Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/oGK3L1GJQJcP_Nh6A63Eld-bEDs.roa
File: oGK3L1GJQJcP_Nh6A63Eld-bEDs.roa (raw, json)
Hash identifier: zmlIm2IpiDHgTz4YBsJwUlxbS8T/jxZEPlgIFdH3uDI=
Subject key identifier: A0:62:B7:2F:51:89:40:97:0F:FC:D8:7A:03:AD:C4:95:DF:9B:10:3B
Certificate issuer: /CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Certificate serial: 01857169CD36AD22650F7EA4E9C3519E39B0
Authority key identifier: 22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/oGK3L1GJQJcP_Nh6A63Eld-bEDs.roa
Signing time: Mon 02 Jan 2023 07:37:17 +0000
ROA not before: Mon 02 Jan 2023 07:37:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25059
IP address blocks: 193.201.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 17 Nov 2023 12:55:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:cd:36:ad:22:65:0f:7e:a4:e9:c3:51:9e:39:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a72f3ed23e2294f9bb6ba660246166c13f8324
Validity
Not Before: Jan 2 07:37:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a062b72f518940970ffcd87a03adc495df9b103b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0a:af:37:17:cf:76:db:00:07:44:da:d8:92:
89:e8:fd:7a:76:b7:7f:5e:54:76:ce:2a:78:d1:c8:
46:2f:4f:4e:3a:b0:65:68:88:5e:c5:a3:fb:67:c4:
38:43:b0:19:c0:e1:a5:ab:f5:c9:8e:1d:ea:6c:5b:
ef:28:e9:dd:08:2a:96:0f:8f:9d:16:ae:27:f6:71:
de:9b:b9:09:3d:cc:85:eb:be:85:c5:50:24:9f:2b:
b0:ac:9d:4b:79:1a:a5:25:1e:a2:fa:da:19:9e:ac:
d7:ee:4c:7b:4c:aa:ad:f6:02:1a:6f:8e:4f:3d:ac:
85:7e:c9:d0:4f:a7:76:d9:06:35:a0:3c:a0:b3:a1:
63:6d:de:5d:be:96:30:b6:8c:5d:21:53:35:63:c9:
eb:2c:82:ce:08:0b:9e:92:d7:66:4d:86:f7:50:78:
81:a6:00:21:3d:04:89:dd:f8:95:64:6d:8f:98:93:
06:e0:e2:c5:d1:78:d4:d0:f5:22:33:ce:8c:85:45:
c6:6b:a8:c1:ae:4c:28:1d:9e:b4:c8:d8:bd:08:bb:
34:d7:91:bc:91:b4:f0:1e:9c:62:8b:18:50:78:c1:
19:b1:dd:69:a4:4e:08:92:ff:76:0f:bc:8c:27:c1:
85:03:85:bc:c4:50:19:4b:bc:b1:0b:db:1e:75:a0:
2f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:62:B7:2F:51:89:40:97:0F:FC:D8:7A:03:AD:C4:95:DF:9B:10:3B
X509v3 Authority Key Identifier:
keyid:22:A7:2F:3E:D2:3E:22:94:F9:BB:6B:A6:60:24:61:66:C1:3F:83:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqcvPtI-IpT5u2umYCRhZsE_gyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/oGK3L1GJQJcP_Nh6A63Eld-bEDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/479673-9667-4eda-bbbd-b0b2eaaeed61/1/IqcvPtI-IpT5u2umYCRhZsE_gyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.212.0/22
