Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O3pvaf5QbZSFkGWP5xYr5T62zEI.roa
File: O3pvaf5QbZSFkGWP5xYr5T62zEI.roa (raw, json)
Hash identifier: ISouhADBD63kubDnYVwSREW+LSbIQrajLmciVpszH3U=
Subject key identifier: 3B:7A:6F:69:FE:50:6D:94:85:90:65:8F:E7:16:2B:E5:3E:B6:CC:42
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14FBB020991F398804DC315B19ADA1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O3pvaf5QbZSFkGWP5xYr5T62zEI.roa
Signing time: Sun 01 Jan 2023 20:45:24 +0000
ROA not before: Sun 01 Jan 2023 20:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42731
IP address blocks: 80.97.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:fb:b0:20:99:1f:39:88:04:dc:31:5b:19:ad:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b7a6f69fe506d948590658fe7162be53eb6cc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:eb:92:ec:6c:99:eb:bc:1f:f4:f3:57:fa:f0:
2d:0f:a3:f3:8b:95:81:fe:60:2e:65:4f:da:93:a7:
27:eb:03:c5:48:52:82:d0:ca:08:89:d7:9a:e3:75:
9f:e0:24:5f:30:9c:a5:e6:01:e3:6a:79:7b:3f:9c:
20:0a:36:99:b1:ff:76:21:d3:05:1e:1a:db:6b:fa:
ba:34:86:6c:ad:1a:c8:e5:22:81:cd:34:16:1d:d0:
d2:07:e5:a8:4c:68:d8:7f:66:c3:1f:dd:e0:80:11:
7a:6a:4f:01:53:8a:b6:e5:c0:aa:91:af:40:24:04:
69:fb:95:79:25:3b:01:99:72:ba:19:dc:0d:64:5c:
42:c7:89:4e:5d:ba:2b:9d:21:9e:2f:6a:23:77:33:
1c:17:3a:b0:fc:03:85:98:72:f6:0e:34:3d:9d:f6:
4c:8d:ff:91:4d:45:db:b2:b9:9c:73:0f:8f:6d:45:
a4:4c:bd:5b:6a:1f:9e:04:e2:7e:95:15:26:91:0d:
5e:e9:6b:e6:4a:20:cb:f2:e1:81:2f:ae:fb:dd:ec:
c3:36:66:cc:38:1a:44:38:da:c2:7a:2b:81:0a:c2:
d2:29:e9:c3:05:0f:08:99:c6:56:fd:49:d3:35:3a:
ca:af:5d:07:0d:c4:a4:6e:e6:0d:31:c0:f4:39:e2:
0c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7A:6F:69:FE:50:6D:94:85:90:65:8F:E7:16:2B:E5:3E:B6:CC:42
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O3pvaf5QbZSFkGWP5xYr5T62zEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.97.163.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f5:c4:81:a5:36:7f:2b:0a:8c:7c:33:ce:df:6f:09:76:4b:
eb:05:a1:db:0e:c1:00:f9:f8:4c:6e:c5:ba:45:e0:24:58:aa:
be:41:d4:94:17:61:1b:ac:b5:2d:32:71:ba:ff:63:c4:90:eb:
21:3a:b7:18:a8:17:9b:26:de:f9:96:c2:d3:c1:1c:c1:b2:9e:
74:e0:3b:34:f5:23:e5:58:83:4a:21:e7:ec:7a:1f:e7:31:14:
cd:b9:d3:37:ed:53:9d:e8:f6:6f:1e:6e:8d:91:33:62:e1:7f:
76:24:88:df:ab:24:2e:8e:f5:d0:e3:e5:60:74:52:8c:84:2d:
8d:27:f5:8c:40:ce:8b:1e:f5:71:80:f7:81:b2:93:76:a5:34:
22:04:8a:3f:0e:be:1c:ef:71:27:ac:af:85:1d:a0:ba:14:a4:
32:98:fc:e7:d6:66:ed:1c:08:b2:98:d9:98:5f:b4:7a:1e:cb:
af:28:3d:12:22:40:c1:52:e1:34:70:61:ea:58:98:9b:fc:e9:
de:eb:ae:b0:0b:9a:57:e3:29:be:9a:f0:37:0d:b3:00:6d:d9:
87:32:1b:e9:64:59:f8:48:eb:80:2c:33:41:b3:fd:9d:e2:22:
53:c6:3c:c0:b3:2f:dd:b5:2b:e4:b7:c7:28:d6:d9:a6:af:41:
5f:33:58:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFPuwIJkfOYgE3DFbGa2hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjMwMTAxMjA0NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjdhNmY2OWZlNTA2ZDk0ODU5MDY1OGZlNzE2MmJlNTNlYjZjYzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOuS7GyZ67wf9PNX+vAtD6Pzi5WB
/mAuZU/ak6cn6wPFSFKC0MoIidea43Wf4CRfMJyl5gHjanl7P5wgCjaZsf92IdMF
Hhrba/q6NIZsrRrI5SKBzTQWHdDSB+WoTGjYf2bDH93ggBF6ak8BU4q25cCqka9A
JARp+5V5JTsBmXK6GdwNZFxCx4lOXbornSGeL2ojdzMcFzqw/AOFmHL2DjQ9nfZM
jf+RTUXbsrmccw+PbUWkTL1bah+eBOJ+lRUmkQ1e6WvmSiDL8uGBL6773ezDNmbM
OBpEONrCeiuBCsLSKenDBQ8ImcZW/UnTNTrKr10HDcSkbuYNMcD0OeIMnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDt6b2n+UG2UhZBlj+cWK+U+tsxCMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvTzNwdmFmNVFiWlNGa0dXUDV4WXI1VDYyekVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUGGjMA0G
CSqGSIb3DQEBCwUAA4IBAQAm9cSBpTZ/KwqMfDPO328JdkvrBaHbDsEA+fhMbsW6
ReAkWKq+QdSUF2EbrLUtMnG6/2PEkOshOrcYqBebJt75lsLTwRzBsp504Ds09SPl
WINKIefseh/nMRTNudM37VOd6PZvHm6NkTNi4X92JIjfqyQujvXQ4+VgdFKMhC2N
J/WMQM6LHvVxgPeBspN2pTQiBIo/Dr4c73EnrK+FHaC6FKQymPzn1mbtHAiymNmY
X7R6HsuvKD0SIkDBUuE0cGHqWJib/One666wC5pX4ym+mvA3DbMAbdmHMhvpZFn4
SOuALDNBs/2d4iJTxjzAsy/dtSvkt8co1tmmr0FfM1gc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org