Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/OjVMk-IMZZr2WJb_btppown3QGw.roa
File: OjVMk-IMZZr2WJb_btppown3QGw.roa (raw, json)
Hash identifier: RvvS+AWihOzT/48bjK90sMSlvN2EGBLcGipiIObRyFU=
Subject key identifier: 3A:35:4C:93:E2:0C:65:9A:F6:58:96:FF:6E:DA:69:A3:09:F7:40:6C
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01886B98F0ABDA884793EDE41EA5C87B0AE0
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/OjVMk-IMZZr2WJb_btppown3QGw.roa
Signing time: Tue 30 May 2023 07:39:25 +0000
ROA not before: Tue 30 May 2023 07:39:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 79.175.95.0/24 maxlen: 24
79.175.96.0/24 maxlen: 24
188.255.144.0/24 maxlen: 24
188.255.212.0/24 maxlen: 24
109.121.38.0/24 maxlen: 24
109.121.36.0/24 maxlen: 24
109.121.34.0/24 maxlen: 24
109.121.37.0/24 maxlen: 24
109.121.33.0/24 maxlen: 24
109.121.43.0/24 maxlen: 24
109.121.42.0/24 maxlen: 24
109.121.41.0/24 maxlen: 24
109.121.39.0/24 maxlen: 24
109.121.47.0/24 maxlen: 24
109.121.45.0/24 maxlen: 24
212.69.11.0/24 maxlen: 24
178.253.237.0/24 maxlen: 24
109.233.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6b:98:f0:ab:da:88:47:93:ed:e4:1e:a5:c8:7b:0a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: May 30 07:39:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a354c93e20c659af65896ff6eda69a309f7406c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:52:79:67:2c:83:70:d8:ff:f1:c9:69:67:33:
19:c5:fb:6a:06:c9:bb:b0:d6:62:c0:2a:0d:5d:90:
2f:52:d8:fb:7a:39:bb:07:28:58:14:5a:60:f3:76:
1e:d2:ce:fb:f4:f6:6d:ca:49:1a:d3:3c:b2:95:ee:
37:d3:bb:15:bd:68:f7:11:e5:10:9b:29:f1:49:39:
d2:03:6b:da:d0:8f:5a:e5:5f:ee:f3:dd:53:f5:60:
fb:ec:64:30:3d:27:8b:e9:66:de:b0:7c:96:55:fb:
7f:8f:88:de:9c:c3:da:5a:f9:60:84:38:f3:5f:7c:
af:54:a4:10:a7:79:d4:fc:da:8e:ec:9f:28:a2:e8:
90:48:8b:3a:79:e9:dc:bb:60:fe:25:14:52:8a:6d:
79:be:91:e5:50:27:32:0a:fb:43:92:c0:0a:67:2d:
b3:9d:d7:c2:a3:97:ee:ce:7e:18:43:a4:29:26:90:
9b:7f:10:71:21:ce:01:b1:71:b5:ad:fd:d2:e8:87:
83:c5:ae:2e:96:e6:0a:ed:ce:1c:aa:8f:57:dd:3b:
f4:fc:2c:5f:61:30:43:24:bc:00:85:71:e5:50:f7:
03:47:6b:c7:d1:e7:8c:b4:08:b9:16:53:08:a5:3a:
38:61:2b:78:63:09:5c:fc:72:81:1a:88:99:ec:16:
6a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:35:4C:93:E2:0C:65:9A:F6:58:96:FF:6E:DA:69:A3:09:F7:40:6C
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/OjVMk-IMZZr2WJb_btppown3QGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.175.95.0-79.175.96.255
109.121.33.0-109.121.34.255
109.121.36.0/22
109.121.41.0-109.121.43.255
109.121.45.0/24
109.121.47.0/24
109.233.184.0/24
178.253.237.0/24
188.255.144.0/24
