Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/O8D-yqtfnzXp1IM3g2VNt4NsdAc.roa
File: O8D-yqtfnzXp1IM3g2VNt4NsdAc.roa (raw, json)
Hash identifier: kdnY1kYib4FfxERtLnFE9AiZTO7vDBeL1VD6+j02yuc=
Subject key identifier: 3B:C0:FE:CA:AB:5F:9F:35:E9:D4:83:37:83:65:4D:B7:83:6C:74:07
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 01857195798715EFEE7E8CF4CE0F5E69DFDC
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/O8D-yqtfnzXp1IM3g2VNt4NsdAc.roa
Signing time: Mon 02 Jan 2023 08:24:59 +0000
ROA not before: Mon 02 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50628
IP address blocks: 166.108.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:79:87:15:ef:ee:7e:8c:f4:ce:0f:5e:69:df:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jan 2 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bc0fecaab5f9f35e9d4833783654db7836c7407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fd:84:0d:9b:94:a3:73:4c:e9:e0:8c:df:4a:
03:a0:58:29:7d:e7:be:e3:d3:5b:fc:a1:3a:40:24:
e9:7b:d2:6f:b0:7d:4c:9c:b4:74:46:f0:32:f2:46:
b4:4c:49:c2:c9:a3:6d:89:84:9a:b2:b5:2f:4b:d6:
33:e8:92:5c:13:91:96:8f:bc:94:e7:05:32:7a:5a:
43:d4:30:99:9f:81:b7:bf:40:6d:ff:50:79:e4:41:
80:14:14:b4:a2:ca:12:e5:62:76:1a:80:3c:d2:82:
8a:4e:34:97:b9:79:f7:fb:fb:d8:80:fa:77:f6:34:
ae:43:a7:54:14:1e:b2:d5:8d:04:89:80:71:e0:ae:
82:21:2d:c8:c0:2a:07:3b:56:53:b7:98:57:72:33:
96:5c:88:67:0c:71:9d:c3:35:ab:7d:18:8a:bf:c1:
6c:73:4a:78:41:a9:47:d2:80:79:60:97:ee:a0:4e:
24:39:26:e3:50:ea:f1:16:8f:dd:e4:28:15:12:94:
a4:06:62:ac:53:76:1f:50:ab:7c:c4:c9:60:74:53:
d0:0f:b3:29:42:c8:a0:f2:53:80:00:7a:12:68:4b:
3b:b8:41:63:d7:eb:06:29:88:02:ac:1d:6b:97:6d:
93:de:4d:d3:c0:03:59:74:f6:ef:05:de:c4:e0:96:
22:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C0:FE:CA:AB:5F:9F:35:E9:D4:83:37:83:65:4D:B7:83:6C:74:07
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/O8D-yqtfnzXp1IM3g2VNt4NsdAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.128.0/24
Signature Algorithm: sha256WithRSAEncryption
63:38:b1:23:f1:a8:49:15:39:35:c8:10:bb:6a:1a:1f:cb:29:
a0:47:d6:ec:25:24:c8:c3:c4:6e:7e:ca:7f:fb:c4:ea:16:1b:
90:56:69:27:1c:6a:ef:d6:e4:d6:6e:64:67:7a:8b:fc:b9:16:
3f:32:c3:0f:7f:98:86:38:73:be:c6:e0:30:c3:ba:a7:de:82:
e1:92:86:20:b9:ce:05:cf:96:84:92:82:9e:12:81:66:c1:24:
e8:64:e8:87:f8:42:99:3b:fd:30:22:0d:20:de:eb:78:17:78:
aa:1b:37:31:9e:4f:ce:de:2a:b2:66:ee:99:6a:18:a7:94:64:
8e:18:aa:00:aa:61:4b:05:63:f6:59:3b:45:34:29:59:9c:dc:
28:ce:e4:28:2a:66:fe:e8:04:12:33:73:03:96:54:46:8f:62:
c0:c1:cb:47:11:e7:4b:de:3f:6a:6c:33:1a:8c:a3:d4:d3:5d:
8d:e2:be:ad:a8:fd:0a:0d:bc:64:77:20:da:e5:40:45:af:7f:
76:4c:05:3a:e2:13:b9:b2:48:91:0c:67:02:d6:1b:15:4a:97:
fe:e4:07:ae:e4:52:50:14:e2:cc:26:b5:c6:7e:10:5d:55:82:
f8:be:de:85:76:f2:8c:93:8c:cd:ec:27:dd:57:f3:72:97:67:
00:5b:71:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlXmHFe/ufoz0zg9ead/cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5MmI4NjA5NWNlNTU4ZDJlOTYxODcyOGE0NDIyOGEyN2Jl
OTA5OGYwHhcNMjMwMTAyMDgyNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmMwZmVjYWFiNWY5ZjM1ZTlkNDgzMzc4MzY1NGRiNzgzNmM3NDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/2EDZuUo3NM6eCM30oDoFgpfee+
49Nb/KE6QCTpe9JvsH1MnLR0RvAy8ka0TEnCyaNtiYSasrUvS9Yz6JJcE5GWj7yU
5wUyelpD1DCZn4G3v0Bt/1B55EGAFBS0osoS5WJ2GoA80oKKTjSXuXn3+/vYgPp3
9jSuQ6dUFB6y1Y0EiYBx4K6CIS3IwCoHO1ZTt5hXcjOWXIhnDHGdwzWrfRiKv8Fs
c0p4QalH0oB5YJfuoE4kOSbjUOrxFo/d5CgVEpSkBmKsU3YfUKt8xMlgdFPQD7Mp
Qsig8lOAAHoSaEs7uEFj1+sGKYgCrB1rl22T3k3TwANZdPbvBd7E4JYiyQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDvA/sqrX5816dSDN4NlTbeDbHQHMB8GA1UdIwQY
MBaAFJkrhglc5VjS6WGHKKRCKKJ76QmPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVN1R0NWemxXTkxwWVljb3BFSW9vbnZwQ1k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS84ZWE5YjktM2I2ZS00ZmRmLWI1ZDEt
ZjA0ZmRjYzA5ZTUxLzEvTzhELXlxdGZuelhwMUlNM2cyVk50NE5zZEFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS84ZWE5YjktM2I2ZS00ZmRmLWI1ZDEtZjA0ZmRjYzA5ZTUx
LzEvbVN1R0NWemxXTkxwWVljb3BFSW9vbnZwQ1k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQApmyAMA0G
CSqGSIb3DQEBCwUAA4IBAQBjOLEj8ahJFTk1yBC7ahofyymgR9bsJSTIw8Rufsp/
+8TqFhuQVmknHGrv1uTWbmRneov8uRY/MsMPf5iGOHO+xuAww7qn3oLhkoYguc4F
z5aEkoKeEoFmwSToZOiH+EKZO/0wIg0g3ut4F3iqGzcxnk/O3iqyZu6ZahinlGSO
GKoAqmFLBWP2WTtFNClZnNwozuQoKmb+6AQSM3MDllRGj2LAwctHEedL3j9qbDMa
jKPU012N4r6tqP0KDbxkdyDa5UBFr392TAU64hO5skiRDGcC1hsVSpf+5Aeu5FJQ
FOLMJrXGfhBdVYL4vt6FdvKMk4zN7CfdV/Nyl2cAW3Fl
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:27 2023 by rpki-client on console-ams.rpki-client.org