Signature Algorithm: sha256WithRSAEncryption
06:4d:73:5b:70:fa:57:be:76:1c:0f:03:ea:60:7f:2e:e0:e5:
19:1e:49:0a:b1:d2:e0:a2:ee:c7:13:0a:de:b9:e9:b8:75:a3:
48:89:76:0b:dd:67:a4:ce:61:99:dc:44:44:5a:b3:d1:dd:ba:
fa:a6:79:e2:42:17:a3:76:6a:3b:ac:e5:b8:9e:04:d4:55:8e:
59:8f:da:f0:73:6d:43:fb:72:2d:c3:ef:71:3d:b0:cf:4e:f5:
cf:0a:c7:c0:20:c4:b2:9f:4b:38:fe:8e:76:97:47:d7:63:d4:
56:ea:a4:d6:62:b0:d4:b8:f9:22:cc:fd:d4:48:3c:f6:ea:f6:
85:b7:24:56:6f:b0:a7:4d:dc:bd:a6:22:37:fe:3c:08:16:a6:
8f:b5:df:cb:d8:46:6e:df:c1:b3:6b:0b:25:fb:40:8a:4e:71:
1c:c9:8b:1c:cb:63:7d:f9:83:02:25:79:ea:13:fd:87:1d:3f:
bd:07:1f:d4:6c:c2:47:c3:50:27:85:fc:59:f1:92:50:c6:f8:
df:c8:d2:9f:b8:ac:5a:36:4f:94:a3:12:e2:7f:57:7a:54:bc:
f5:f2:4a:12:3d:40:d0:ec:6c:b4:9c:4c:69:1c:2d:24:2b:29:
59:ba:d2:81:aa:9c:69:c9:f5:c6:f9:6e:5c:70:c4:88:09:9e:
78:c8:6d:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxac02rSJlD36k6cNRnjmwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTcyZjNlZDIzZTIyOTRmOWJiNmJhNjYwMjQ2MTY2YzEz
ZjgzMjQwHhcNMjMwMTAyMDczNzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDYyYjcyZjUxODk0MDk3MGZmY2Q4N2EwM2FkYzQ5NWRmOWIxMDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwqvNxfPdtsAB0Ta2JKJ6P16drd/
XlR2zip40chGL09OOrBlaIhexaP7Z8Q4Q7AZwOGlq/XJjh3qbFvvKOndCCqWD4+d
Fq4n9nHem7kJPcyF676FxVAknyuwrJ1LeRqlJR6i+toZnqzX7kx7TKqt9gIab45P
PayFfsnQT6d22QY1oDygs6Fjbd5dvpYwtoxdIVM1Y8nrLILOCAuektdmTYb3UHiB
pgAhPQSJ3fiVZG2PmJMG4OLF0XjU0PUiM86MhUXGa6jBrkwoHZ60yNi9CLs015G8
kbTwHpxiixhQeMEZsd1ppE4Ikv92D7yMJ8GFA4W8xFAZS7yxC9sedaAvpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKBity9RiUCXD/zYegOtxJXfmxA7MB8GA1UdIwQY
MBaAFCKnLz7SPiKU+btrpmAkYWbBP4MkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQt
YjBiMmVhYWVlZDYxLzEvb0dLM0wxR0pRSmNQX05oNkE2M0VsZC1iRURzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC80Nzk2NzMtOTY2Ny00ZWRhLWJiYmQtYjBiMmVhYWVlZDYx
LzEvSXFjdlB0SS1JcFQ1dTJ1bVlDUmhac0VfZ3lRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwcnUMA0G
CSqGSIb3DQEBCwUAA4IBAQAGTXNbcPpXvnYcDwPqYH8u4OUZHkkKsdLgou7HEwre
uem4daNIiXYL3WekzmGZ3EREWrPR3br6pnniQhejdmo7rOW4ngTUVY5Zj9rwc21D
+3Itw+9xPbDPTvXPCsfAIMSyn0s4/o52l0fXY9RW6qTWYrDUuPkizP3USDz26vaF
tyRWb7CnTdy9piI3/jwIFqaPtd/L2EZu38Gzawsl+0CKTnEcyYscy2N9+YMCJXnq
E/2HHT+9Bx/UbMJHw1AnhfxZ8ZJQxvjfyNKfuKxaNk+UoxLif1d6VLz18koSPUDQ
7Gy0nExpHC0kKylZutKBqpxpyfXG+W5ccMSICZ54yG39
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:12 2024 by rpki-client on console-ams.rpki-client.org