188.255.212.0/24
212.69.11.0/24
Signature Algorithm: sha256WithRSAEncryption
89:de:1b:f5:8a:26:93:42:5e:86:70:da:e4:ec:e7:99:91:64:
f4:35:47:50:f1:e1:b3:57:91:3e:11:83:db:e3:1c:e7:bb:c2:
8b:ce:44:fd:53:02:a6:d2:54:73:9b:86:ce:49:b2:40:b5:00:
c0:28:62:88:54:8e:31:b4:2e:41:a4:92:68:40:d8:f0:45:7f:
ef:2c:b7:4c:f1:8f:78:0c:58:44:a2:92:28:3f:31:86:a1:ae:
54:72:8f:77:80:76:e8:ae:81:9a:1b:ff:dc:53:f6:77:72:da:
28:98:2e:04:16:e6:dd:f1:82:d1:c9:76:1c:f8:fc:46:7f:0d:
ce:89:2a:5d:d1:86:27:c9:c6:5f:37:3c:df:97:a5:5f:38:d8:
4b:72:d1:8b:55:cd:e5:93:9e:75:5c:00:bb:2b:fe:26:78:9b:
0c:15:d1:5a:ee:04:aa:2f:5f:a9:3f:44:fb:de:02:98:55:86:
83:d5:98:12:98:4f:72:6e:0e:9f:99:1c:da:6a:99:88:23:27:
e4:e2:72:0e:fb:b5:c2:1d:57:d5:94:5a:b2:b0:25:66:51:d5:
c2:d8:4a:81:0e:05:e9:c0:6f:cc:52:17:6d:70:e1:a1:23:e3:
3a:ed:19:f8:cd:f3:80:0e:72:0a:c4:ff:9a:e9:48:11:c6:5c:
8c:2f:e9:ca
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgISAYhrmPCr2ohHk+3kHqXIewrgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmODRlNDczOGE3MGVhMzljMDhjZWYyMTA0MzJhZTM5OWVj
N2U5MTUwHhcNMjMwNTMwMDczOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTM1NGM5M2UyMGM2NTlhZjY1ODk2ZmY2ZWRhNjlhMzA5Zjc0MDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFJ5ZyyDcNj/8clpZzMZxftqBsm7
sNZiwCoNXZAvUtj7ejm7ByhYFFpg83Ye0s779PZtykka0zyyle4307sVvWj3EeUQ
mynxSTnSA2va0I9a5V/u891T9WD77GQwPSeL6WbesHyWVft/j4jenMPaWvlghDjz
X3yvVKQQp3nU/NqO7J8oouiQSIs6eencu2D+JRRSim15vpHlUCcyCvtDksAKZy2z
ndfCo5fuzn4YQ6QpJpCbfxBxIc4BsXG1rf3S6IeDxa4uluYK7c4cqo9X3Tv0/Cxf
YTBDJLwAhXHlUPcDR2vH0eeMtAi5FlMIpTo4YSt4Ywlc/HKBGoiZ7BZqqQIDAQAB
o4ICXTCCAlkwHQYDVR0OBBYEFDo1TJPiDGWa9liW/27aaaMJ90BsMB8GA1UdIwQY
MBaAFG+E5HOKcOo5wIzvIQQyrjmex+kVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYt
ZmFlNWRiZWQzYjFiLzEvT2pWTWstSU1aWnIyV0piX2J0cHBvd24zUUd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9kZGY4YjMtMWMwOC00OTVjLThkZGYtZmFlNWRiZWQzYjFi
LzEvYjRUa2M0cHc2am5Bak84aEJES3VPWjdINlJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHMGCCsGAQUFBwEHAQH/BGQwYjBgBAIAATBaMAwDBABPr18D
BABPr2AwDAMEAG15IQMEAG15IgMEAm15JDAMAwQAbXkpAwQCbXkoAwQAbXktAwQA
bXkvAwQAbem4AwQAsv3tAwQAvP+QAwQAvP/UAwQA1EULMA0GCSqGSIb3DQEBCwUA
A4IBAQCJ3hv1iiaTQl6GcNrk7OeZkWT0NUdQ8eGzV5E+EYPb4xznu8KLzkT9UwKm
0lRzm4bOSbJAtQDAKGKIVI4xtC5BpJJoQNjwRX/vLLdM8Y94DFhEopIoPzGGoa5U
co93gHboroGaG//cU/Z3ctoomC4EFubd8YLRyXYc+PxGfw3OiSpd0YYnycZfNzzf
l6VfONhLctGLVc3lk551XAC7K/4meJsMFdFa7gSqL1+pP0T73gKYVYaD1ZgSmE9y
bg6fmRzaapmIIyfk4nIO+7XCHVfVlFqysCVmUdXC2EqBDgXpwG/MUhdtcOGhI+M6
7Rn4zfOADnIKxP+a6UgRxlyML+nK
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org