Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/OjGb7vfbb4FOVgcN-2HgZQJ7WXo.roa
File: OjGb7vfbb4FOVgcN-2HgZQJ7WXo.roa (raw, json)
Hash identifier: L6BRN5wU5D5Ba7TbAZbckGuacTul67rSa5jakMtMVfM=
Subject key identifier: 3A:31:9B:EE:F7:DB:6F:81:4E:56:07:0D:FB:61:E0:65:02:7B:59:7A
Certificate issuer: /CN=86f4129af869f6f5c85a7388808aad0ac0ba9c4f
Certificate serial: 01856E143B690E8EA6D41EE2B0C1BCA88E66
Authority key identifier: 86:F4:12:9A:F8:69:F6:F5:C8:5A:73:88:80:8A:AD:0A:C0:BA:9C:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvQSmvhp9vXIWnOIgIqtCsC6nE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/OjGb7vfbb4FOVgcN-2HgZQJ7WXo.roa
Signing time: Sun 01 Jan 2023 16:04:57 +0000
ROA not before: Sun 01 Jan 2023 16:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35799
IP address blocks: 195.10.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 14:09:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:3b:69:0e:8e:a6:d4:1e:e2:b0:c1:bc:a8:8e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86f4129af869f6f5c85a7388808aad0ac0ba9c4f
Validity
Not Before: Jan 1 16:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a319beef7db6f814e56070dfb61e065027b597a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:12:2e:02:0b:1c:56:ff:08:b4:73:7c:45:18:
ed:3c:af:6c:05:c9:f1:15:dd:18:19:2b:d5:87:9a:
e8:15:11:3a:9b:ec:c7:00:94:8f:af:21:40:39:7a:
17:bc:0c:0d:39:d8:28:4c:18:0c:48:24:6f:a5:25:
02:0a:d9:d1:6d:45:29:fa:ee:f4:5d:65:66:b9:f6:
5c:d7:de:b9:5b:63:99:f5:57:b9:0b:9b:92:85:24:
a6:13:8c:13:2d:9d:26:a3:6c:39:6d:e4:7d:85:f2:
3b:76:17:79:bd:cb:7f:86:c8:f0:11:99:63:1e:bc:
2e:48:e1:23:3e:f2:01:7e:87:5e:d0:49:63:30:8e:
d6:d4:d3:3e:79:a7:3d:2c:bc:07:22:16:4a:60:24:
90:50:6b:ca:95:ab:86:51:08:c1:57:8b:72:cb:32:
f5:57:7f:26:d0:21:15:be:c2:d5:95:0c:40:00:c2:
f7:ce:e3:0d:02:71:20:b5:35:23:b8:87:b7:73:bd:
a3:7d:fd:e0:34:1d:35:87:eb:60:54:bc:59:2f:98:
c2:44:07:7a:a2:b9:da:86:81:f1:7e:f0:cd:fc:08:
c4:11:82:93:e3:50:82:70:82:49:4e:66:f2:c1:1e:
ab:14:9c:af:fe:d7:60:e8:3d:ae:8d:ef:d4:84:80:
07:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:31:9B:EE:F7:DB:6F:81:4E:56:07:0D:FB:61:E0:65:02:7B:59:7A
X509v3 Authority Key Identifier:
keyid:86:F4:12:9A:F8:69:F6:F5:C8:5A:73:88:80:8A:AD:0A:C0:BA:9C:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvQSmvhp9vXIWnOIgIqtCsC6nE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/OjGb7vfbb4FOVgcN-2HgZQJ7WXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3191ec-ce8f-4576-a940-cc50107ea146/1/hvQSmvhp9vXIWnOIgIqtCsC6nE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.199.0/24
