Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/osHaBrRa09gGG_Y83omy1WNApcw.roa
File: osHaBrRa09gGG_Y83omy1WNApcw.roa (raw, json)
Hash identifier: 2VSxLmMeCs/lw9+5DOC9n4YHAsu92AYnhM2QwHion6o=
Subject key identifier: A2:C1:DA:06:B4:5A:D3:D8:06:1B:F6:3C:DE:89:B2:D5:63:40:A5:CC
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D84C4573F14DE49549D577EF111002397
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/osHaBrRa09gGG_Y83omy1WNApcw.roa
Signing time: Wed 07 Feb 2024 18:11:16 +0000
ROA not before: Wed 07 Feb 2024 18:11:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35682
IP address blocks: 185.217.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:c4:57:3f:14:de:49:54:9d:57:7e:f1:11:00:23:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 7 18:11:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2c1da06b45ad3d8061bf63cde89b2d56340a5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:be:54:fa:2e:70:48:a2:ae:28:a5:14:a3:98:
a3:ae:ab:49:88:c0:c8:8f:41:34:b2:6a:74:85:bc:
df:52:33:55:b1:89:a5:51:f4:ad:20:ef:a6:34:52:
be:e5:ed:d8:77:58:2e:3d:a0:3c:6f:66:07:38:9c:
f6:b0:f8:b0:2f:a5:a9:8f:10:99:46:cb:04:67:29:
00:85:09:98:cf:0d:35:c6:8d:20:59:71:e6:1a:35:
73:35:e8:27:f9:a8:5a:38:3c:1a:35:8b:96:0e:d1:
3d:1e:32:d6:96:ec:77:e8:e8:89:8b:33:b5:9a:f7:
1f:48:f7:7a:73:66:ad:ff:e4:50:5f:e9:84:28:15:
b1:b9:24:d7:74:7c:1c:5f:1f:b5:28:3b:8d:f0:9e:
93:e8:89:4f:1a:de:dc:78:36:52:f8:50:47:54:17:
d0:c4:94:11:d8:63:7a:9e:0e:d9:42:9f:77:dd:8e:
19:75:e1:3e:52:61:58:59:24:5d:f4:ca:d2:3a:9a:
69:95:31:81:57:04:aa:d9:ec:9c:75:f1:dd:b6:65:
0b:ae:fa:fb:8d:b6:c6:b5:c5:4e:73:ad:1c:c6:98:
28:89:3e:86:46:d4:e4:e3:93:8d:7c:f9:69:a1:75:
6b:d5:df:78:75:cc:52:ec:2b:ff:57:17:d5:f6:1b:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C1:DA:06:B4:5A:D3:D8:06:1B:F6:3C:DE:89:B2:D5:63:40:A5:CC
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/osHaBrRa09gGG_Y83omy1WNApcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.131.0/24
Signature Algorithm: sha256WithRSAEncryption
97:65:62:f0:24:38:8e:ba:9a:fc:20:7b:93:7a:21:63:cd:ce:
e9:4f:54:2d:1e:31:d7:09:f1:a7:6e:50:2e:96:c1:42:9f:43:
ef:56:ee:ab:b3:1a:a1:25:94:d4:22:62:fd:c1:4c:5b:80:f2:
b3:94:ec:85:30:0e:91:92:27:af:9d:8b:18:47:dc:06:6f:5a:
c2:99:88:a6:d7:75:2c:46:4b:e6:55:43:77:e9:78:a5:be:c1:
90:c8:e7:b9:2b:28:2e:36:45:fc:cc:68:88:d8:0f:23:41:b0:
e5:bd:f5:4a:a5:ea:53:e3:a5:14:b2:28:e1:f8:d1:02:20:d0:
7f:9d:7c:79:6b:30:0d:45:2a:83:a2:62:3d:86:38:ed:52:2e:
3f:e4:6a:b9:fa:03:93:3e:c0:74:74:36:6e:f2:73:3a:42:ad:
96:d5:1b:85:b0:b3:45:ff:3d:1d:48:fb:b0:1c:ee:db:8e:9a:
23:58:84:67:87:a2:a8:63:03:0f:57:94:74:62:03:69:1f:41:
54:4b:47:42:db:83:6c:ed:68:1c:0b:00:08:d7:5f:75:e7:78:
77:47:34:6c:20:41:d5:f3:8b:ce:b0:00:e0:c5:62:13:14:09:
93:d3:b6:43:85:02:2d:23:0a:47:64:47:73:f1:37:85:a6:c4:
05:87:e7:0c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2ExFc/FN5JVJ1XfvERACOXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwMjA3MTgxMTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmMxZGEwNmI0NWFkM2Q4MDYxYmY2M2NkZTg5YjJkNTYzNDBhNWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhr5U+i5wSKKuKKUUo5ijrqtJiMDI
j0E0smp0hbzfUjNVsYmlUfStIO+mNFK+5e3Yd1guPaA8b2YHOJz2sPiwL6WpjxCZ
RssEZykAhQmYzw01xo0gWXHmGjVzNegn+ahaODwaNYuWDtE9HjLWlux36OiJizO1
mvcfSPd6c2at/+RQX+mEKBWxuSTXdHwcXx+1KDuN8J6T6IlPGt7ceDZS+FBHVBfQ
xJQR2GN6ng7ZQp933Y4ZdeE+UmFYWSRd9MrSOppplTGBVwSq2eycdfHdtmULrvr7
jbbGtcVOc60cxpgoiT6GRtTk45ONfPlpoXVr1d94dcxS7Cv/VxfV9htRYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKLB2ga0WtPYBhv2PN6JstVjQKXMMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvb3NIYUJyUmEwOWdHR19ZODNvbXkxV05BcGN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudmDMA0G
CSqGSIb3DQEBCwUAA4IBAQCXZWLwJDiOupr8IHuTeiFjzc7pT1QtHjHXCfGnblAu
lsFCn0PvVu6rsxqhJZTUImL9wUxbgPKzlOyFMA6RkievnYsYR9wGb1rCmYim13Us
RkvmVUN36XilvsGQyOe5KyguNkX8zGiI2A8jQbDlvfVKpepT46UUsijh+NECINB/
nXx5azANRSqDomI9hjjtUi4/5Gq5+gOTPsB0dDZu8nM6Qq2W1RuFsLNF/z0dSPuw
HO7bjpojWIRnh6KoYwMPV5R0YgNpH0FUS0dC24Ns7WgcCwAI119153h3RzRsIEHV
84vOsADgxWITFAmT07ZDhQItIwpHZEdz8TeFpsQFh+cM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org