Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/TxOsvJiS8vk3u3_KYrufviKK0g0.roa
File: TxOsvJiS8vk3u3_KYrufviKK0g0.roa (raw, json)
Hash identifier: 1l6lb30RagmwcNhOgeNHv0w8tJbdVbNMONkJ9OvZH28=
Subject key identifier: 4F:13:AC:BC:98:92:F2:F9:37:BB:7F:CA:62:BB:9F:BE:22:8A:D2:0D
Certificate issuer: /CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Certificate serial: 0185719E75137360BC9ADD33C489F550A59C
Authority key identifier: 86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/TxOsvJiS8vk3u3_KYrufviKK0g0.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41151
IP address blocks: 194.140.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:75:13:73:60:bc:9a:dd:33:c4:89:f5:50:a5:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=868f20309962f7c6e1c3267f083e124d83dd76fc
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f13acbc9892f2f937bb7fca62bb9fbe228ad20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3b:a7:f7:a2:b4:75:f5:40:6c:4f:a9:f1:eb:
c8:29:d9:8c:1e:7e:6c:50:53:5c:23:80:16:2e:3e:
d9:cc:a3:58:e8:e2:b4:26:2d:ac:72:da:3b:2e:1f:
af:9b:4a:61:74:1a:61:52:6b:32:cb:e8:68:d0:b0:
7a:fb:bd:56:38:76:2d:d7:2d:19:de:b6:63:27:e8:
ab:d1:57:83:21:a4:57:6d:bf:25:67:58:e1:27:60:
8c:a8:5c:c6:1b:d9:68:95:af:6f:28:dd:5a:e8:93:
b8:60:fa:a6:df:30:13:52:26:04:75:96:fd:6b:42:
cc:ee:64:69:e6:79:31:d0:8d:19:d2:11:d3:60:d2:
a5:73:c4:06:18:13:e2:49:ad:04:56:53:25:9f:76:
2d:9d:4d:32:31:68:91:d0:cd:ff:c5:8a:5f:09:e1:
8b:51:b1:ed:50:b0:cf:74:33:92:a7:79:ff:a1:e8:
9c:65:29:06:65:76:1b:94:6d:3d:a3:67:56:29:f1:
09:26:c3:63:76:0f:34:e5:75:98:07:1e:31:bd:cd:
1a:0a:c0:50:f5:41:db:07:f0:09:55:f0:73:3d:36:
a8:78:4e:37:5d:5f:3f:ee:2c:11:00:05:28:ce:2c:
9f:3d:81:72:22:b8:8e:9c:21:bd:bf:62:b3:e7:91:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:13:AC:BC:98:92:F2:F9:37:BB:7F:CA:62:BB:9F:BE:22:8A:D2:0D
X509v3 Authority Key Identifier:
keyid:86:8F:20:30:99:62:F7:C6:E1:C3:26:7F:08:3E:12:4D:83:DD:76:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ho8gMJli98bhwyZ_CD4STYPddvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/TxOsvJiS8vk3u3_KYrufviKK0g0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/126cee-f16c-45a8-97b2-623384f3e125/1/ho8gMJli98bhwyZ_CD4STYPddvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.245.0/24
Signature Algorithm: sha256WithRSAEncryption
44:92:6a:a3:c5:a9:fa:92:aa:5a:b2:a3:e7:7f:d8:99:e0:78:
05:43:55:4b:49:0d:bc:6c:f2:d3:c8:36:fb:e4:2b:5a:68:c8:
