Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/onTS-W369EN1oYlObTttlq4sj68.roa
File: onTS-W369EN1oYlObTttlq4sj68.roa (raw, json)
Hash identifier: y6tfIV0WNoP0CWbWomjol3x0z8YMmRRWPUnAG4pEMkk=
Subject key identifier: A2:74:D2:F9:6D:FA:F4:43:75:A1:89:4E:6D:3B:6D:96:AE:2C:8F:AF
Certificate issuer: /CN=352ae33b11b36a319ba81347d852480d8e74c87d
Certificate serial: 01856B40CB8B81FB22DA8B138F07D88A2663
Authority key identifier: 35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/onTS-W369EN1oYlObTttlq4sj68.roa
Signing time: Sun 01 Jan 2023 02:54:46 +0000
ROA not before: Sun 01 Jan 2023 02:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207412
IP address blocks: 77.231.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Mar 2023 08:10:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:cb:8b:81:fb:22:da:8b:13:8f:07:d8:8a:26:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352ae33b11b36a319ba81347d852480d8e74c87d
Validity
Not Before: Jan 1 02:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a274d2f96dfaf44375a1894e6d3b6d96ae2c8faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b8:4e:89:d8:6a:f1:ab:f2:d0:ac:57:a6:08:
6e:99:71:fd:56:ad:bd:82:e0:40:61:86:b0:45:2c:
85:47:9c:bc:ea:e6:81:45:3c:fc:ed:ab:8d:1d:5d:
ad:93:85:62:ad:34:44:a7:31:a8:77:e9:84:73:e0:
68:b4:a0:50:bb:a2:00:12:df:19:3e:72:69:49:9a:
7c:45:cb:3d:d3:8c:cd:5a:2b:21:78:37:2d:e1:20:
18:10:65:5a:17:ed:dc:5c:cc:e5:87:03:f1:1a:ec:
44:2b:7a:cf:15:b9:97:c9:6f:bf:cd:f2:9d:8a:33:
80:0a:d7:8c:1c:d5:81:5b:90:19:c4:22:36:44:3e:
14:b1:93:ec:84:a2:aa:61:f2:61:a8:e1:f7:a2:f1:
f5:fc:b3:38:9b:e0:09:da:22:0e:28:40:d5:cb:9c:
fc:48:b2:79:03:2c:d3:c1:eb:7c:c1:b3:f3:46:b9:
a4:9a:ca:28:4a:af:65:23:e0:68:b7:78:33:99:28:
ac:7d:87:0c:f6:03:cf:c5:9d:f3:eb:4e:8d:c8:06:
a9:dc:6a:3c:48:a5:2e:8f:ec:f0:7e:65:68:4c:e9:
9f:48:84:17:57:37:07:f3:94:0f:83:ec:1c:86:3c:
00:e3:86:cb:b7:de:78:ae:30:7a:df:83:86:2e:ce:
1d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:74:D2:F9:6D:FA:F4:43:75:A1:89:4E:6D:3B:6D:96:AE:2C:8F:AF
X509v3 Authority Key Identifier:
keyid:35:2A:E3:3B:11:B3:6A:31:9B:A8:13:47:D8:52:48:0D:8E:74:C8:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NSrjOxGzajGbqBNH2FJIDY50yH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/onTS-W369EN1oYlObTttlq4sj68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c55ab0-ea22-4a19-8b33-25050c593aa1/1/NSrjOxGzajGbqBNH2FJIDY50yH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.231.176.0/24
