Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/O0WY6YjMKTH4bqopYYhUYR1nzbE.roa
File: O0WY6YjMKTH4bqopYYhUYR1nzbE.roa (raw, json)
Hash identifier: w4BGi/WeOYT/XW5HFwqWRO3xZobEevnDCakvgBBF1E4=
Subject key identifier: 3B:45:98:E9:88:CC:29:31:F8:6E:AA:29:61:88:54:61:1D:67:CD:B1
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 018E580410B29DF254EEE907BC65FDCD7716
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/O0WY6YjMKTH4bqopYYhUYR1nzbE.roa
Signing time: Tue 19 Mar 2024 18:40:45 +0000
ROA not before: Tue 19 Mar 2024 18:40:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398343
IP address blocks: 86.111.230.0/24 maxlen: 24
86.111.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 18:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:58:04:10:b2:9d:f2:54:ee:e9:07:bc:65:fd:cd:77:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Mar 19 18:40:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b4598e988cc2931f86eaa29618854611d67cdb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:66:71:dc:6d:e6:4b:3c:0d:41:1f:a3:8e:15:
ac:6d:d4:7c:37:5b:f8:5c:e2:37:fb:27:b5:39:31:
fb:31:aa:73:ff:11:3d:76:78:5e:ee:8c:7d:28:5e:
ca:06:a0:25:7b:e2:a0:ca:1b:8c:29:00:c2:e0:de:
7a:db:87:7d:30:c8:e5:2d:c2:1d:34:22:54:53:34:
bf:a7:56:b3:ae:40:0d:e4:ee:9c:a2:a1:e4:17:6c:
a2:c0:8e:99:90:ce:61:06:5a:9d:28:45:cd:c9:33:
24:95:76:c5:60:25:bb:32:6b:5c:bd:ce:1e:39:d7:
7a:a3:01:40:b7:af:ba:f2:2d:6e:d9:b3:e5:58:1f:
19:11:61:90:6f:36:42:b1:6d:aa:d9:a4:b0:15:73:
dd:6d:52:04:fc:99:99:08:14:bb:da:fc:1e:b3:f1:
51:3b:3c:de:da:1d:3e:23:83:4d:0c:dc:f6:cf:10:
9d:f4:bf:2c:94:46:a9:67:c9:d8:1b:b2:0b:a2:8e:
91:f3:57:a4:f8:9f:79:e7:1e:49:c8:8e:9b:9c:3e:
23:53:cb:03:f0:66:80:ee:e2:5f:a2:78:ce:5d:7e:
13:db:d7:c8:c4:92:c4:d3:76:e7:b7:f6:d2:4e:b1:
21:e8:09:46:a6:20:e2:50:a7:3e:d8:86:93:73:13:
55:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:45:98:E9:88:CC:29:31:F8:6E:AA:29:61:88:54:61:1D:67:CD:B1
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/O0WY6YjMKTH4bqopYYhUYR1nzbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.230.0/23
Signature Algorithm: sha256WithRSAEncryption
41:1c:79:5a:82:63:d4:44:d8:de:e8:2f:ae:b1:95:42:df:d8:
fa:7a:d6:94:f7:1d:dc:bb:c0:3e:1d:11:d8:fe:47:bd:10:8e:
06:ed:c0:a1:88:94:43:f4:26:97:0c:70:e1:fd:a7:fc:46:31:
4f:e1:35:4c:c8:dc:0a:e9:ef:4c:dd:d4:ef:85:8e:3d:fa:96:
d8:26:7d:0e:1e:eb:7e:2f:bd:23:bf:61:b8:0c:9a:e1:46:e2:
ff:ea:ca:24:87:65:9b:d7:b5:e9:54:96:5e:15:37:1d:f2:8d:
e1:17:d4:23:ff:49:dc:18:9e:38:3c:49:06:ca:09:72:38:97:
0e:c0:c1:2d:57:34:cf:03:13:89:fe:4b:18:53:ad:71:86:a7:
7b:22:1f:9f:2b:e0:59:ac:05:34:6e:df:5b:50:8e:f4:53:f1:
8a:c6:3b:bd:8c:89:3d:df:79:5f:23:7e:a2:d9:83:00:b2:06:
9c:91:8a:14:96:9f:1b:c9:e5:b5:8a:85:ab:28:2c:0b:60:54:
c9:b0:14:30:20:4e:70:36:de:d7:3b:aa:ce:ac:0f:aa:17:af:
35:da:a5:63:29:1d:10:05:d6:4f:00:ec:69:8a:73:79:6c:b5:
91:75:bd:42:04:cc:be:48:97:1f:c0:47:28:76:4b:6f:95:7f:
9c:0f:2a:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY5YBBCynfJU7ukHvGX9zXcWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlYjQ0MWRhZGJiZWNiNjk2NWQ0ZWExZjA0NmNjNWM4ZTI4
ODE3ZmMwHhcNMjQwMzE5MTg0MDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjQ1OThlOTg4Y2MyOTMxZjg2ZWFhMjk2MTg4NTQ2MTFkNjdjZGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWZx3G3mSzwNQR+jjhWsbdR8N1v4
XOI3+ye1OTH7Mapz/xE9dnhe7ox9KF7KBqAle+KgyhuMKQDC4N5624d9MMjlLcId
NCJUUzS/p1azrkAN5O6coqHkF2yiwI6ZkM5hBlqdKEXNyTMklXbFYCW7Mmtcvc4e
Odd6owFAt6+68i1u2bPlWB8ZEWGQbzZCsW2q2aSwFXPdbVIE/JmZCBS72vwes/FR
Ozze2h0+I4NNDNz2zxCd9L8slEapZ8nYG7ILoo6R81ek+J955x5JyI6bnD4jU8sD
8GaA7uJfonjOXX4T29fIxJLE03bnt/bSTrEh6AlGpiDiUKc+2IaTcxNVmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDtFmOmIzCkx+G6qKWGIVGEdZ82xMB8GA1UdIwQY
MBaAFI60QdrbvstpZdTqHwRsxcjiiBf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmIt
NDZiOTQ5MDkyY2JlLzEvTzBXWTZZak1LVEg0YnFvcFlZaFVZUjFuemJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmItNDZiOTQ5MDkyY2Jl
LzEvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVm/mMA0G
CSqGSIb3DQEBCwUAA4IBAQBBHHlagmPURNje6C+usZVC39j6etaU9x3cu8A+HRHY
/ke9EI4G7cChiJRD9CaXDHDh/af8RjFP4TVMyNwK6e9M3dTvhY49+pbYJn0OHut+
L70jv2G4DJrhRuL/6sokh2Wb17XpVJZeFTcd8o3hF9Qj/0ncGJ44PEkGyglyOJcO
wMEtVzTPAxOJ/ksYU61xhqd7Ih+fK+BZrAU0bt9bUI70U/GKxju9jIk933lfI36i
2YMAsgackYoUlp8byeW1ioWrKCwLYFTJsBQwIE5wNt7XO6rOrA+qF6812qVjKR0Q
BdZPAOxpinN5bLWRdb1CBMy+SJcfwEcodktvlX+cDyqC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:15 2024 by rpki-client on console-fra.rpki-client.org