Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OHDY9qQAqZ6yZp0VaFdPT1X-9rY.roa
File: OHDY9qQAqZ6yZp0VaFdPT1X-9rY.roa (raw, json)
Hash identifier: VMJZtRJrG3yR1U31sY3sErS5UJ9uDeM1jxT7oOtoqC8=
Subject key identifier: 38:70:D8:F6:A4:00:A9:9E:B2:66:9D:15:68:57:4F:4F:55:FE:F6:B6
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 01856E38CC6B700C474BA95F572143BA81CA
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OHDY9qQAqZ6yZp0VaFdPT1X-9rY.roa
Signing time: Sun 01 Jan 2023 16:44:54 +0000
ROA not before: Sun 01 Jan 2023 16:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 146993
IP address blocks: 195.178.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:cc:6b:70:0c:47:4b:a9:5f:57:21:43:ba:81:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 1 16:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3870d8f6a400a99eb2669d1568574f4f55fef6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:a4:26:0d:16:41:61:51:db:48:8a:6e:55:
c9:d1:20:ab:80:98:68:fd:4f:5c:77:0e:bd:5b:4d:
a9:f4:6a:10:e5:eb:48:00:a9:5a:24:73:8a:21:36:
a3:92:9a:8e:01:04:3f:0a:ac:97:75:0b:38:57:47:
f1:cb:f7:9d:78:dc:87:c5:3a:30:25:f2:31:43:c7:
09:f8:43:7c:1c:6e:3f:c9:f1:89:40:b6:2c:99:e4:
93:89:4f:c0:17:84:21:ee:84:d1:03:90:2d:94:5b:
9a:01:fb:44:48:3e:31:1e:06:b1:f4:f0:fd:b5:d4:
f9:86:f8:31:26:e7:0c:0a:2f:c3:9b:8f:f2:b8:32:
1a:d8:43:03:cc:8b:19:11:b7:98:68:c2:fd:dc:e7:
3e:96:7f:98:96:e5:a8:0a:88:7f:c1:e1:9a:fb:90:
4c:d1:66:41:36:8f:97:20:f4:84:7e:5f:c9:3a:fa:
61:6a:93:62:a8:24:43:52:ed:be:7e:33:95:b8:6b:
3a:14:8b:80:80:20:2c:81:f7:ae:bb:60:5a:e6:9d:
60:07:00:24:71:ac:43:fb:d8:e9:88:67:7c:bf:30:
f8:7c:82:ee:be:8e:fe:d1:9c:87:02:b5:7e:a0:e6:
72:60:0c:01:5e:46:df:86:df:37:34:9b:38:61:a8:
ce:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:70:D8:F6:A4:00:A9:9E:B2:66:9D:15:68:57:4F:4F:55:FE:F6:B6
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/OHDY9qQAqZ6yZp0VaFdPT1X-9rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.136.0/22
Signature Algorithm: sha256WithRSAEncryption
07:a7:87:12:19:48:99:92:53:b6:e0:51:ca:27:aa:51:f6:2d:
fd:12:9c:d6:14:01:c3:fe:f7:2e:14:3f:fd:f7:23:bb:90:0e:
56:d1:6f:ee:67:09:d3:83:96:bb:8b:68:f8:0f:be:18:bf:54:
d2:1d:1e:6b:dc:0b:e3:93:6c:4b:ca:ff:c8:3e:47:9c:3c:73:
e1:2e:12:d1:6c:bf:d2:fe:dd:06:4b:03:84:56:fb:55:a2:7e:
5e:08:e5:cd:9d:4d:e4:fe:eb:38:b3:9f:34:6a:40:a2:bd:58:
eb:37:91:4a:69:0b:1f:4d:e6:59:31:1b:e1:b3:bd:57:82:60:
d4:72:12:6f:88:7e:20:a2:5d:cf:06:69:47:ac:1e:ce:81:0d:
5c:f3:6b:6b:14:74:74:b1:43:32:89:d9:22:87:1a:08:7f:20:
29:82:19:e6:b1:f5:42:4d:50:5b:d9:ac:92:41:af:10:9c:2c:
b6:5e:62:c7:d8:5d:c8:d5:17:77:d8:48:0d:78:2b:e6:00:33:
00:eb:f9:61:40:31:34:45:89:43:13:f9:23:85:35:61:07:d6:
33:4f:12:22:a8:a1:f2:0c:cd:f6:bc:1e:3c:e1:9e:08:39:2f:
cc:45:30:4a:ce:3b:a9:71:1e:ed:e3:db:91:88:4d:77:2e:1a:
3b:52:03:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuOMxrcAxHS6lfVyFDuoHKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5NDI2MzI1YWNiOGNlNjA5YTY4NmZhNjU1YjA1ODk2ODgw
OWIzNDYwHhcNMjMwMTAxMTY0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODcwZDhmNmE0MDBhOTllYjI2NjlkMTU2ODU3NGY0ZjU1ZmVmNmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfCkJg0WQWFR20iKblXJ0SCrgJho
/U9cdw69W02p9GoQ5etIAKlaJHOKITajkpqOAQQ/CqyXdQs4V0fxy/edeNyHxTow
JfIxQ8cJ+EN8HG4/yfGJQLYsmeSTiU/AF4Qh7oTRA5AtlFuaAftESD4xHgax9PD9
tdT5hvgxJucMCi/Dm4/yuDIa2EMDzIsZEbeYaML93Oc+ln+YluWoCoh/weGa+5BM
0WZBNo+XIPSEfl/JOvphapNiqCRDUu2+fjOVuGs6FIuAgCAsgfeuu2Ba5p1gBwAk
caxD+9jpiGd8vzD4fILuvo7+0ZyHArV+oOZyYAwBXkbfht83NJs4YajOTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDhw2PakAKmesmadFWhXT09V/va2MB8GA1UdIwQY
MBaAFBlCYyWsuM5gmmhvplWwWJaICbNGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQt
MDNmNGM3MTEzYzM0LzEvT0hEWTlxUUFxWjZ5WnAwVmFGZFBUMVgtOXJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS84YjZmYjAtYTg3NS00OTQ3LThhZTQtMDNmNGM3MTEzYzM0
LzEvR1VKakpheTR6bUNhYUctbVZiQllsb2dKczBZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCw7KIMA0G
CSqGSIb3DQEBCwUAA4IBAQAHp4cSGUiZklO24FHKJ6pR9i39EpzWFAHD/vcuFD/9
9yO7kA5W0W/uZwnTg5a7i2j4D74Yv1TSHR5r3Avjk2xLyv/IPkecPHPhLhLRbL/S
/t0GSwOEVvtVon5eCOXNnU3k/us4s580akCivVjrN5FKaQsfTeZZMRvhs71XgmDU
chJviH4gol3PBmlHrB7OgQ1c82trFHR0sUMyidkihxoIfyApghnmsfVCTVBb2ayS
Qa8QnCy2XmLH2F3I1Rd32EgNeCvmADMA6/lhQDE0RYlDE/kjhTVhB9YzTxIiqKHy
DM32vB484Z4IOS/MRTBKzjupcR7t49uRiE13Lho7UgO0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:38 2024 by rpki-client on console-ams.rpki-client.org