Signature Algorithm: sha256WithRSAEncryption
93:6d:8b:b7:79:f4:b1:a8:6f:9d:15:03:ee:4c:a4:c5:55:e0:
63:4d:d8:ab:36:83:ac:d8:3f:fd:e3:6b:16:80:0d:d4:2f:44:
43:04:e9:be:ae:0d:af:9f:1a:5a:21:b9:aa:1a:8e:ae:72:6f:
82:66:c8:1a:bb:44:80:2d:b4:7b:12:33:0c:49:49:2e:77:8c:
e3:e1:aa:cf:64:ff:ae:37:51:85:3e:59:4a:c0:86:4b:f9:b9:
1e:86:22:b2:d0:34:3d:cb:00:4c:2b:9c:f9:37:e0:22:0e:38:
08:d2:34:31:11:e9:cb:a6:bc:2d:93:10:37:b4:df:b9:eb:d4:
1c:50:2d:bf:6e:5c:15:50:8d:4e:9f:b2:3d:1c:c6:77:f1:09:
77:b8:9c:c2:76:3a:ff:ba:dc:d7:87:8e:2a:7a:6c:b5:f6:61:
0e:6d:08:6c:e1:53:34:f3:94:a9:ff:61:6b:23:f7:5f:a8:96:
a9:aa:a0:c2:2e:11:88:07:75:0d:3b:fe:26:cc:de:db:c1:86:
f4:c1:ab:97:a7:78:32:6b:6b:64:f0:e1:ea:d1:1f:a8:69:6f:
6c:ee:b0:b2:af:c1:d6:ef:5f:7f:a8:f4:55:f1:8a:1f:6d:ce:
74:ac:40:f1:12:c6:dd:ad:88:c4:72:79:7d:8c:fc:a0:a7:2f:
83:64:55:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrQMuLgfsi2osTjwfYiiZjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MmFlMzNiMTFiMzZhMzE5YmE4MTM0N2Q4NTI0ODBkOGU3
NGM4N2QwHhcNMjMwMTAxMDI1NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjc0ZDJmOTZkZmFmNDQzNzVhMTg5NGU2ZDNiNmQ5NmFlMmM4ZmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rhOidhq8avy0KxXpghumXH9Vq29
guBAYYawRSyFR5y86uaBRTz87auNHV2tk4VirTREpzGod+mEc+BotKBQu6IAEt8Z
PnJpSZp8Rcs904zNWisheDct4SAYEGVaF+3cXMzlhwPxGuxEK3rPFbmXyW+/zfKd
ijOACteMHNWBW5AZxCI2RD4UsZPshKKqYfJhqOH3ovH1/LM4m+AJ2iIOKEDVy5z8
SLJ5AyzTwet8wbPzRrmkmsooSq9lI+Bot3gzmSisfYcM9gPPxZ3z606NyAap3Go8
SKUuj+zwfmVoTOmfSIQXVzcH85QPg+wchjwA44bLt954rjB634OGLs4dawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKJ00vlt+vRDdaGJTm07bZauLI+vMB8GA1UdIwQY
MBaAFDUq4zsRs2oxm6gTR9hSSA2OdMh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMt
MjUwNTBjNTkzYWExLzEvb25UUy1XMzY5RU4xb1lsT2JUdHRscTRzajY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jNTVhYjAtZWEyMi00YTE5LThiMzMtMjUwNTBjNTkzYWEx
LzEvTlNyak94R3phakdicUJOSDJGSklEWTUweUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATeewMA0G
CSqGSIb3DQEBCwUAA4IBAQCTbYu3efSxqG+dFQPuTKTFVeBjTdirNoOs2D/942sW
gA3UL0RDBOm+rg2vnxpaIbmqGo6ucm+CZsgau0SALbR7EjMMSUkud4zj4arPZP+u
N1GFPllKwIZL+bkehiKy0DQ9ywBMK5z5N+AiDjgI0jQxEenLprwtkxA3tN+569Qc
UC2/blwVUI1On7I9HMZ38Ql3uJzCdjr/utzXh44qemy19mEObQhs4VM085Sp/2Fr
I/dfqJapqqDCLhGIB3UNO/4mzN7bwYb0wauXp3gya2tk8OHq0R+oaW9s7rCyr8HW
719/qPRV8Yofbc50rEDxEsbdrYjEcnl9jPygpy+DZFUJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org