96:2e:f2:35:bb:e1:fc:c1:0d:16:b6:6d:80:01:39:8e:c0:fc:
e9:68:a7:59:09:53:ee:6a:9a:a0:1e:51:84:20:cb:82:e2:f6:
06:62:e1:93:7f:ed:63:35:39:a3:55:f1:6e:82:7b:cd:08:73:
d4:e7:a4:9f:82:99:54:f1:53:1d:5d:db:2d:13:66:8b:c8:6c:
fa:df:a2:4c:fd:b9:27:7e:b3:55:e2:05:c7:d6:30:0e:09:ff:
8c:62:e6:da:6b:fb:1a:c6:85:a9:c4:b9:f4:75:26:6c:80:59:
02:b5:d6:22:a9:bf:26:90:80:c0:2d:2f:78:23:fe:19:11:86:
73:02:a1:8c:90:8b:be:d9:51:ee:3f:2c:d1:ea:13:b1:c1:95:
aa:85:50:5c:51:b6:36:2a:66:54:90:cd:81:b0:7f:ac:c7:b4:
4b:1a:65:9a:8f:c5:07:cb:05:7b:7f:78:b1:18:a6:58:17:3c:
3b:b4:42:a5:c2:a8:9e:17:f4:20:67:1f:fa:3b:2a:69:25:03:
ae:c7:7d:a0:2f:b2:90:38:01:d6:ac:53:94:78:78:7f:c1:e1:
d9:ae:c0:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnnUTc2C8mt0zxIn1UKWcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2OGYyMDMwOTk2MmY3YzZlMWMzMjY3ZjA4M2UxMjRkODNk
ZDc2ZmMwHhcNMjMwMTAyMDgzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjEzYWNiYzk4OTJmMmY5MzdiYjdmY2E2MmJiOWZiZTIyOGFkMjBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkjun96K0dfVAbE+p8evIKdmMHn5s
UFNcI4AWLj7ZzKNY6OK0Ji2scto7Lh+vm0phdBphUmsyy+ho0LB6+71WOHYt1y0Z
3rZjJ+ir0VeDIaRXbb8lZ1jhJ2CMqFzGG9lola9vKN1a6JO4YPqm3zATUiYEdZb9
a0LM7mRp5nkx0I0Z0hHTYNKlc8QGGBPiSa0EVlMln3YtnU0yMWiR0M3/xYpfCeGL
UbHtULDPdDOSp3n/oeicZSkGZXYblG09o2dWKfEJJsNjdg805XWYBx4xvc0aCsBQ
9UHbB/AJVfBzPTaoeE43XV8/7iwRAAUoziyfPYFyIriOnCG9v2Kz55F+XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE8TrLyYkvL5N7t/ymK7n74iitINMB8GA1UdIwQY
MBaAFIaPIDCZYvfG4cMmfwg+Ek2D3Xb8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG84Z01KbGk5OGJod3laX0NENFNUWVBkZHZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xMjZjZWUtZjE2Yy00NWE4LTk3YjIt
NjIzMzg0ZjNlMTI1LzEvVHhPc3ZKaVM4dmszdTNfS1lydWZ2aUtLMGcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8xMjZjZWUtZjE2Yy00NWE4LTk3YjItNjIzMzg0ZjNlMTI1
LzEvaG84Z01KbGk5OGJod3laX0NENFNUWVBkZHZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwoz1MA0G
CSqGSIb3DQEBCwUAA4IBAQBEkmqjxan6kqpasqPnf9iZ4HgFQ1VLSQ28bPLTyDb7
5CtaaMiWLvI1u+H8wQ0Wtm2AATmOwPzpaKdZCVPuapqgHlGEIMuC4vYGYuGTf+1j
NTmjVfFugnvNCHPU56SfgplU8VMdXdstE2aLyGz636JM/bknfrNV4gXH1jAOCf+M
Yubaa/saxoWpxLn0dSZsgFkCtdYiqb8mkIDALS94I/4ZEYZzAqGMkIu+2VHuPyzR
6hOxwZWqhVBcUbY2KmZUkM2BsH+sx7RLGmWaj8UHywV7f3ixGKZYFzw7tEKlwqie
F/QgZx/6OyppJQOux32gL7KQOAHWrFOUeHh/weHZrsC5
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:59 2024 by rpki-client on console-ams.rpki-client.org