Signature Algorithm: sha256WithRSAEncryption
00:40:68:9b:4a:e6:a3:21:18:62:6a:45:7c:60:df:d5:21:a8:
15:47:0f:88:df:be:08:4e:7b:e0:61:6a:08:3b:e7:5b:0a:99:
55:98:87:5c:8b:58:4f:50:d4:75:f8:6f:94:e3:4d:83:63:c0:
6a:ec:f2:a4:96:fd:d4:59:cc:64:79:1d:9f:61:8c:f4:4c:b1:
96:8d:c7:d4:18:f2:fe:25:04:f4:ef:cd:62:6a:60:da:1a:71:
b0:39:6d:49:29:77:a9:e3:80:87:08:97:68:03:c7:94:cd:4a:
4b:d3:80:2e:11:dd:93:51:ad:0c:fd:b6:cb:e4:ed:98:1b:4a:
30:f6:98:4d:79:8c:b9:a7:5f:13:a8:eb:25:b9:52:83:7b:35:
d4:2a:1e:41:dd:8d:4a:b6:79:74:69:e9:1a:25:45:19:34:43:
41:6b:de:24:6b:44:53:06:d9:c3:77:4a:82:b5:92:67:4b:d0:
07:ec:3d:0c:f3:1f:f3:de:34:c3:6a:10:a2:fe:23:ff:8e:e4:
07:93:69:22:e3:c7:e3:3e:5b:80:42:47:32:a8:ba:51:7a:3e:
a9:ca:bb:ab:80:13:38:cd:0a:35:e9:14:74:70:90:75:e3:18:
e1:2d:c6:28:a3:cb:8b:3f:57:f1:ca:be:5f:1e:79:60:bb:dc:
05:9c:56:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuFDtpDo6m1B7isMG8qI5mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZjQxMjlhZjg2OWY2ZjVjODVhNzM4ODgwOGFhZDBhYzBi
YTljNGYwHhcNMjMwMTAxMTYwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTMxOWJlZWY3ZGI2ZjgxNGU1NjA3MGRmYjYxZTA2NTAyN2I1OTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRIuAgscVv8ItHN8RRjtPK9sBcnx
Fd0YGSvVh5roFRE6m+zHAJSPryFAOXoXvAwNOdgoTBgMSCRvpSUCCtnRbUUp+u70
XWVmufZc1965W2OZ9Ve5C5uShSSmE4wTLZ0mo2w5beR9hfI7dhd5vct/hsjwEZlj
HrwuSOEjPvIBfode0EljMI7W1NM+eac9LLwHIhZKYCSQUGvKlauGUQjBV4tyyzL1
V38m0CEVvsLVlQxAAML3zuMNAnEgtTUjuIe3c72jff3gNB01h+tgVLxZL5jCRAd6
ornahoHxfvDN/AjEEYKT41CCcIJJTmbywR6rFJyv/tdg6D2uje/UhIAHywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDoxm+7322+BTlYHDfth4GUCe1l6MB8GA1UdIwQY
MBaAFIb0Epr4afb1yFpziICKrQrAupxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHZRU212aHA5dlhJV25PSWdJcXRDc0M2bkU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zMTkxZWMtY2U4Zi00NTc2LWE5NDAt
Y2M1MDEwN2VhMTQ2LzEvT2pHYjd2ZmJiNEZPVmdjTi0ySGdaUUo3V1hvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zMTkxZWMtY2U4Zi00NTc2LWE5NDAtY2M1MDEwN2VhMTQ2
LzEvaHZRU212aHA5dlhJV25PSWdJcXRDc0M2bkU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwrHMA0G
CSqGSIb3DQEBCwUAA4IBAQAAQGibSuajIRhiakV8YN/VIagVRw+I374ITnvgYWoI
O+dbCplVmIdci1hPUNR1+G+U402DY8Bq7PKklv3UWcxkeR2fYYz0TLGWjcfUGPL+
JQT0781iamDaGnGwOW1JKXep44CHCJdoA8eUzUpL04AuEd2TUa0M/bbL5O2YG0ow
9phNeYy5p18TqOsluVKDezXUKh5B3Y1Ktnl0aekaJUUZNENBa94ka0RTBtnDd0qC
tZJnS9AH7D0M8x/z3jTDahCi/iP/juQHk2ki48fjPluAQkcyqLpRej6pyrurgBM4
zQo16RR0cJB14xjhLcYoo8uLP1fxyr5fHnlgu9wFnFYn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org