:5e:08:c4:61:10:2f:
b2:2e:19:c6:23:57:35:29:8c:db:42:86:f4:d2:28:
67:aa:61:6b:e1:63:ef:3f:d5:2f:9f:5f:b5:64:ac:
be:b8:3d:20:29:aa:f1:d8:c3:90:3d:9a:47:5d:9f:
f7:7e:45:6b:18:09:4f:b4:b3:61:e5:b2:d6:ba:8e:
1c:c9:58:91:cc:ac:a4:16:ff:b4:f8:7b:58:46:49:
b6:5e:be:9d:be:c0:b1:c3:5f:52:e2:12:14:69:fa:
fe:b0:83:40:3b:fa:c8:7b:fd:79:33:b3:60:a0:22:
d7:58:de:58:2c:d6:14:0e:d0:ad:c3:2f:b8:c1:cd:
3b:26:9d:aa:18:62:e7:14:55:79:8c:20:94:9e:6b:
8c:70:6b:23:57:c6:94:de:e4:b1:5d:77:26:b1:5f:
db:bf:03:80:89:99:87:85:75:42:75:ca:ea:c9:e6:
f3:3e:37:49:8c:5c:5e:08:b3:b2:67:00:41:5f:0c:
f0:f4:00:0a:d6:86:9d:ef:e1:0d:8c:d5:81:3e:42:
58:93:83:90:89:c4:da:67:5a:a2:f0:a5:cf:23:f8:
16:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F5:CB:2F:99:0B:BA:BE:3C:8F:43:F6:FF:D3:82:68:26:A1:02:71
X509v3 Authority Key Identifier:
keyid:50:DA:58:8F:5E:9A:1C:2A:F5:6B:E0:8F:7E:6A:2C:99:81:AB:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNpYj16aHCr1a-CPfmosmYGrYCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/731b4c-8ca8-497b-8a2b-43c1c61d02eb/1/O_XLL5kLur48j0P2_9OCaCahAnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/731b4c-8ca8-497b-8a2b-43c1c61d02eb/1/UNpYj16aHCr1a-CPfmosmYGrYCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.166.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a8:4d:ff:13:8f:8f:0d:5b:92:23:65:7e:90:59:c3:40:a0:
54:a0:27:4f:9b:d0:b2:fa:a4:52:f5:89:b2:22:c6:af:d2:94:
6e:76:43:5a:23:ea:f9:a6:9e:94:78:d1:f9:75:4a:32:62:31:
7d:6e:8c:97:52:09:89:8f:0f:25:ff:f8:23:0a:93:ca:0f:c1:
ff:a6:4e:9a:90:36:9f:91:6d:a3:6e:c6:a0:d4:b9:82:e4:e4:
15:c5:09:6b:40:b6:53:e6:40:7a:68:ac:2f:07:4a:bd:fc:ff:
03:26:f0:06:96:c8:ea:54:fb:ae:f5:97:d3:0c:38:60:b7:ba:
23:11:d0:ff:e4:7c:09:3f:a3:3a:a8:16:39:21:00:c8:a5:0c:
0f:bc:46:e2:e6:9d:c5:fc:eb:78:5b:8b:79:f2:94:bb:3a:f6:
47:9c:0e:4a:5f:68:39:c5:3b:4f:93:7d:ce:21:31:64:de:81:
e0:e2:46:b5:43:81:9f:07:a1:49:0f:dd:0b:44:76:18:0e:54:
05:fd:ff:f1:f3:8d:f4:d7:10:d2:dc:ec:6b:39:a6:d5:3c:be:
62:1d:a8:d2:6f:43:78:f8:d1:09:a4:51:97:e2:54:5f:07:88:
7e:b0:09:92:d1:5d:36:70:51:ec:52:51:7d:3c:88:74:69:f9:
4e:db:92:46
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYa3Z4bH71GYeFNwRLwhxKi2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZGE1ODhmNWU5YTFjMmFmNTZiZTA4ZjdlNmEyYzk5ODFh
YjYwMjYwHhcNMjMwMzA2MTQ1MTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmY1Y2IyZjk5MGJiYWJlM2M4ZjQzZjZmZmQzODI2ODI2YTEwMjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzZbjSAkl5YxulTHPnxvfnxOgfWP
2IFj5aCaChLamEgZR2N1T/leCMRhEC+yLhnGI1c1KYzbQob00ihnqmFr4WPvP9Uv
n1+1ZKy+uD0gKarx2MOQPZpHXZ/3fkVrGAlPtLNh5bLWuo4cyViRzKykFv+0+HtY
Rkm2Xr6dvsCxw19S4hIUafr+sINAO/rIe/15M7NgoCLXWN5YLNYUDtCtwy+4wc07
Jp2qGGLnFFV5jCCUnmuMcGsjV8aU3uSxXXcmsV/bvwOAiZmHhXVCdcrqyebzPjdJ
jFxeCLOyZwBBXwzw9AAK1oad7+ENjNWBPkJYk4OQicTaZ1qi8KXPI/gWAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDv1yy+ZC7q+PI9D9v/TgmgmoQJxMB8GA1UdIwQY
MBaAFFDaWI9emhwq9Wvgj35qLJmBq2AmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU5wWWoxNmFIQ3IxYS1DUGZtb3NtWUdyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy83MzFiNGMtOGNhOC00OTdiLThhMmIt
NDNjMWM2MWQwMmViLzEvT19YTEw1a0x1cjQ4ajBQMl85T0NhQ2FoQW5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy83MzFiNGMtOGNhOC00OTdiLThhMmItNDNjMWM2MWQwMmVi
LzEvVU5wWWoxNmFIQ3IxYS1DUGZtb3NtWUdyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbKmMA0G
CSqGSIb3DQEBCwUAA4IBAQCIqE3/E4+PDVuSI2V+kFnDQKBUoCdPm9Cy+qRS9Ymy
Isav0pRudkNaI+r5pp6UeNH5dUoyYjF9boyXUgmJjw8l//gjCpPKD8H/pk6akDaf
kW2jbsag1LmC5OQVxQlrQLZT5kB6aKwvB0q9/P8DJvAGlsjqVPuu9ZfTDDhgt7oj
EdD/5HwJP6M6qBY5IQDIpQwPvEbi5p3F/Ot4W4t58pS7OvZHnA5KX2g5xTtPk33O
ITFk3oHg4ka1Q4GfB6FJD90LRHYYDlQF/f/x84301xDS3OxrOabVPL5iHajSb0N4
+NEJpFGX4lRfB4h+sAmS0V02cFHsUlF9PIh0aflO25JG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:09 2024 by rpki-client on console-ams.rpki-client.org