Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/f65960-b03c-498c-b6d5-60951e97588c/1/OMyDhq1AouZlH97t-jLzBYEGaRI.roa
File: OMyDhq1AouZlH97t-jLzBYEGaRI.roa (raw, json)
Hash identifier: 7B+lOSOHc+pqvRhFHdlroDQW6lc74/8/sy+jCn7iTw0=
Subject key identifier: 38:CC:83:86:AD:40:A2:E6:65:1F:DE:ED:FA:32:F3:05:81:06:69:12
Certificate issuer: /CN=1b368e70269de660cbc14df9c763b018788a1ffc
Certificate serial: 018570673956A90AD2EFBA28F898A80A033B
Authority key identifier: 1B:36:8E:70:26:9D:E6:60:CB:C1:4D:F9:C7:63:B0:18:78:8A:1F:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GzaOcCad5mDLwU35x2OwGHiKH_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/f65960-b03c-498c-b6d5-60951e97588c/1/OMyDhq1AouZlH97t-jLzBYEGaRI.roa
Signing time: Mon 02 Jan 2023 02:54:51 +0000
ROA not before: Mon 02 Jan 2023 02:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204824
IP address blocks: 185.218.48.0/22 maxlen: 23
2a0b:d340::/29 maxlen: 30
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:39:56:a9:0a:d2:ef:ba:28:f8:98:a8:0a:03:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b368e70269de660cbc14df9c763b018788a1ffc
Validity
Not Before: Jan 2 02:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38cc8386ad40a2e6651fdeedfa32f30581066912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:5a:ea:ee:82:f4:3f:6c:b5:de:74:87:6d:54:
66:d1:f0:86:03:00:60:5b:49:6a:55:4e:09:6d:4c:
86:71:a0:56:57:6f:5a:a8:14:4e:52:45:f6:68:7e:
bb:1c:7a:ab:41:c0:fd:b1:1a:af:07:10:58:76:0d:
c3:0b:d6:4a:94:f2:59:42:ac:cd:c3:98:40:2a:5d:
ac:51:9d:7a:df:b6:ea:48:92:4d:b9:51:83:3a:5f:
23:20:7d:1c:d3:6f:a7:85:a4:99:a3:64:f6:ef:14:
68:40:66:4c:4b:7b:98:f5:cf:89:84:b3:03:89:8c:
20:36:64:68:12:01:37:05:24:fe:71:49:d1:c7:5b:
1c:54:6d:59:1e:c3:d9:39:e3:ae:6c:39:45:5b:ad:
0d:bf:70:11:36:6d:7e:bd:36:0e:d4:fa:17:1c:a2:
ec:71:61:c6:bc:ff:c0:b0:68:06:8b:d3:f8:23:10:
64:a4:30:de:af:e1:a2:ca:cc:e4:11:f7:9c:42:f9:
d2:c0:28:0d:cb:8f:14:6c:68:32:17:88:f2:37:14:
61:e3:c3:fe:fc:dd:2d:3a:fc:99:53:2f:db:40:22:
06:ea:1e:71:f7:59:34:59:85:e4:bd:8d:50:d3:a4:
f6:c7:51:e8:ad:1c:ee:4b:80:cc:db:07:ab:06:0a:
0b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CC:83:86:AD:40:A2:E6:65:1F:DE:ED:FA:32:F3:05:81:06:69:12
X509v3 Authority Key Identifier:
keyid:1B:36:8E:70:26:9D:E6:60:CB:C1:4D:F9:C7:63:B0:18:78:8A:1F:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GzaOcCad5mDLwU35x2OwGHiKH_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/f65960-b03c-498c-b6d5-60951e97588c/1/OMyDhq1AouZlH97t-jLzBYEGaRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/f65960-b03c-498c-b6d5-60951e97588c/1/GzaOcCad5mDLwU35x2OwGHiKH_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.48.0/22
