Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/O2Y6W0U4V6XqsBbsMkPaEeenkIs.roa
File: O2Y6W0U4V6XqsBbsMkPaEeenkIs.roa (raw, json)
Hash identifier: finjllnQgv4HcDIKUiYofxLzS5OD+SxdattWFfggGL4=
Subject key identifier: 3B:66:3A:5B:45:38:57:A5:EA:B0:16:EC:32:43:DA:11:E7:A7:90:8B
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 0186B239D8EEF9A2902D26BB6AA0EE72B250
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/O2Y6W0U4V6XqsBbsMkPaEeenkIs.roa
Signing time: Sun 05 Mar 2023 14:43:00 +0000
ROA not before: Sun 05 Mar 2023 14:43:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56484
IP address blocks: 185.124.150.0/24 maxlen: 24
185.124.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Mar 2023 17:40:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b2:39:d8:ee:f9:a2:90:2d:26:bb:6a:a0:ee:72:b2:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Mar 5 14:43:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b663a5b453857a5eab016ec3243da11e7a7908b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:4f:74:6a:4a:88:cf:86:61:fd:ff:6d:4a:
a8:1f:69:6a:1c:10:42:2b:72:db:6e:21:76:4e:49:
c9:26:ba:e2:f6:08:32:69:38:bb:ad:69:c9:dc:79:
81:33:50:e6:07:91:93:9e:50:e6:61:be:ba:02:13:
57:36:c8:71:13:61:99:f1:5e:00:86:6d:e9:32:2c:
44:75:9e:61:6e:21:e2:26:c7:14:7d:b8:a3:f1:6e:
bf:45:4e:3c:af:43:aa:59:ec:14:7e:e6:a5:d0:0e:
b8:07:75:f8:bb:94:96:bf:35:ed:05:7c:1b:b6:3a:
e6:bc:93:9a:b1:58:b4:a2:b2:90:82:cb:12:43:57:
f6:e3:0d:79:c8:59:3a:1c:83:2a:19:4c:9a:ac:e9:
26:a8:e8:b3:81:9a:8b:97:5b:1b:a9:d7:e1:55:97:
fc:34:9c:ac:69:bd:cb:d8:1a:c6:7e:5a:c5:1e:15:
ae:c3:02:da:a3:6b:78:74:61:e0:26:05:ec:88:dd:
41:dc:41:50:18:8c:d6:d0:90:7e:7f:f5:95:71:cf:
b1:b5:83:5e:8a:32:93:ce:3d:6f:f3:f7:2a:be:b9:
50:4c:52:20:3a:52:52:96:35:bd:6a:0d:83:b7:6a:
b1:8f:1c:e4:9a:ce:7e:37:6c:41:28:a6:d5:47:95:
6a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:66:3A:5B:45:38:57:A5:EA:B0:16:EC:32:43:DA:11:E7:A7:90:8B
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/O2Y6W0U4V6XqsBbsMkPaEeenkIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.150.0/23
Signature Algorithm: sha256WithRSAEncryption
93:87:41:49:32:58:bd:84:b1:a2:fb:c5:27:95:13:56:47:bb:
4b:3b:65:4d:5f:2a:32:19:80:0b:01:5e:78:1e:5e:5f:fe:06:
ff:62:82:58:c9:b6:56:6c:1d:6e:d7:cd:94:c6:3b:14:9a:da:
9d:f5:10:e6:0d:6a:fc:45:ed:22:30:ca:d0:6c:10:f7:95:16:
ca:fe:1c:f1:8a:d9:71:91:4d:d0:b1:5d:71:07:53:a2:f3:e8:
64:3c:6f:3d:b8:b4:e0:6d:64:f0:9d:c8:0e:4f:68:90:0b:4a:
e0:e6:a0:c4:60:92:79:7a:f0:b4:9e:75:00:c1:81:b2:65:85:
03:85:a9:fa:dd:79:45:02:66:51:e2:d5:40:1e:1e:97:45:de:
36:53:cf:54:10:e6:e2:cf:cd:cb:9c:8f:69:29:5e:ea:ee:14:
1c:d9:12:f6:22:46:3f:05:f4:91:2e:68:4d:96:af:b1:29:1b:
d7:5c:ce:6e:cd:0b:2f:02:ce:2b:4b:14:b5:a5:46:6e:52:c7:
07:21:38:ca:93:ae:e1:52:d5:fc:a1:87:a0:ca:51:83:cd:70:
74:03:91:bf:41:6c:a6:ac:85:d5:db:46:e4:51:80:7a:e4:27:
b0:56:96:79:63:82:a2:38:0f:4d:c8:aa:cc:d0:9c:16:fe:c6:
8c:4f:b7:1c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYayOdju+aKQLSa7aqDucrJQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMmY4YjJiOTQ3MjFlOTI4ZjYxODhiNWNmMTUwNTMxNDRk
ZWRmOGMwHhcNMjMwMzA1MTQ0MzAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjY2M2E1YjQ1Mzg1N2E1ZWFiMDE2ZWMzMjQzZGExMWU3YTc5MDhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4ZPdGpKiM+GYf3/bUqoH2lqHBBC
K3LbbiF2TknJJrri9ggyaTi7rWnJ3HmBM1DmB5GTnlDmYb66AhNXNshxE2GZ8V4A
hm3pMixEdZ5hbiHiJscUfbij8W6/RU48r0OqWewUfual0A64B3X4u5SWvzXtBXwb
tjrmvJOasVi0orKQgssSQ1f24w15yFk6HIMqGUyarOkmqOizgZqLl1sbqdfhVZf8
NJysab3L2BrGflrFHhWuwwLao2t4dGHgJgXsiN1B3EFQGIzW0JB+f/WVcc+xtYNe
ijKTzj1v8/cqvrlQTFIgOlJSljW9ag2Dt2qxjxzkms5+N2xBKKbVR5VqWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDtmOltFOFel6rAW7DJD2hHnp5CLMB8GA1UdIwQY
MBaAFA8viyuUch6Sj2GItc8VBTFE3t+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2Mt
NzIyNmE4ODQ1ZTAxLzEvTzJZNlcwVTRWNlhxc0Jic01rUGFFZWVua0lzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2MtNzIyNmE4ODQ1ZTAx
LzEvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuXyWMA0G
CSqGSIb3DQEBCwUAA4IBAQCTh0FJMli9hLGi+8UnlRNWR7tLO2VNXyoyGYALAV54
Hl5f/gb/YoJYybZWbB1u182UxjsUmtqd9RDmDWr8Re0iMMrQbBD3lRbK/hzxitlx
kU3QsV1xB1Oi8+hkPG89uLTgbWTwncgOT2iQC0rg5qDEYJJ5evC0nnUAwYGyZYUD
han63XlFAmZR4tVAHh6XRd42U89UEObiz83LnI9pKV7q7hQc2RL2IkY/BfSRLmhN
lq+xKRvXXM5uzQsvAs4rSxS1pUZuUscHITjKk67hUtX8oYegylGDzXB0A5G/QWym
rIXV20bkUYB65CewVpZ5Y4KiOA9NyKrM0JwW/saMT7cc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:06 2024 by rpki-client on console-fra.rpki-client.org