Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O7LFx-idH26ROe8181cJ9kv3FrE.roa
File: O7LFx-idH26ROe8181cJ9kv3FrE.roa (raw, json)
Hash identifier: tGmUNeJ6kmgaUthH/syF29EZXPggjoNA/813SkW2SWw=
Subject key identifier: 3B:B2:C5:C7:E8:9D:1F:6E:91:39:EF:35:F3:57:09:F6:4B:F7:16:B1
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14E545DB792211BF5FC5998FDF04B1
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O7LFx-idH26ROe8181cJ9kv3FrE.roa
Signing time: Sun 01 Jan 2023 20:45:18 +0000
ROA not before: Sun 01 Jan 2023 20:45:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8614
IP address blocks: 217.156.124.0/24 maxlen: 24
193.231.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e5:45:db:79:22:11:bf:5f:c5:99:8f:df:04:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bb2c5c7e89d1f6e9139ef35f35709f64bf716b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:de:44:b5:54:b6:e2:f1:93:22:ad:f9:0d:ce:
ba:f5:5a:c5:67:f9:24:3f:7b:f5:a8:f9:32:52:a1:
4c:1d:58:8b:7b:44:64:2b:bc:59:ad:26:0f:20:26:
ff:43:84:50:4a:4b:23:99:61:bf:55:d5:98:2a:ac:
9e:d5:97:4d:ee:43:75:e6:ff:de:37:f7:06:ae:89:
37:31:ca:26:eb:26:b2:ad:5f:f9:9f:c9:9f:49:1b:
9c:4d:3d:7b:23:43:9b:75:66:a3:17:80:11:e9:bf:
15:45:80:5d:e4:ee:5a:d7:c7:76:83:8b:93:72:1c:
66:86:3d:05:22:bb:d8:8a:f3:83:1e:40:a0:d5:55:
da:10:cf:ae:98:a4:89:3b:bd:6e:16:3d:b5:36:fe:
c6:57:23:ab:0d:6a:52:2d:42:5d:03:00:a1:94:05:
bd:7f:ae:69:a6:2a:66:73:ca:4d:9a:e6:40:02:cb:
f9:a9:4b:2d:93:bd:ce:e1:27:47:d8:75:7e:83:3e:
7e:eb:6a:1a:82:81:f9:53:08:a6:61:8d:3e:32:a3:
b3:e4:53:07:6d:cf:a1:37:48:50:2a:39:04:75:dd:
e2:bd:c6:ae:38:9c:aa:d5:a4:32:e6:b2:2b:d6:76:
e4:e7:db:6f:c5:94:be:78:35:94:51:73:77:cb:19:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B2:C5:C7:E8:9D:1F:6E:91:39:EF:35:F3:57:09:F6:4B:F7:16:B1
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/O7LFx-idH26ROe8181cJ9kv3FrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.231.172.0/24
217.156.124.0/24
Signature Algorithm: sha256WithRSAEncryption
31:0a:8f:27:82:b9:ee:da:ab:a1:34:b8:74:35:fb:13:79:e2:
e0:36:1e:33:79:1f:f9:67:f9:fa:95:be:7e:ff:c9:fa:fa:df:
c2:6c:67:a7:df:18:99:43:b3:f7:93:f6:47:62:3a:51:f4:2b:
97:a6:a2:82:9a:b9:03:1d:a3:d5:2d:88:ef:ee:13:78:89:9c:
5a:17:b8:75:ad:7e:b3:1a:59:15:d4:0e:a1:da:8d:48:ed:ef:
a3:07:9e:e6:c3:aa:08:25:96:9f:62:9f:34:35:cd:83:f7:62:
ec:a7:e6:42:94:0d:34:62:41:5f:b7:9e:b3:b0:65:57:d8:68:
8b:9f:6d:22:82:cb:f1:a8:b4:7b:89:66:2e:79:54:39:18:84:
3f:51:e2:da:b0:7c:63:ab:30:9c:6b:83:f5:c5:ff:3f:6a:56:
dd:bf:bc:f6:d1:91:85:aa:1d:fa:17:1a:83:f5:09:49:aa:ab:
75:f3:93:21:f3:eb:b5:77:21:c9:87:e7:62:53:56:b7:d0:ac:
fa:d8:e7:7f:26:34:d3:e4:1e:bd:d6:a8:d9:03:df:79:bc:d4:
7a:4b:26:41:bc:3b:98:b3:21:7d:4b:3d:d3:c3:c0:3c:e8:c3:
d0:ab:3b:c0:66:e4:2e:05:4d:fd:1b:b4:8a:6b:63:fb:d5:9e:
50:05:0e:b6
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvFOVF23kiEb9fxZmP3wSxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjMwMTAxMjA0NTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmIyYzVjN2U4OWQxZjZlOTEzOWVmMzVmMzU3MDlmNjRiZjcxNmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh95EtVS24vGTIq35Dc669VrFZ/kk
P3v1qPkyUqFMHViLe0RkK7xZrSYPICb/Q4RQSksjmWG/VdWYKqye1ZdN7kN15v/e
N/cGrok3Mcom6yayrV/5n8mfSRucTT17I0ObdWajF4AR6b8VRYBd5O5a18d2g4uT
chxmhj0FIrvYivODHkCg1VXaEM+umKSJO71uFj21Nv7GVyOrDWpSLUJdAwChlAW9
f65ppipmc8pNmuZAAsv5qUstk73O4SdH2HV+gz5+62oagoH5UwimYY0+MqOz5FMH
bc+hN0hQKjkEdd3ivcauOJyq1aQy5rIr1nbk59tvxZS+eDWUUXN3yxlDRQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFDuyxcfonR9ukTnvNfNXCfZL9xaxMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvTzdMRngtaWRIMjZST2U4MTgxY0o5a3YzRnJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAweesAwQA
2Zx8MA0GCSqGSIb3DQEBCwUAA4IBAQAxCo8ngrnu2quhNLh0NfsTeeLgNh4zeR/5
Z/n6lb5+/8n6+t/CbGen3xiZQ7P3k/ZHYjpR9CuXpqKCmrkDHaPVLYjv7hN4iZxa
F7h1rX6zGlkV1A6h2o1I7e+jB57mw6oIJZafYp80Nc2D92Lsp+ZClA00YkFft56z
sGVX2GiLn20igsvxqLR7iWYueVQ5GIQ/UeLasHxjqzCca4P1xf8/albdv7z20ZGF
qh36FxqD9QlJqqt185Mh8+u1dyHJh+diU1a30Kz62Od/JjTT5B691qjZA995vNR6
SyZBvDuYsyF9Sz3Tw8A86MPQqzvAZuQuBU39G7SKa2P71Z5QBQ62
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:48 2024 by rpki-client on console-ams.rpki-client.org