Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/omrXeSq0wsZfqLEMdS1AQXFSgPw.roa
File: omrXeSq0wsZfqLEMdS1AQXFSgPw.roa (raw, json)
Hash identifier: gLwQh/eGymYSs4+fJFvT/XvPvahNwP/8iuYqPhtAsIY=
Subject key identifier: A2:6A:D7:79:2A:B4:C2:C6:5F:A8:B1:0C:75:2D:40:41:71:52:80:FC
Certificate issuer: /CN=5140b5cb5986084126f68d6032316d3b1b57696e
Certificate serial: 018CB65B7D4EEE9135D17EDDCC27F63EC3BF
Authority key identifier: 51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/omrXeSq0wsZfqLEMdS1AQXFSgPw.roa
Signing time: Fri 29 Dec 2023 16:14:58 +0000
ROA not before: Fri 29 Dec 2023 16:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199462
IP address blocks: 185.101.78.0/24 maxlen: 24
185.101.77.0/24 maxlen: 24
185.101.76.0/24 maxlen: 24
185.101.79.0/24 maxlen: 24
2a06:1b80::/29 maxlen: 29
2a06:1b81::/32 maxlen: 32
2a06:1b84::/32 maxlen: 32
2a06:1b87:e00::/48 maxlen: 48
2a06:1b87:f00::/48 maxlen: 48
2a06:1b87:c00::/48 maxlen: 48
2a06:1b87:100::/48 maxlen: 48
2a06:1b87:800::/48 maxlen: 48
2a06:1b87:d00::/48 maxlen: 48
2a06:1b87:500::/48 maxlen: 48
2a06:1b87:200::/48 maxlen: 48
2a06:1b87:900::/48 maxlen: 48
2a06:1b87:a00::/48 maxlen: 48
2a06:1b87:700::/48 maxlen: 48
2a06:1b87:600::/48 maxlen: 48
2a06:1b87:300::/48 maxlen: 48
2a06:1b87:b00::/48 maxlen: 48
2a06:1b87:400::/48 maxlen: 48
2a06:1b87::/32 maxlen: 32
2001:67c:11bc::/48 maxlen: 48
2a06:1b80::/32 maxlen: 32
2a06:1b86::/32 maxlen: 32
2a06:1b85::/32 maxlen: 32
2a06:1b82::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b6:5b:7d:4e:ee:91:35:d1:7e:dd:cc:27:f6:3e:c3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5140b5cb5986084126f68d6032316d3b1b57696e
Validity
Not Before: Dec 29 16:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a26ad7792ab4c2c65fa8b10c752d4041715280fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:10:53:6a:ce:74:db:1a:cb:bf:70:d8:b9:16:
8c:45:61:f6:1b:c7:79:a9:20:ca:f7:f5:09:cc:05:
1d:cf:02:5d:f6:c9:c3:e2:67:4d:a5:a2:74:5d:47:
b0:79:01:e6:c3:fb:be:e6:d4:4d:f3:e1:47:e3:29:
c3:86:d7:88:b2:01:c4:eb:57:bc:81:99:81:9a:57:
a1:24:a0:22:a2:a2:e5:99:eb:78:ff:31:07:9d:fb:
4f:8e:98:46:c2:7a:82:f3:2c:e2:8b:3b:ca:7d:6d:
ba:35:0f:20:42:10:dc:68:66:46:92:68:3c:28:3e:
10:3f:a9:76:30:96:56:32:3a:e0:87:83:b3:53:47:
cc:28:67:68:db:1f:1b:83:0a:ae:41:05:9a:e9:31:
3e:d3:14:1a:3f:44:74:4e:2a:f9:1c:cb:48:fb:32:
11:29:4f:5b:e7:82:60:57:9c:d5:49:32:c0:bc:50:
4a:09:5b:3b:33:83:e8:93:94:86:07:88:c2:a0:0d:
37:89:12:53:24:41:97:72:f5:52:03:bc:97:cc:a5:
2f:a0:cf:4d:b3:56:fc:0d:3f:c4:2a:55:a9:e1:ad:
b6:93:31:f1:58:38:ea:02:d9:ba:6d:fc:a1:ab:e5:
1f:ad:50:94:9e:53:d8:c3:1c:32:85:70:e6:03:2a:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6A:D7:79:2A:B4:C2:C6:5F:A8:B1:0C:75:2D:40:41:71:52:80:FC
X509v3 Authority Key Identifier:
