Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/772e7e-f0f0-4fe0-a634-f4fbe0cb9444/1/oSMCwmH4wChovAWd9LNUMOgqfW8.roa
File: oSMCwmH4wChovAWd9LNUMOgqfW8.roa (raw, json)
Hash identifier: HUIT19OGli2GpTSOLt+9e+OOIOn1yYjgKy9Xksgq5QU=
Subject key identifier: A1:23:02:C2:61:F8:C0:28:68:BC:05:9D:F4:B3:54:30:E8:2A:7D:6F
Certificate issuer: /CN=13f3ad40f96ed5e7f39d8d9e196abf0fa2381e8c
Certificate serial: 018B2094F82F203AB00E4D456AD207E72D31
Authority key identifier: 13:F3:AD:40:F9:6E:D5:E7:F3:9D:8D:9E:19:6A:BF:0F:A2:38:1E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_OtQPlu1efznY2eGWq_D6I4How.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/772e7e-f0f0-4fe0-a634-f4fbe0cb9444/1/oSMCwmH4wChovAWd9LNUMOgqfW8.roa
Signing time: Wed 11 Oct 2023 21:11:55 +0000
ROA not before: Wed 11 Oct 2023 21:11:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28757
IP address blocks: 217.16.216.0/22 maxlen: 22
217.16.216.0/21 maxlen: 21
217.16.220.0/23 maxlen: 23
217.16.222.0/24 maxlen: 24
217.16.223.0/24 maxlen: 24
80.80.178.0/24 maxlen: 24
185.71.110.0/23 maxlen: 23
80.80.179.0/24 maxlen: 24
80.80.176.0/23 maxlen: 23
185.71.108.0/22 maxlen: 22
80.80.176.0/21 maxlen: 21
185.71.108.0/23 maxlen: 23
80.80.176.0/20 maxlen: 20
80.80.184.0/21 maxlen: 21
80.80.180.0/23 maxlen: 23
80.80.182.0/24 maxlen: 24
80.80.183.0/24 maxlen: 24
80.80.191.0/24 maxlen: 24
217.16.208.0/21 maxlen: 21
217.16.208.0/20 maxlen: 20
2a02:6b00::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:94:f8:2f:20:3a:b0:0e:4d:45:6a:d2:07:e7:2d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13f3ad40f96ed5e7f39d8d9e196abf0fa2381e8c
Validity
Not Before: Oct 11 21:11:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a12302c261f8c02868bc059df4b35430e82a7d6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ab:b3:32:c1:bd:d7:73:a3:5d:25:6d:0d:a8:
fa:86:6a:84:64:e7:9f:47:db:b0:c1:54:e8:27:8c:
79:f2:17:cf:0d:36:be:ed:fa:fa:b2:62:28:ef:73:
97:7b:8d:e0:fc:07:e1:55:07:25:ca:f2:33:03:70:
34:0f:0c:92:fa:91:ca:3d:b3:93:71:ef:5b:c2:3c:
82:30:b1:04:c9:3e:12:b6:ca:03:14:7d:19:14:54:
09:4c:0c:3f:1d:59:de:45:a8:a8:50:9a:10:ea:f1:
63:6c:e8:71:f4:69:f7:88:86:1e:54:06:c5:55:cb:
ba:06:4c:29:f0:35:ef:72:cd:b1:09:e4:37:63:8b:
c9:3b:27:c9:40:4b:97:43:4d:58:cf:48:24:c1:7e:
cf:0b:45:73:df:eb:4d:e8:56:e6:7d:d9:b0:65:ef:
b0:9f:e0:c7:02:21:c5:02:43:57:40:86:17:2d:db:
c2:d6:fa:52:52:52:dd:7b:b2:49:eb:97:c2:0f:a5:
e2:ab:89:44:16:f5:a9:63:d1:2a:eb:1d:72:4e:9c:
e3:d5:08:87:da:91:54:b1:2e:55:5c:7e:a9:3d:e5:
f0:a9:80:b1:3a:9b:78:eb:5b:70:f9:97:5f:55:c1:
7b:42:84:68:71:c2:50:a1:7b:9c:0c:0c:50:e6:2e:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:23:02:C2:61:F8:C0:28:68:BC:05:9D:F4:B3:54:30:E8:2A:7D:6F
X509v3 Authority Key Identifier:
