Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/mO_UOG1xhWUH_mlrFC20VIQfeBo.roa
File: mO_UOG1xhWUH_mlrFC20VIQfeBo.roa (raw, json)
Hash identifier: 3g9y1Lja37EOtuX+nioLh6qq/iMOjokCeTWzGAdocbI=
Subject key identifier: 98:EF:D4:38:6D:71:85:65:07:FE:69:6B:14:2D:B4:54:84:1F:78:1A
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 018CCB1065A26C49A208473E12EFA50356FC
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/mO_UOG1xhWUH_mlrFC20VIQfeBo.roa
Signing time: Tue 02 Jan 2024 16:44:58 +0000
ROA not before: Tue 02 Jan 2024 16:44:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21106
IP address blocks: 82.206.16.0/21 maxlen: 24
82.206.22.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 15:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cb:10:65:a2:6c:49:a2:08:47:3e:12:ef:a5:03:56:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Jan 2 16:44:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98efd4386d71856507fe696b142db454841f781a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:cd:22:28:10:cb:e7:68:00:49:c7:a9:2d:
2a:28:09:b4:b5:31:4c:bf:72:94:18:6b:36:f8:2b:
d6:57:63:d5:93:dc:96:4e:1e:0c:09:32:20:a6:0d:
4e:61:41:6e:a3:e1:35:2b:8e:13:82:6f:72:92:7d:
0d:15:fc:f8:cd:cc:89:96:e3:d0:12:07:96:e7:06:
c5:0b:20:23:1f:38:a6:d6:3f:8d:90:2e:5c:95:1f:
fa:a1:51:09:4d:45:ed:8c:52:ac:57:07:eb:bc:16:
88:a0:6f:55:03:f6:5d:21:61:06:db:bc:75:e5:60:
17:3a:97:bf:4f:c4:73:ba:7e:20:25:81:4b:3d:9c:
57:a4:01:5f:08:e3:e7:b0:04:66:21:98:18:08:f2:
02:0a:24:fd:2c:fc:cd:7e:40:58:62:58:e0:05:35:
a0:37:58:a2:14:77:e0:6b:e7:f3:39:e6:b5:ed:78:
88:c3:63:0f:0b:91:cf:04:be:1e:43:2d:2e:1f:1d:
10:2d:0c:01:dc:67:12:13:24:78:36:89:3f:35:97:
f3:f4:63:b8:56:7e:b7:57:e6:63:21:d4:01:5d:82:
ef:e8:c2:4f:69:43:76:71:c5:41:fb:54:e3:fa:eb:
bc:d8:2a:f4:1c:7a:f1:40:60:19:b7:84:d5:dc:e3:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:EF:D4:38:6D:71:85:65:07:FE:69:6B:14:2D:B4:54:84:1F:78:1A
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/mO_UOG1xhWUH_mlrFC20VIQfeBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.16.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:83:78:ef:a9:dc:1d:30:81:30:1f:41:01:5a:4d:8e:16:9c:
d1:c9:f1:63:e5:f1:b3:e4:96:db:2c:0b:37:79:72:2a:1e:d8:
d6:52:c1:a5:bb:76:72:a5:bf:3d:79:3b:41:00:b1:20:59:4a:
e9:a6:b5:2e:c2:9e:01:e7:16:3b:b3:32:cc:c6:37:35:99:9d:
ef:6f:a6:dd:7c:a2:e2:36:c2:44:49:2a:da:cf:a7:50:f6:6d:
5a:23:61:25:b6:67:6e:27:ec:e8:8e:97:e8:34:4b:91:4f:39:
35:ba:d2:82:5d:26:f2:81:2c:b7:83:52:d0:21:e3:d9:60:58:
aa:a2:ff:85:f0:56:ac:1b:26:df:2a:b4:fc:29:1d:79:84:98:
26:35:67:aa:75:c7:fd:90:d8:0d:e2:25:36:89:b2:10:89:ba:
3d:22:68:31:26:21:04:d8:46:6c:f4:0d:5d:26:4a:a8:ba:f4:
5a:8a:c6:e0:7b:07:67:6b:7b:d6:0f:7b:d7:5a:78:f3:2a:60:
3c:52:31:57:49:fa:b7:d2:5f:b7:c4:86:13:ba:31:a7:b4:b2:
78:71:99:45:9e:1e:81:36:0b:9a:64:f4:57:d8:7a:50:19:3a:
3d:af:1d:ba:fd:fc:a8:1a:15:ee:02:c0:dd:8c:6b:5e:03:5e:
a2:6c:c3:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzLEGWibEmiCEc+Eu+lA1b8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OTkxNDBiNDJkYjZjYjZiZjhjNmRkNDEzNzQ3ZmNmNGE2
ZmQ5YjUwHhcNMjQwMTAyMTY0NDU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGVmZDQzODZkNzE4NTY1MDdmZTY5NmIxNDJkYjQ1NDg0MWY3ODFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTvNIigQy+doAEnHqS0qKAm0tTFM
v3KUGGs2+CvWV2PVk9yWTh4MCTIgpg1OYUFuo+E1K44Tgm9ykn0NFfz4zcyJluPQ
EgeW5wbFCyAjHzim1j+NkC5clR/6oVEJTUXtjFKsVwfrvBaIoG9VA/ZdIWEG27x1
5WAXOpe/T8Rzun4gJYFLPZxXpAFfCOPnsARmIZgYCPICCiT9LPzNfkBYYljgBTWg
N1iiFHfga+fzOea17XiIw2MPC5HPBL4eQy0uHx0QLQwB3GcSEyR4Nok/NZfz9GO4
Vn63V+ZjIdQBXYLv6MJPaUN2ccVB+1Tj+uu82Cr0HHrxQGAZt4TV3OOMuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJjv1DhtcYVlB/5paxQttFSEH3gaMB8GA1UdIwQY
MBaAFJeZFAtC22y2v4xt1BN0f89Kb9m1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2Qt
NTk1OTE5YmUwZjUyLzEvbU9fVU9HMXhoV1VIX21sckZDMjBWSVFmZUJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS80ZWVmMDMtOTFmZS00NDVhLWE3Y2QtNTk1OTE5YmUwZjUy
LzEvbDVrVUMwTGJiTGFfakczVUUzUl96MHB2MmJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUs4QMA0G
CSqGSIb3DQEBCwUAA4IBAQAdg3jvqdwdMIEwH0EBWk2OFpzRyfFj5fGz5JbbLAs3
eXIqHtjWUsGlu3Zypb89eTtBALEgWUrpprUuwp4B5xY7szLMxjc1mZ3vb6bdfKLi
NsJESSraz6dQ9m1aI2EltmduJ+zojpfoNEuRTzk1utKCXSbygSy3g1LQIePZYFiq
ov+F8FasGybfKrT8KR15hJgmNWeqdcf9kNgN4iU2ibIQibo9ImgxJiEE2EZs9A1d
JkqouvRaisbgewdna3vWD3vXWnjzKmA8UjFXSfq30l+3xIYTujGntLJ4cZlFnh6B
NguaZPRX2HpQGTo9rx26/fyoGhXuAsDdjGteA16ibMMA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:08 2024 by rpki-client on console-ams.rpki-client.org