Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/olp6jVMXiumKtkxc-mv4KfwfVHE.roa
File: olp6jVMXiumKtkxc-mv4KfwfVHE.roa (raw, json)
Hash identifier: qKqGJpzSLIOwnPMKpsoNI2vQQ54vlDPSMHBGlPlgQqU=
Subject key identifier: A2:5A:7A:8D:53:17:8A:E9:8A:B6:4C:5C:FA:6B:F8:29:FC:1F:54:71
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018DB1FB70684D0A12083AF304E82CE68675
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/olp6jVMXiumKtkxc-mv4KfwfVHE.roa
Signing time: Fri 16 Feb 2024 12:54:21 +0000
ROA not before: Fri 16 Feb 2024 12:54:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207459
IP address blocks: 185.80.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 03:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b1:fb:70:68:4d:0a:12:08:3a:f3:04:e8:2c:e6:86:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 16 12:54:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a25a7a8d53178ae98ab64c5cfa6bf829fc1f5471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e5:62:97:6e:e0:45:a7:c1:f1:19:88:f3:50:
12:4d:a2:a3:c1:cd:b6:73:e6:34:fe:1c:8c:c0:c3:
b9:96:c3:37:96:bf:2c:e3:ac:d7:50:48:6e:ea:65:
98:18:9a:54:3d:8f:7a:69:80:3b:8f:7f:7f:de:de:
5d:98:11:c5:21:b2:40:f8:52:d2:05:8d:85:3e:0d:
b7:78:41:7b:30:26:43:a1:b2:5d:de:3c:99:39:58:
54:41:7a:ca:40:dc:a7:7a:f2:a9:31:1d:75:09:f6:
ef:5b:86:a1:44:f1:0c:96:be:a3:de:e8:48:81:07:
bc:90:7f:14:cd:d4:52:21:6f:d9:f7:30:6d:50:4a:
ba:d3:84:c0:36:f9:6b:13:6c:4c:e9:ba:55:3c:73:
4c:05:39:a2:9c:ac:44:f2:04:c0:b6:20:28:76:88:
85:af:0a:88:a5:78:54:48:de:08:fc:6b:70:ae:39:
42:1a:05:13:fc:c4:43:6d:0f:c1:d4:e9:5e:25:16:
85:fe:d9:df:60:89:35:fc:81:c9:2d:3b:ed:c6:66:
f4:0b:19:a1:b3:d3:6a:cf:d9:42:91:90:7c:a6:1b:
62:7b:0f:5a:8b:91:ac:42:73:23:83:1d:d8:ec:dc:
c0:c8:9d:01:46:3c:8b:c1:76:fb:cc:04:0b:5a:ad:
75:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5A:7A:8D:53:17:8A:E9:8A:B6:4C:5C:FA:6B:F8:29:FC:1F:54:71
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/olp6jVMXiumKtkxc-mv4KfwfVHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.196.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b9:46:df:78:d1:f5:37:2a:b5:e0:73:8e:7c:71:59:c7:11:
6e:68:63:a0:0a:0a:ea:5d:2f:07:b0:58:38:75:40:03:e5:9e:
01:ae:91:62:2a:9a:1f:24:43:54:9d:0a:5b:9f:dc:1d:f0:5a:
53:94:28:50:df:27:0b:31:35:4b:64:5c:3e:24:35:d3:69:78:
09:cc:f9:f1:b9:9e:42:11:09:0d:d4:62:aa:d9:04:a9:48:7f:
86:13:87:6c:18:89:99:2b:07:ed:41:25:5a:2b:52:c9:24:f5:
8f:b5:01:b4:90:71:ec:1d:83:72:c4:98:9b:1f:ce:c1:39:82:
89:96:9b:a6:b9:c8:53:f4:7f:1b:86:28:c0:eb:53:e2:a1:a8:
60:70:6b:27:9d:9c:91:e4:cb:c3:6e:db:46:db:06:fe:b9:e9:
e9:92:87:9a:8f:95:e0:1b:78:94:6e:73:2f:fb:41:69:5b:32:
2d:71:ee:3c:db:fd:70:68:d0:09:c2:62:73:9b:76:2e:3b:7c:
2d:ed:4e:3b:d8:b6:60:ad:c7:fd:82:6c:d8:e9:eb:94:e4:b7:
7d:7f:79:ea:a2:8f:0d:24:c6:f4:83:f8:29:48:6a:bd:3a:6c:
47:39:83:43:d0:6b:77:13:c4:44:ce:b0:d0:2a:1a:71:61:a6:
21:29:45:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2x+3BoTQoSCDrzBOgs5oZ1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjQwMjE2MTI1NDIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjVhN2E4ZDUzMTc4YWU5OGFiNjRjNWNmYTZiZjgyOWZjMWY1NDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+Vil27gRafB8RmI81ASTaKjwc22
c+Y0/hyMwMO5lsM3lr8s46zXUEhu6mWYGJpUPY96aYA7j39/3t5dmBHFIbJA+FLS
BY2FPg23eEF7MCZDobJd3jyZOVhUQXrKQNynevKpMR11CfbvW4ahRPEMlr6j3uhI
gQe8kH8UzdRSIW/Z9zBtUEq604TANvlrE2xM6bpVPHNMBTminKxE8gTAtiAodoiF
rwqIpXhUSN4I/GtwrjlCGgUT/MRDbQ/B1OleJRaF/tnfYIk1/IHJLTvtxmb0Cxmh
s9Nqz9lCkZB8phtiew9ai5GsQnMjgx3Y7NzAyJ0BRjyLwXb7zAQLWq11PQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKJaeo1TF4rpirZMXPpr+Cn8H1RxMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvb2xwNmpWTVhpdW1LdGt4Yy1tdjRLZndmVkhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVDEMA0G
CSqGSIb3DQEBCwUAA4IBAQBYuUbfeNH1Nyq14HOOfHFZxxFuaGOgCgrqXS8HsFg4
dUAD5Z4BrpFiKpofJENUnQpbn9wd8FpTlChQ3ycLMTVLZFw+JDXTaXgJzPnxuZ5C
EQkN1GKq2QSpSH+GE4dsGImZKwftQSVaK1LJJPWPtQG0kHHsHYNyxJibH87BOYKJ
lpumuchT9H8bhijA61PioahgcGsnnZyR5MvDbttG2wb+uenpkoeaj5XgG3iUbnMv
+0FpWzItce482/1waNAJwmJzm3YuO3wt7U472LZgrcf9gmzY6euU5Ld9f3nqoo8N
JMb0g/gpSGq9OmxHOYND0Gt3E8REzrDQKhpxYaYhKUUy
-----END CERTIFICATE-----
Generated at Sat Mar 23 04:04:11 2024 by rpki-client on console-ams.rpki-client.org