keyid:51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/omrXeSq0wsZfqLEMdS1AQXFSgPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.76.0/22
IPv6:
2001:67c:11bc::/48
2a06:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
2c:46:98:32:3a:e1:ba:26:c5:7e:e8:7b:3a:23:0e:dc:93:eb:
48:0e:3b:7d:29:7e:f1:05:79:17:d8:2a:a4:10:c0:10:e4:20:
a9:4c:67:24:23:7c:c8:a9:e1:c5:55:1c:c1:57:39:ab:95:b4:
32:77:03:08:8d:5d:cf:c4:78:8d:55:4a:76:9a:b9:06:88:e5:
7e:39:4a:95:18:14:0c:f7:2d:8b:ea:3d:45:3e:19:cc:14:b8:
38:c7:ef:75:e1:ef:b6:24:7f:66:d7:2c:7d:39:dc:28:ac:77:
fb:e2:39:25:cc:bc:d3:ab:f4:11:ce:d8:e9:10:9d:a3:fc:11:
32:14:a9:fb:c6:53:aa:ca:57:b1:b0:65:5e:8b:b0:f5:c9:c1:
d4:78:55:7e:87:67:a5:ab:d0:49:98:18:bc:ba:e7:35:40:4f:
7c:f8:4b:86:20:78:03:0e:31:59:83:df:65:bc:f5:eb:6c:ea:
d4:3d:35:fd:6a:dd:ee:5c:7e:0c:24:69:a5:de:d8:da:c5:cf:
96:f7:21:17:e4:1a:df:2e:bb:43:8c:1a:9c:ec:62:e1:03:b0:
a3:ad:5e:55:e5:01:41:00:ab:8f:15:36:34:d0:3c:9a:6c:0d:
81:e1:6d:61:c4:59:1a:a9:d2:71:72:71:4b:0d:03:69:ae:6e:
22:bf:4a:45
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYy2W31O7pE10X7dzCf2PsO/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNDBiNWNiNTk4NjA4NDEyNmY2OGQ2MDMyMzE2ZDNiMWI1
NzY5NmUwHhcNMjMxMjI5MTYxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjZhZDc3OTJhYjRjMmM2NWZhOGIxMGM3NTJkNDA0MTcxNTI4MGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhBTas502xrLv3DYuRaMRWH2G8d5
qSDK9/UJzAUdzwJd9snD4mdNpaJ0XUeweQHmw/u+5tRN8+FH4ynDhteIsgHE61e8
gZmBmlehJKAioqLlmet4/zEHnftPjphGwnqC8yziizvKfW26NQ8gQhDcaGZGkmg8
KD4QP6l2MJZWMjrgh4OzU0fMKGdo2x8bgwquQQWa6TE+0xQaP0R0Tir5HMtI+zIR
KU9b54JgV5zVSTLAvFBKCVs7M4Pok5SGB4jCoA03iRJTJEGXcvVSA7yXzKUvoM9N
s1b8DT/EKlWp4a22kzHxWDjqAtm6bfyhq+UfrVCUnlPYwxwyhXDmAyo7IwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFKJq13kqtMLGX6ixDHUtQEFxUoD8MB8GA1UdIwQY
MBaAFFFAtctZhghBJvaNYDIxbTsbV2luMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVVDMXkxbUdDRUVtOW8xZ01qRnRPeHRYYVc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9kMTlmMmQtOTY1OS00OGIxLWIxZTgt
ZGUxM2E1NTJkZjYzLzEvb21yWGVTcTB3c1pmcUxFTWRTMUFRWEZTZ1B3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9kMTlmMmQtOTY1OS00OGIxLWIxZTgtZGUxM2E1NTJkZjYz
LzEvVVVDMXkxbUdDRUVtOW8xZ01qRnRPeHRYYVc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAMBAIAATAGAwQCuWVMMBYE
AgACMBADBwAgAQZ8EbwDBQMqBhuAMA0GCSqGSIb3DQEBCwUAA4IBAQAsRpgyOuG6
JsV+6Hs6Iw7ck+tIDjt9KX7xBXkX2CqkEMAQ5CCpTGckI3zIqeHFVRzBVzmrlbQy
dwMIjV3PxHiNVUp2mrkGiOV+OUqVGBQM9y2L6j1FPhnMFLg4x+914e+2JH9m1yx9
OdworHf74jklzLzTq/QRztjpEJ2j/BEyFKn7xlOqylexsGVei7D1ycHUeFV+h2el
q9BJmBi8uuc1QE98+EuGIHgDDjFZg99lvPXrbOrUPTX9at3uXH4MJGml3tjaxc+W
9yEX5BrfLrtDjBqc7GLhA7CjrV5V5QFBAKuPFTY00DyabA2B4W1hxFkaqdJxcnFL
DQNprm4iv0pF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:07 2024 by rpki-client on console-ams.rpki-client.org