Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/OsgMoHV0Jnx78FBQHyM1EGxH3ws.roa
File: OsgMoHV0Jnx78FBQHyM1EGxH3ws.roa (raw, json)
Hash identifier: CPb8iaRrrQdUf4W4xtWcPaUU+S51PWv9JuYKKDAfZzM=
Subject key identifier: 3A:C8:0C:A0:75:74:26:7C:7B:F0:50:50:1F:23:35:10:6C:47:DF:0B
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01867A630E110C94FA2D24A23DEEDD97E409
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/OsgMoHV0Jnx78FBQHyM1EGxH3ws.roa
Signing time: Wed 22 Feb 2023 18:29:17 +0000
ROA not before: Wed 22 Feb 2023 18:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 185.110.129.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:63:0e:11:0c:94:fa:2d:24:a2:3d:ee:dd:97:e4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 22 18:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ac80ca07574267c7bf050501f2335106c47df0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:97:3f:da:fe:9f:f6:fa:b2:94:3a:7c:db:
ac:d4:a1:15:8d:96:3c:34:28:0f:84:aa:ee:9f:d7:
36:0f:69:89:94:09:4a:6e:5a:74:1e:1b:e9:5b:b1:
aa:27:04:bc:d9:de:d6:53:3b:b9:0b:79:73:08:d2:
38:bd:97:07:14:f8:62:c2:a3:98:f9:1a:33:5c:44:
1b:9a:a4:1e:f2:c3:e5:f0:b5:bf:fb:98:45:35:ec:
63:ae:6a:1d:ea:eb:d0:fd:d2:91:2d:50:2c:61:58:
a2:91:0d:00:9f:7e:e1:68:9e:3e:7a:2b:0f:4b:69:
b8:e8:62:6e:d0:ed:ae:6f:1f:72:0e:3c:33:bf:2a:
00:c9:15:91:33:6d:f6:85:46:31:c4:eb:a7:9f:81:
92:ab:77:85:3a:6a:54:54:0c:9d:78:64:53:72:29:
07:43:99:e8:91:8d:57:86:9f:e0:4a:3e:18:44:2a:
5c:35:4b:5b:bd:fd:b6:63:c2:54:3d:37:58:3b:82:
8f:ed:da:81:9a:3d:20:f9:85:45:a7:a6:5f:15:97:
d6:cf:2a:4c:d3:28:95:0f:0c:fe:cd:b0:f3:f9:b3:
5c:32:ea:15:d5:38:d8:30:a9:38:f9:b9:13:1f:c5:
f6:ae:4f:22:e6:ea:35:a2:dd:85:2d:79:e0:30:65:
72:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C8:0C:A0:75:74:26:7C:7B:F0:50:50:1F:23:35:10:6C:47:DF:0B
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/OsgMoHV0Jnx78FBQHyM1EGxH3ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.129.0/24
Signature Algorithm: sha256WithRSAEncryption
75:19:d4:20:f1:e8:54:6b:d4:c7:e0:a6:b9:5f:8f:33:52:3f:
f6:64:4f:48:02:f0:59:4f:ee:6f:0e:a8:70:b0:a6:86:7a:61:
ee:c9:16:dd:65:9d:5a:ac:90:94:6a:ac:5d:61:c2:a6:44:44:
9a:20:fb:d8:b5:49:e2:74:78:53:ca:2b:99:10:91:b0:4b:3a:
54:62:72:59:a7:4d:72:bb:33:f4:65:30:76:91:cb:4a:22:00:
b9:29:3b:2f:75:7c:ce:1f:49:8a:06:59:c7:b9:98:ac:9a:28:
90:28:95:76:3d:9f:14:b5:46:73:ec:a7:7b:a4:3d:d1:f4:6b:
bb:4e:d0:17:c0:3c:a3:4d:31:0b:ad:9e:81:98:74:29:ac:ab:
a7:f7:5b:aa:37:26:01:d1:25:6f:ba:6c:10:0e:cd:0e:64:8e:
7d:92:63:63:fa:40:29:d9:c1:bb:1c:dc:f7:70:36:94:1a:d3:
5e:88:41:60:df:eb:08:ca:6e:8c:f3:a3:77:41:7f:8f:2e:96:
02:b0:ae:91:4e:ab:16:24:e5:26:58:eb:a0:ff:62:55:36:3d:
66:56:6a:30:25:0c:1f:ce:0c:09:0a:63:38:a2:b4:94:ca:92:
b9:5e:39:d5:0d:80:09:f9:41:5f:d6:7c:e7:18:0f:d5:62:c5:
db:18:0c:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ6Yw4RDJT6LSSiPe7dl+QJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMwMjIyMTgyOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYWM4MGNhMDc1NzQyNjdjN2JmMDUwNTAxZjIzMzUxMDZjNDdkZjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyeXP9r+n/b6spQ6fNus1KEVjZY8
NCgPhKrun9c2D2mJlAlKblp0HhvpW7GqJwS82d7WUzu5C3lzCNI4vZcHFPhiwqOY
+RozXEQbmqQe8sPl8LW/+5hFNexjrmod6uvQ/dKRLVAsYViikQ0An37haJ4+eisP
S2m46GJu0O2ubx9yDjwzvyoAyRWRM232hUYxxOunn4GSq3eFOmpUVAydeGRTcikH
Q5nokY1Xhp/gSj4YRCpcNUtbvf22Y8JUPTdYO4KP7dqBmj0g+YVFp6ZfFZfWzypM
0yiVDwz+zbDz+bNcMuoV1TjYMKk4+bkTH8X2rk8i5uo1ot2FLXngMGVytQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDrIDKB1dCZ8e/BQUB8jNRBsR98LMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvT3NnTW9IVjBKbng3OEZCUUh5TTFFR3hIM3dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuW6BMA0G
CSqGSIb3DQEBCwUAA4IBAQB1GdQg8ehUa9TH4Ka5X48zUj/2ZE9IAvBZT+5vDqhw
sKaGemHuyRbdZZ1arJCUaqxdYcKmRESaIPvYtUnidHhTyiuZEJGwSzpUYnJZp01y
uzP0ZTB2kctKIgC5KTsvdXzOH0mKBlnHuZismiiQKJV2PZ8UtUZz7Kd7pD3R9Gu7
TtAXwDyjTTELrZ6BmHQprKun91uqNyYB0SVvumwQDs0OZI59kmNj+kAp2cG7HNz3
cDaUGtNeiEFg3+sIym6M86N3QX+PLpYCsK6RTqsWJOUmWOug/2JVNj1mVmowJQwf
zgwJCmM4orSUypK5XjnVDYAJ+UFf1nznGA/VYsXbGAzI
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org