keyid:13:F3:AD:40:F9:6E:D5:E7:F3:9D:8D:9E:19:6A:BF:0F:A2:38:1E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_OtQPlu1efznY2eGWq_D6I4How.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/772e7e-f0f0-4fe0-a634-f4fbe0cb9444/1/oSMCwmH4wChovAWd9LNUMOgqfW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/772e7e-f0f0-4fe0-a634-f4fbe0cb9444/1/E_OtQPlu1efznY2eGWq_D6I4How.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.80.176.0/20
185.71.108.0/22
217.16.208.0/20
IPv6:
2a02:6b00::/36
Signature Algorithm: sha256WithRSAEncryption
9e:46:5a:c8:86:94:18:69:2f:f0:1f:9a:1b:3a:ce:78:8e:37:
a4:34:86:3b:91:9d:de:12:3e:8c:d3:80:d9:7d:d2:e8:0f:47:
a2:58:dd:44:a3:56:82:09:10:d5:13:86:57:6d:c2:0f:b4:07:
bd:45:c7:82:fc:04:eb:19:73:5e:63:31:fb:74:e6:d8:a7:8f:
1d:41:a2:8f:1a:6f:ee:8e:47:4a:88:2c:46:2e:9b:b1:e6:64:
91:94:ff:a0:5e:95:18:da:48:8f:b9:6b:39:4d:4d:05:59:d2:
38:42:32:0d:ba:0d:fa:f5:47:8d:5a:95:47:9d:be:da:b7:e7:
8f:69:7d:28:d5:b2:69:ef:11:e0:42:74:4e:13:80:0b:83:e9:
31:2a:86:15:c1:17:bc:d4:3d:56:7f:13:02:c8:e0:39:3b:bb:
c7:8c:0c:1b:0f:9c:2f:33:ec:b5:5d:f0:aa:86:5c:3c:49:fd:
d2:a9:8f:77:9e:77:0b:06:42:45:0f:ac:61:f0:5a:97:29:92:
8d:54:04:09:8a:3d:ba:2c:f6:84:06:e7:6a:5b:e6:e3:58:5c:
a0:4f:16:93:ae:1a:6b:d5:45:3a:a8:d0:ed:c3:b3:3d:6f:7f:
9d:1d:8b:4a:b7:8a:eb:81:d7:50:eb:42:1d:48:65:0a:a1:2b:
41:5e:d1:3b
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYsglPgvIDqwDk1FatIH5y0xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzZjNhZDQwZjk2ZWQ1ZTdmMzlkOGQ5ZTE5NmFiZjBmYTIz
ODFlOGMwHhcNMjMxMDExMjExMTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTIzMDJjMjYxZjhjMDI4NjhiYzA1OWRmNGIzNTQzMGU4MmE3ZDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3quzMsG913OjXSVtDaj6hmqEZOef
R9uwwVToJ4x58hfPDTa+7fr6smIo73OXe43g/AfhVQclyvIzA3A0DwyS+pHKPbOT
ce9bwjyCMLEEyT4StsoDFH0ZFFQJTAw/HVneRaioUJoQ6vFjbOhx9Gn3iIYeVAbF
Vcu6Bkwp8DXvcs2xCeQ3Y4vJOyfJQEuXQ01Yz0gkwX7PC0Vz3+tN6FbmfdmwZe+w
n+DHAiHFAkNXQIYXLdvC1vpSUlLde7JJ65fCD6Xiq4lEFvWpY9Eq6x1yTpzj1QiH
2pFUsS5VXH6pPeXwqYCxOpt461tw+ZdfVcF7QoRoccJQoXucDAxQ5i5BFQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFKEjAsJh+MAoaLwFnfSzVDDoKn1vMB8GA1UdIwQY
MBaAFBPzrUD5btXn852Nnhlqvw+iOB6MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRV9PdFFQbHUxZWZ6blkyZUdXcV9ENkk0SG93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi83NzJlN2UtZjBmMC00ZmUwLWE2MzQt
ZjRmYmUwY2I5NDQ0LzEvb1NNQ3dtSDR3Q2hvdkFXZDlMTlVNT2dxZlc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi83NzJlN2UtZjBmMC00ZmUwLWE2MzQtZjRmYmUwY2I5NDQ0
LzEvRV9PdFFQbHUxZWZ6blkyZUdXcV9ENkk0SG93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAYBAIAATASAwQEUFCwAwQC
uUdsAwQE2RDQMA4EAgACMAgDBgQqAmsAADANBgkqhkiG9w0BAQsFAAOCAQEAnkZa
yIaUGGkv8B+aGzrOeI43pDSGO5Gd3hI+jNOA2X3S6A9HoljdRKNWggkQ1ROGV23C
D7QHvUXHgvwE6xlzXmMx+3Tm2KePHUGijxpv7o5HSogsRi6bseZkkZT/oF6VGNpI
j7lrOU1NBVnSOEIyDboN+vVHjVqVR52+2rfnj2l9KNWyae8R4EJ0ThOAC4PpMSqG
FcEXvNQ9Vn8TAsjgOTu7x4wMGw+cLzPstV3wqoZcPEn90qmPd553CwZCRQ+sYfBa
lymSjVQECYo9uiz2hAbnalvm41hcoE8Wk64aa9VFOqjQ7cOzPW9/nR2LSreK64HX
UOtCHUhlCqErQV7ROw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:47 2024 by rpki-client on console-ams.rpki-client.org