Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oGkoHURw77TO9YTj2T68geyAZmA.roa
File: oGkoHURw77TO9YTj2T68geyAZmA.roa (raw, json)
Hash identifier: s+Qj5tdzC31ZMkCSxRoEIionhJDfuYCjZ0vxgXFOzqQ=
Subject key identifier: A0:69:28:1D:44:70:EF:B4:CE:F5:84:E3:D9:3E:BC:81:EC:80:66:60
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81EEF3E52CE701FDBA229CFE3DA0B6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oGkoHURw77TO9YTj2T68geyAZmA.roa
Signing time: Sun 01 Jan 2023 13:25:09 +0000
ROA not before: Sun 01 Jan 2023 13:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48115
IP address blocks: 94.156.36.0/24 maxlen: 24
94.156.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:ee:f3:e5:2c:e7:01:fd:ba:22:9c:fe:3d:a0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a069281d4470efb4cef584e3d93ebc81ec806660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a0:4b:3e:1c:76:64:1a:3d:37:7e:d3:d6:82:
a2:53:6d:85:4c:5a:cf:55:24:d0:df:7b:d9:f9:62:
3b:c7:d0:a7:e4:59:25:27:78:af:b5:ab:17:95:5f:
16:8b:c1:4a:67:a1:eb:c2:d3:8d:5a:0b:0e:6e:70:
f0:4d:db:da:5b:fc:79:fa:0f:b5:8c:c7:29:c3:bf:
3c:a8:ea:88:90:5a:f3:b7:58:2e:34:7e:29:77:e6:
a7:d9:c5:63:4b:7b:74:5b:c4:46:07:ac:52:0d:ff:
c2:8d:95:9d:8e:95:e0:df:0c:80:a5:89:ee:4d:ba:
41:ba:b5:89:6d:64:9a:ac:e1:30:db:db:3d:7a:0d:
92:03:dd:39:dc:87:a4:58:e6:60:b3:75:9a:3b:fa:
c9:29:dd:b8:e6:33:8b:1a:cd:9a:84:54:9e:a8:e7:
4c:dc:0b:33:08:84:27:0c:ee:e4:cb:09:c4:eb:73:
a0:a3:20:a0:6f:f4:1c:b0:09:8b:fa:ed:78:45:ad:
7e:80:cd:c5:eb:be:42:d1:dc:49:39:78:74:bf:87:
45:cd:a3:60:bd:b4:25:0d:f7:12:c1:99:76:1c:26:
9d:f7:1e:45:d7:0a:0c:c0:60:43:07:82:8f:c4:de:
3d:c5:a9:7d:40:61:96:9c:9a:ba:5b:19:e7:81:bb:
ce:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:69:28:1D:44:70:EF:B4:CE:F5:84:E3:D9:3E:BC:81:EC:80:66:60
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/oGkoHURw77TO9YTj2T68geyAZmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.36.0/24
94.156.101.0/24
Signature Algorithm: sha256WithRSAEncryption
70:5d:d9:08:8b:80:44:d5:58:8a:16:c8:a8:50:d6:16:e0:d7:
35:7a:e4:ae:e6:bc:b0:b8:51:c6:3f:06:eb:e4:87:1f:e6:c1:
de:15:c0:f5:9e:44:7a:b3:64:02:93:66:e7:a6:df:0c:8b:b2:
d2:f5:f1:2f:63:a5:58:f0:b2:7d:4e:f9:5c:eb:05:70:9b:37:
c9:0a:5a:40:e5:3f:f7:d0:4e:db:87:3f:48:cc:db:da:19:b5:
26:3b:02:70:7b:b6:61:95:6d:86:2d:56:a5:aa:f4:91:14:5e:
48:e2:81:c0:21:51:a0:00:46:05:ba:0d:4a:e2:24:be:d4:ab:
17:33:82:ad:74:c6:f7:67:8f:db:cb:a4:09:97:67:76:3d:59:
b3:d9:23:e6:91:45:2e:c0:9b:3c:bf:af:9f:67:5b:56:34:e5:
e2:4b:f1:ac:02:a6:c4:62:df:35:cb:c0:b6:06:0c:35:bd:0c:
65:05:42:62:f8:35:3c:5d:3b:33:2d:02:35:f6:7c:20:9e:f8:
03:4d:39:f5:a5:a7:72:1b:0b:e8:25:45:7f:ad:15:64:63:09:
95:77:e7:b0:a7:dc:2d:f8:27:cf:6e:8b:dd:7c:7c:e5:0f:86:
dc:05:ad:bb:5e:cd:31:65:13:4f:25:8f:e6:15:03:62:e1:09:
e9:95:9c:4b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVtge7z5SznAf26Ipz+PaC2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwMTAxMTMyNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDY5MjgxZDQ0NzBlZmI0Y2VmNTg0ZTNkOTNlYmM4MWVjODA2NjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6BLPhx2ZBo9N37T1oKiU22FTFrP
VSTQ33vZ+WI7x9Cn5FklJ3ivtasXlV8Wi8FKZ6HrwtONWgsObnDwTdvaW/x5+g+1
jMcpw788qOqIkFrzt1guNH4pd+an2cVjS3t0W8RGB6xSDf/CjZWdjpXg3wyApYnu
TbpBurWJbWSarOEw29s9eg2SA9053IekWOZgs3WaO/rJKd245jOLGs2ahFSeqOdM
3AszCIQnDO7kywnE63OgoyCgb/QcsAmL+u14Ra1+gM3F675C0dxJOXh0v4dFzaNg
vbQlDfcSwZl2HCad9x5F1woMwGBDB4KPxN49xal9QGGWnJq6WxnngbvOxwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKBpKB1EcO+0zvWE49k+vIHsgGZgMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvb0drb0hVUnc3N1RPOVlUajJUNjhnZXlBWm1BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXpwkAwQA
XpxlMA0GCSqGSIb3DQEBCwUAA4IBAQBwXdkIi4BE1ViKFsioUNYW4Nc1euSu5ryw
uFHGPwbr5Icf5sHeFcD1nkR6s2QCk2bnpt8Mi7LS9fEvY6VY8LJ9Tvlc6wVwmzfJ
ClpA5T/30E7bhz9IzNvaGbUmOwJwe7ZhlW2GLValqvSRFF5I4oHAIVGgAEYFug1K
4iS+1KsXM4KtdMb3Z4/by6QJl2d2PVmz2SPmkUUuwJs8v6+fZ1tWNOXiS/GsAqbE
Yt81y8C2Bgw1vQxlBUJi+DU8XTszLQI19nwgnvgDTTn1padyGwvoJUV/rRVkYwmV
d+ewp9wt+CfPbovdfHzlD4bcBa27Xs0xZRNPJY/mFQNi4QnplZxL
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:13 2024 by rpki-client on console-ams.rpki-client.org