Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/ovoNwKYsqDRk4vQGTPWnZ0KOxu8.roa
File: ovoNwKYsqDRk4vQGTPWnZ0KOxu8.roa (raw, json)
Hash identifier: l/3X7bxkbwS8vbis4c8AjFbX0FhvTbz3MN7YRIjdx2k=
Subject key identifier: A2:FA:0D:C0:A6:2C:A8:34:64:E2:F4:06:4C:F5:A7:67:42:8E:C6:EF
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 018F29098CD7668F79CD14397BB1AB16C9D9
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/ovoNwKYsqDRk4vQGTPWnZ0KOxu8.roa
Signing time: Mon 29 Apr 2024 08:47:22 +0000
ROA not before: Mon 29 Apr 2024 08:47:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25521
IP address blocks: 31.42.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 12:50:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:29:09:8c:d7:66:8f:79:cd:14:39:7b:b1:ab:16:c9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Apr 29 08:47:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a2fa0dc0a62ca83464e2f4064cf5a767428ec6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:79:c7:4a:d2:21:47:8c:4e:88:8d:07:12:cb:
62:f3:b6:aa:e9:85:51:70:cf:b8:0a:a3:79:58:e8:
3b:db:c3:5c:15:15:32:35:47:5f:53:7d:b6:fe:fd:
b8:1b:d3:66:de:1d:89:d7:2d:52:3f:14:ff:f6:5e:
b0:96:5c:e0:00:60:38:c7:9d:62:53:11:3b:1f:9d:
cb:f0:c5:3f:d8:29:89:6f:62:d5:ca:43:66:4f:7a:
6e:35:a9:f7:f1:8f:86:d7:c1:8a:d6:1a:96:70:3c:
c3:8d:a7:bb:1d:1a:18:1a:ae:e0:f7:ae:b3:eb:4b:
51:8f:2b:be:3b:a0:85:20:07:a7:0c:2f:d8:04:a1:
18:dc:39:24:d5:78:19:74:7d:5f:0d:02:9a:e9:9e:
e0:63:97:e0:c0:ae:9f:32:7b:37:6e:2a:95:b3:2b:
2d:e3:d1:76:7b:8d:34:85:a3:79:2d:32:bd:97:96:
39:8d:d2:b3:87:4d:a8:59:04:5b:88:24:3d:e6:00:
33:30:e2:22:30:c0:ee:bc:ed:03:2b:bc:2c:0e:1d:
c1:0e:c3:d8:f0:6b:52:a5:59:c1:ca:e0:85:9f:f8:
8d:73:a4:40:49:b8:a5:44:cf:50:55:dd:03:88:6d:
6e:be:ea:76:ee:ef:c6:e5:0e:2b:12:00:1f:0e:11:
c4:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FA:0D:C0:A6:2C:A8:34:64:E2:F4:06:4C:F5:A7:67:42:8E:C6:EF
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/ovoNwKYsqDRk4vQGTPWnZ0KOxu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.119.0/24
Signature Algorithm: sha256WithRSAEncryption
50:01:ec:8a:b4:b6:6e:78:1e:00:f7:d8:6d:a7:6c:9e:ce:61:
1f:2a:d8:f4:81:05:da:96:f0:5f:04:50:b3:c4:ef:8b:5a:dc:
c7:01:97:17:c5:a7:fb:8e:2e:e0:9f:58:d3:93:69:69:d3:eb:
68:f7:20:c2:3d:a8:5a:58:fb:10:ac:45:05:e6:ec:97:b8:58:
3b:e3:d2:88:8d:2d:3b:b7:a6:44:02:1f:63:3f:30:ba:54:93:
37:fc:db:0a:0a:26:9a:f2:16:16:da:30:06:02:49:c4:26:d4:
82:ec:17:88:8c:bf:02:e2:7c:63:da:8e:9d:32:a1:e9:07:2e:
f1:0a:12:aa:fe:60:14:24:aa:73:1e:20:65:6c:35:65:4d:85:
90:61:e2:27:4d:ff:24:77:54:db:48:eb:5d:1c:18:2e:39:b0:
3f:96:a6:b6:32:ac:b9:54:5e:ac:2e:cb:fe:9e:59:4f:36:ce:
1b:93:4b:c6:f8:f7:98:d3:f6:00:5a:c3:33:2a:53:64:85:84:
50:51:c7:bb:2b:d8:02:b7:00:c1:f2:8f:cb:9e:b4:59:05:c0:
af:13:3d:12:31:65:d5:c0:67:92:0b:cd:9e:a3:f4:24:21:6c:
1c:31:96:59:3a:fd:52:28:68:79:71:c4:3b:c4:80:3f:93:48:
71:ab:1b:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8pCYzXZo95zRQ5e7GrFsnZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0MjU4OGI5MWRhOWNjYTgxYjQ5ZTYwM2E5ODhlMmIxZWFi
ZGRjOTgwHhcNMjQwNDI5MDg0NzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmZhMGRjMGE2MmNhODM0NjRlMmY0MDY0Y2Y1YTc2NzQyOGVjNmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHnHStIhR4xOiI0HEsti87aq6YVR
cM+4CqN5WOg728NcFRUyNUdfU322/v24G9Nm3h2J1y1SPxT/9l6wllzgAGA4x51i
UxE7H53L8MU/2CmJb2LVykNmT3puNan38Y+G18GK1hqWcDzDjae7HRoYGq7g966z
60tRjyu+O6CFIAenDC/YBKEY3Dkk1XgZdH1fDQKa6Z7gY5fgwK6fMns3biqVsyst
49F2e400haN5LTK9l5Y5jdKzh02oWQRbiCQ95gAzMOIiMMDuvO0DK7wsDh3BDsPY
8GtSpVnByuCFn/iNc6RASbilRM9QVd0DiG1uvup27u/G5Q4rEgAfDhHEHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKL6DcCmLKg0ZOL0Bkz1p2dCjsbvMB8GA1UdIwQY
MBaAFJQliLkdqcyoG0nmA6mI4rHqvdyYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbENXSXVSMnB6S2diU2VZRHFZamlzZXE5M0pnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC80YmJhN2MtYTgxZi00MGUxLTg4MTQt
NjVkYWFkNjMyOTU3LzEvb3ZvTndLWXNxRFJrNHZRR1RQV25aMEtPeHU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC80YmJhN2MtYTgxZi00MGUxLTg4MTQtNjVkYWFkNjMyOTU3
LzEvbENXSXVSMnB6S2diU2VZRHFZamlzZXE5M0pnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyp3MA0G
CSqGSIb3DQEBCwUAA4IBAQBQAeyKtLZueB4A99htp2yezmEfKtj0gQXalvBfBFCz
xO+LWtzHAZcXxaf7ji7gn1jTk2lp0+to9yDCPahaWPsQrEUF5uyXuFg749KIjS07
t6ZEAh9jPzC6VJM3/NsKCiaa8hYW2jAGAknEJtSC7BeIjL8C4nxj2o6dMqHpBy7x
ChKq/mAUJKpzHiBlbDVlTYWQYeInTf8kd1TbSOtdHBguObA/lqa2Mqy5VF6sLsv+
nllPNs4bk0vG+PeY0/YAWsMzKlNkhYRQUce7K9gCtwDB8o/LnrRZBcCvEz0SMWXV
wGeSC82eo/QkIWwcMZZZOv1SKGh5ccQ7xIA/k0hxqxuc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:22 2024 by rpki-client on console-fra.rpki-client.org