IPv6:
2a0b:d340::/29
Signature Algorithm: sha256WithRSAEncryption
d2:7c:39:2c:a3:36:b6:13:20:2b:58:39:6b:2d:c3:89:58:4b:
ad:67:f3:c2:ae:6b:5c:ca:f4:f6:52:15:01:2e:94:07:ad:13:
33:5b:69:f2:db:33:e7:91:14:20:f7:22:15:45:26:58:f6:44:
36:98:71:44:9f:d8:62:87:64:c9:73:f6:35:2f:bb:cc:cf:a3:
53:47:9e:c7:d4:94:9d:a2:5c:32:df:d1:c7:a8:f7:2d:81:9a:
de:d4:44:89:e8:f1:d5:f6:c5:d8:4e:25:45:de:04:d5:49:48:
58:67:ac:97:e1:f8:f8:6e:82:9b:be:85:75:a4:30:40:81:de:
a6:ed:d5:e4:58:3a:bc:b7:ef:b8:cd:e4:d4:6c:4c:ce:20:c3:
50:38:57:75:f5:49:d9:8e:c5:b2:3c:81:8b:7e:3d:bf:b6:09:
82:64:3e:a7:57:8a:3c:2b:d1:c7:ad:77:85:91:37:ab:f4:e7:
29:7b:01:1a:20:58:76:fe:81:4b:34:01:bd:06:11:bd:5e:94:
30:8c:e2:5e:a8:cf:57:1c:17:8d:f8:b0:69:eb:ee:d7:55:15:
69:7c:49:2c:73:ce:f7:40:87:b2:39:39:87:33:00:93:18:1a:
f8:fe:8c:b9:ba:8d:ba:83:31:09:7b:6a:83:08:22:1f:d5:23:
91:70:eb:51
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVwZzlWqQrS77oo+JioCgM7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMzY4ZTcwMjY5ZGU2NjBjYmMxNGRmOWM3NjNiMDE4Nzg4
YTFmZmMwHhcNMjMwMTAyMDI1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOGNjODM4NmFkNDBhMmU2NjUxZmRlZWRmYTMyZjMwNTgxMDY2OTEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjlrq7oL0P2y13nSHbVRm0fCGAwBg
W0lqVU4JbUyGcaBWV29aqBROUkX2aH67HHqrQcD9sRqvBxBYdg3DC9ZKlPJZQqzN
w5hAKl2sUZ1637bqSJJNuVGDOl8jIH0c02+nhaSZo2T27xRoQGZMS3uY9c+JhLMD
iYwgNmRoEgE3BST+cUnRx1scVG1ZHsPZOeOubDlFW60Nv3ARNm1+vTYO1PoXHKLs
cWHGvP/AsGgGi9P4IxBkpDDer+GiyszkEfecQvnSwCgNy48UbGgyF4jyNxRh48P+
/N0tOvyZUy/bQCIG6h5x91k0WYXkvY1Q06T2x1HorRzuS4DM2werBgoLdwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFDjMg4atQKLmZR/e7foy8wWBBmkSMB8GA1UdIwQY
MBaAFBs2jnAmneZgy8FN+cdjsBh4ih/8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3phT2NDYWQ1bURMd1UzNXgyT3dHSGlLSF93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9mNjU5NjAtYjAzYy00OThjLWI2ZDUt
NjA5NTFlOTc1ODhjLzEvT015RGhxMUFvdVpsSDk3dC1qTHpCWUVHYVJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny9mNjU5NjAtYjAzYy00OThjLWI2ZDUtNjA5NTFlOTc1ODhj
LzEvR3phT2NDYWQ1bURMd1UzNXgyT3dHSGlLSF93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudowMA0E
AgACMAcDBQMqC9NAMA0GCSqGSIb3DQEBCwUAA4IBAQDSfDksoza2EyArWDlrLcOJ
WEutZ/PCrmtcyvT2UhUBLpQHrRMzW2ny2zPnkRQg9yIVRSZY9kQ2mHFEn9hih2TJ
c/Y1L7vMz6NTR57H1JSdolwy39HHqPctgZre1ESJ6PHV9sXYTiVF3gTVSUhYZ6yX
4fj4boKbvoV1pDBAgd6m7dXkWDq8t++4zeTUbEzOIMNQOFd19UnZjsWyPIGLfj2/
tgmCZD6nV4o8K9HHrXeFkTer9OcpewEaIFh2/oFLNAG9BhG9XpQwjOJeqM9XHBeN
+LBp6+7XVRVpfEksc873QIeyOTmHMwCTGBr4/oy5uo26gzEJe2qDCCIf1SORcOtR
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:19 2024 by rpki-client on console-fra.rpki-client.org