Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/O71bkslTvzw_29D6mfclMi6d9w8.roa
File: O71bkslTvzw_29D6mfclMi6d9w8.roa (raw, json)
Hash identifier: Ki5OKcIW1yY3aVZttptmAhHSqgQ64lKlJixiBXTGcec=
Subject key identifier: 3B:BD:5B:92:C9:53:BF:3C:3F:DB:D0:FA:99:F7:25:32:2E:9D:F7:0F
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01857315F8E502BC4BD839CA01B6418D1916
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/O71bkslTvzw_29D6mfclMi6d9w8.roa
Signing time: Mon 02 Jan 2023 15:24:57 +0000
ROA not before: Mon 02 Jan 2023 15:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 194.169.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f8:e5:02:bc:4b:d8:39:ca:01:b6:41:8d:19:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 2 15:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bbd5b92c953bf3c3fdbd0fa99f725322e9df70f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:cb:a8:f5:b4:aa:79:7f:ba:25:30:5c:a3:06:
b8:51:44:27:ff:34:48:4b:81:7d:2e:36:9b:53:69:
ae:de:49:f3:19:78:2f:cb:07:01:33:80:1a:ee:95:
08:3a:f1:ab:01:2c:e7:64:e9:88:55:04:88:73:4a:
14:6e:30:dc:b6:3d:b9:6c:49:e8:1c:78:2b:ca:65:
0f:56:35:e9:e3:47:e4:f4:67:cf:e4:d4:67:d2:98:
2e:f6:6d:08:04:86:54:a7:64:b5:78:11:a6:68:50:
7a:0c:52:3a:82:ee:bd:90:2e:91:ab:8c:dc:4d:79:
73:bc:49:00:77:4f:00:b4:6f:89:a7:92:1f:5e:c1:
d0:bf:d8:0f:1b:e6:c5:b3:6b:b7:d1:7a:85:e9:ea:
3f:c9:e9:d1:2c:19:23:65:0a:48:02:09:48:ba:62:
26:a5:0a:ae:c4:51:62:dd:fd:bf:6d:bb:bf:0b:13:
ef:d0:87:d9:8b:85:3d:a7:93:33:df:0a:17:1d:92:
9f:51:ae:4a:21:27:45:54:00:d8:52:cb:7f:1d:9f:
2b:a5:b3:03:3e:74:77:fb:5d:8f:78:3c:ea:04:db:
81:77:77:46:34:c3:50:53:e1:c6:8c:9e:f0:26:45:
b5:94:af:8c:04:4d:51:70:30:be:0c:82:c9:e2:29:
32:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BD:5B:92:C9:53:BF:3C:3F:DB:D0:FA:99:F7:25:32:2E:9D:F7:0F
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/O71bkslTvzw_29D6mfclMi6d9w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.48.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8b:e5:a3:53:cd:83:8b:fb:30:d0:77:20:69:be:53:e5:23:
c3:00:48:5b:d6:0c:fe:3d:77:a5:08:69:7b:66:3b:75:3c:e4:
d3:33:ec:d0:2c:7d:d8:fa:9a:0f:df:5e:8f:f7:15:37:1c:d6:
4d:2b:d8:5a:e8:24:6c:f4:ec:5b:f7:2a:cc:35:13:bf:bf:10:
51:74:c3:25:05:e8:33:18:c1:19:5b:a4:54:21:42:a6:85:a8:
92:d4:09:5c:76:db:aa:96:26:8a:07:97:64:75:ec:93:6e:74:
1c:2e:97:9a:ba:b2:61:bc:54:b8:ec:ab:d1:9a:71:07:a2:7f:
c3:b1:58:5c:10:1e:b8:e6:5d:8b:03:71:67:1d:dd:18:2d:65:
dd:95:78:f9:8e:86:20:c0:b9:56:0f:a9:58:44:54:e4:b4:81:
8e:f9:e1:32:d7:b8:2b:37:11:fe:9b:bf:57:29:89:7f:d4:96:
4b:e1:c5:d3:ba:73:a9:b8:b7:42:48:a8:91:19:74:98:1b:82:
79:73:f9:9c:7f:28:fa:e7:8d:6a:56:a0:a6:15:f1:4a:ae:56:
86:a1:74:fd:fb:89:42:71:38:24:ff:78:45:a1:54:f8:5e:87:
a8:4b:f8:5c:24:f4:15:8f:3f:8b:3e:ff:59:58:08:b9:1d:1e:
c6:94:18:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzFfjlArxL2DnKAbZBjRkWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODI0N2QzZjgxNDcyZGJiYTA2ZGJlYTliZDE5Yzc4NWQx
OGJhYmUwHhcNMjMwMTAyMTUyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYmJkNWI5MmM5NTNiZjNjM2ZkYmQwZmE5OWY3MjUzMjJlOWRmNzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgMuo9bSqeX+6JTBcowa4UUQn/zRI
S4F9LjabU2mu3knzGXgvywcBM4Aa7pUIOvGrASznZOmIVQSIc0oUbjDctj25bEno
HHgrymUPVjXp40fk9GfP5NRn0pgu9m0IBIZUp2S1eBGmaFB6DFI6gu69kC6Rq4zc
TXlzvEkAd08AtG+Jp5IfXsHQv9gPG+bFs2u30XqF6eo/yenRLBkjZQpIAglIumIm
pQquxFFi3f2/bbu/CxPv0IfZi4U9p5Mz3woXHZKfUa5KISdFVADYUst/HZ8rpbMD
PnR3+12PeDzqBNuBd3dGNMNQU+HGjJ7wJkW1lK+MBE1RcDC+DILJ4ikyqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDu9W5LJU788P9vQ+pn3JTIunfcPMB8GA1UdIwQY
MBaAFNmCR9P4FHLbugbb6pvRnHhdGLq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgt
YTMwMzI2MTU2NjBjLzEvTzcxYmtzbFR2endfMjlENm1mY2xNaTZkOXc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgtYTMwMzI2MTU2NjBj
LzEvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqkwMA0G
CSqGSIb3DQEBCwUAA4IBAQA0i+WjU82Di/sw0Hcgab5T5SPDAEhb1gz+PXelCGl7
Zjt1POTTM+zQLH3Y+poP316P9xU3HNZNK9ha6CRs9Oxb9yrMNRO/vxBRdMMlBegz
GMEZW6RUIUKmhaiS1AlcdtuqliaKB5dkdeyTbnQcLpeaurJhvFS47KvRmnEHon/D
sVhcEB645l2LA3FnHd0YLWXdlXj5joYgwLlWD6lYRFTktIGO+eEy17grNxH+m79X
KYl/1JZL4cXTunOpuLdCSKiRGXSYG4J5c/mcfyj6541qVqCmFfFKrlaGoXT9+4lC
cTgk/3hFoVT4XoeoS/hcJPQVjz+LPv9ZWAi5HR7GlBi5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org