Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/Oibt3ZH_WwO_ddzAKSqlzmuV9wU.roa
File: Oibt3ZH_WwO_ddzAKSqlzmuV9wU.roa (raw, json)
Hash identifier: dSnAJ49lHTYoa9+AHdBNlt2tfInJfPTwN8sgfFZ5odI=
Subject key identifier: 3A:26:ED:DD:91:FF:5B:03:BF:75:DC:C0:29:2A:A5:CE:6B:95:F7:05
Certificate issuer: /CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Certificate serial: 0185714C4262961296F4D576D7920FB7C853
Authority key identifier: E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/Oibt3ZH_WwO_ddzAKSqlzmuV9wU.roa
Signing time: Mon 02 Jan 2023 07:05:01 +0000
ROA not before: Mon 02 Jan 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202447
IP address blocks: 147.236.118.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:42:62:96:12:96:f4:d5:76:d7:92:0f:b7:c8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a851ddae5a64cc38825395be9a507da95ab7cf
Validity
Not Before: Jan 2 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a26eddd91ff5b03bf75dcc0292aa5ce6b95f705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a3:3f:ec:4e:69:3d:5b:df:f8:f2:c5:ff:7d:
41:a4:90:38:1d:3f:3e:22:25:88:43:c0:60:5c:c2:
59:b6:cd:1b:42:85:d7:c8:ab:bc:fb:d2:5e:f7:e9:
ac:35:75:cb:7b:83:07:8f:d2:8d:ce:73:36:6d:ba:
c8:d2:38:21:68:53:11:52:ed:0f:f4:a0:03:34:69:
0c:2c:96:9f:73:66:38:0e:3b:19:91:94:f4:05:c0:
23:5b:b8:2b:fd:26:a3:ce:9d:3a:81:c0:d6:b8:84:
c4:5f:d3:18:02:38:54:81:20:96:37:c5:6b:f9:fe:
fd:52:74:00:de:90:ff:b9:4f:49:56:9a:9a:88:21:
da:7c:6c:5d:e4:be:11:46:72:2a:62:8f:cd:53:16:
21:57:43:07:82:f2:cb:a9:b8:7b:b5:e5:51:9b:8d:
ac:f6:20:68:bd:aa:0d:9e:3f:47:a3:88:52:ff:c9:
53:92:c1:e7:51:3a:b5:17:ef:7e:ed:10:04:94:14:
a1:61:8d:c9:51:03:89:63:a3:51:9f:28:b1:87:e0:
8d:cc:07:17:be:20:1b:3e:a8:44:57:ab:71:92:81:
08:9c:12:50:28:68:82:cc:3e:08:a3:dc:66:d5:5a:
e0:9a:8f:50:e4:8b:be:1a:3f:2f:55:ee:27:60:4e:
a2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:26:ED:DD:91:FF:5B:03:BF:75:DC:C0:29:2A:A5:CE:6B:95:F7:05
X509v3 Authority Key Identifier:
keyid:E8:A8:51:DD:AE:5A:64:CC:38:82:53:95:BE:9A:50:7D:A9:5A:B7:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KhR3a5aZMw4glOVvppQfalat88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/Oibt3ZH_WwO_ddzAKSqlzmuV9wU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3638d7-3ec3-4595-a631-110c878dcd29/1/6KhR3a5aZMw4glOVvppQfalat88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.236.118.0/23
Signature Algorithm: sha256WithRSAEncryption
89:23:3b:40:6b:8f:11:ce:3e:d3:3c:42:e8:24:c8:2e:68:65:
3c:cb:2a:f1:50:18:01:84:1a:49:21:13:e5:c6:b2:76:95:c7:
dd:16:01:13:9d:4e:b8:77:7f:1d:2f:a9:06:5a:cb:03:ad:6c:
3e:35:ed:7a:de:2f:e8:a3:81:be:81:1c:38:15:66:c7:68:00:
01:ef:35:eb:76:84:16:4d:2a:8e:62:96:7a:4c:07:ad:03:13:
14:7a:24:c2:c5:5b:ff:ab:06:de:78:82:72:da:c0:b6:b8:8c:
0d:98:48:eb:bc:75:90:57:65:f9:4b:8f:b5:39:b8:1d:7a:05:
64:1d:30:40:3d:27:5f:1b:b2:ec:ea:a9:92:df:f6:2a:da:e7:
de:29:aa:8b:d4:44:74:14:14:f9:ca:4e:e5:6d:1f:c6:d6:fb:
ff:85:30:56:77:26:14:8a:fb:14:1d:57:03:61:96:19:40:d0:
4d:15:20:d7:1e:85:ca:a1:6f:2d:9a:18:35:78:88:c7:00:7c:
04:68:29:0b:8f:fc:b2:fb:9a:81:b5:0c:fe:9c:ab:70:89:99:
2a:53:b6:72:e1:c5:e0:37:e1:93:ff:d5:6c:c5:17:8e:8d:c9:
73:88:69:46:ef:15:77:5e:66:30:af:16:e1:ef:6c:75:2e:b6:
34:ee:82:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxTEJilhKW9NV215IPt8hTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4YTg1MWRkYWU1YTY0Y2MzODgyNTM5NWJlOWE1MDdkYTk1
YWI3Y2YwHhcNMjMwMTAyMDcwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTI2ZWRkZDkxZmY1YjAzYmY3NWRjYzAyOTJhYTVjZTZiOTVmNzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaM/7E5pPVvf+PLF/31BpJA4HT8+
IiWIQ8BgXMJZts0bQoXXyKu8+9Je9+msNXXLe4MHj9KNznM2bbrI0jghaFMRUu0P
9KADNGkMLJafc2Y4DjsZkZT0BcAjW7gr/Sajzp06gcDWuITEX9MYAjhUgSCWN8Vr
+f79UnQA3pD/uU9JVpqaiCHafGxd5L4RRnIqYo/NUxYhV0MHgvLLqbh7teVRm42s
9iBovaoNnj9Ho4hS/8lTksHnUTq1F+9+7RAElBShYY3JUQOJY6NRnyixh+CNzAcX
viAbPqhEV6txkoEInBJQKGiCzD4Io9xm1Vrgmo9Q5Iu+Gj8vVe4nYE6ihQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDom7d2R/1sDv3XcwCkqpc5rlfcFMB8GA1UdIwQY
MBaAFOioUd2uWmTMOIJTlb6aUH2pWrfPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNktoUjNhNWFaTXc0Z2xPVnZwcFFmYWxhdDg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zNjM4ZDctM2VjMy00NTk1LWE2MzEt
MTEwYzg3OGRjZDI5LzEvT2lidDNaSF9Xd09fZGR6QUtTcWx6bXVWOXdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC8zNjM4ZDctM2VjMy00NTk1LWE2MzEtMTEwYzg3OGRjZDI5
LzEvNktoUjNhNWFaTXc0Z2xPVnZwcFFmYWxhdDg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBk+x2MA0G
CSqGSIb3DQEBCwUAA4IBAQCJIztAa48Rzj7TPELoJMguaGU8yyrxUBgBhBpJIRPl
xrJ2lcfdFgETnU64d38dL6kGWssDrWw+Ne163i/oo4G+gRw4FWbHaAAB7zXrdoQW
TSqOYpZ6TAetAxMUeiTCxVv/qwbeeIJy2sC2uIwNmEjrvHWQV2X5S4+1ObgdegVk
HTBAPSdfG7Ls6qmS3/Yq2ufeKaqL1ER0FBT5yk7lbR/G1vv/hTBWdyYUivsUHVcD
YZYZQNBNFSDXHoXKoW8tmhg1eIjHAHwEaCkLj/yy+5qBtQz+nKtwiZkqU7Zy4cXg
N+GT/9VsxReOjclziGlG7xV3XmYwrxbh72x1LrY07oJn
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:24 2024 by rpki-client on console-fra.rpki-client.org