Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/oTaOIWDu6fzEybSXk9zRSGJOWtg.roa
File: oTaOIWDu6fzEybSXk9zRSGJOWtg.roa (raw, json)
Hash identifier: 1NFem0tzaIl5avr5zt1A/y+xJi1Q0NjLl+Nn0Pzu7mM=
Subject key identifier: A1:36:8E:21:60:EE:E9:FC:C4:C9:B4:97:93:DC:D1:48:62:4E:5A:D8
Certificate issuer: /CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Certificate serial: 018D689F88D42959D1D7171D14A2BE0434F4
Authority key identifier: AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/oTaOIWDu6fzEybSXk9zRSGJOWtg.roa
Signing time: Fri 02 Feb 2024 07:01:42 +0000
ROA not before: Fri 02 Feb 2024 07:01:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57844
IP address blocks: 77.83.154.0/23 maxlen: 23
139.28.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 08 Feb 2024 11:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:68:9f:88:d4:29:59:d1:d7:17:1d:14:a2:be:04:34:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada25aafe3a9870e9524afa0265987ed5a5a4da3
Validity
Not Before: Feb 2 07:01:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a1368e2160eee9fcc4c9b49793dcd148624e5ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:95:27:89:e6:78:33:88:6d:4e:e4:86:ab:4e:
85:54:f8:aa:9d:91:bb:4d:8e:e9:84:3e:09:09:99:
5b:01:3f:fe:ff:6f:f5:75:e3:12:35:9d:c2:87:1e:
35:ec:1a:42:de:02:0a:ee:1e:d4:34:80:eb:7f:29:
92:13:a3:32:1e:6c:8c:12:00:25:21:6b:0b:ff:db:
e6:e8:b1:10:41:31:19:4b:d2:1d:71:98:22:42:eb:
3d:9c:a7:38:07:de:24:99:31:c4:ea:96:1c:ab:db:
cd:c3:8b:80:a9:ab:32:47:e7:5b:52:f5:17:0a:37:
18:da:79:04:b4:1a:a7:d4:4d:e7:33:3a:56:ea:52:
4e:e8:b4:ef:6b:dd:23:0e:70:26:dd:58:53:59:f8:
6a:5d:08:71:60:7a:d6:0f:ba:75:de:d5:c6:bd:56:
ca:09:61:0b:7f:2c:6a:f3:a0:08:e7:e4:71:fc:ab:
fa:d7:10:45:28:d4:33:d0:d9:32:c0:9f:4a:aa:31:
ea:d8:2d:d6:1e:8d:f9:b6:bb:55:98:20:32:73:8b:
51:2e:66:d1:a0:b3:0d:28:e4:6f:47:ce:d7:1d:d6:
83:b4:42:12:a2:d6:a0:6a:e3:da:e6:46:24:4d:a6:
db:04:9f:3d:de:76:4d:4a:48:6e:f6:ba:23:42:cd:
23:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:36:8E:21:60:EE:E9:FC:C4:C9:B4:97:93:DC:D1:48:62:4E:5A:D8
X509v3 Authority Key Identifier:
keyid:AD:A2:5A:AF:E3:A9:87:0E:95:24:AF:A0:26:59:87:ED:5A:5A:4D:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raJar-Ophw6VJK-gJlmH7VpaTaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/oTaOIWDu6fzEybSXk9zRSGJOWtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/810d24-acbe-4cb2-9ac5-9d5875d86373/1/raJar-Ophw6VJK-gJlmH7VpaTaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.154.0/23
139.28.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:7d:09:22:9b:6b:b1:79:ac:24:d9:49:7c:21:77:22:48:df:
ce:c1:45:56:27:aa:d7:a9:b6:81:9b:28:2d:0a:4c:48:34:c3:
69:e7:bf:94:ce:b7:e1:83:d0:cc:89:65:45:c0:7f:ea:18:c2:
4b:23:d4:04:e9:ca:6e:a3:22:9e:43:c4:30:64:1c:77:fd:02:
7c:78:6b:20:14:0d:4a:29:10:f9:f8:00:9f:00:51:19:18:3d:
9a:94:04:d4:8d:71:b4:a7:08:d8:2d:8c:06:8d:db:82:82:bd:
ac:d5:15:10:d8:37:6d:71:d2:b4:e9:6f:45:2f:09:1e:7c:fc:
f8:54:e7:54:b9:87:62:83:cc:6d:17:08:a8:ce:57:3a:1f:70:
00:33:b2:69:d8:78:7d:47:be:b6:1a:1c:10:39:60:7b:dd:e8:
d7:39:d4:af:25:b6:16:f6:97:16:ad:49:5d:35:45:16:a7:36:
dc:64:8a:e8:26:df:46:0a:35:2f:00:e6:27:80:28:bb:10:ba:
de:65:b3:c4:1d:d4:4b:db:42:37:3e:1f:fa:96:79:0e:c1:67:
b9:f1:c1:79:17:a3:9b:e6:8a:b6:f9:87:09:1f:2e:2b:ba:0b:
90:63:ac:5b:79:90:36:76:47:7d:e3:1d:84:87:3b:1e:b5:bd:
36:fe:40:fd
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1on4jUKVnR1xcdFKK+BDT0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkYTI1YWFmZTNhOTg3MGU5NTI0YWZhMDI2NTk4N2VkNWE1
YTRkYTMwHhcNMjQwMjAyMDcwMTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTM2OGUyMTYwZWVlOWZjYzRjOWI0OTc5M2RjZDE0ODYyNGU1YWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5UnieZ4M4htTuSGq06FVPiqnZG7
TY7phD4JCZlbAT/+/2/1deMSNZ3Chx417BpC3gIK7h7UNIDrfymSE6MyHmyMEgAl
IWsL/9vm6LEQQTEZS9IdcZgiQus9nKc4B94kmTHE6pYcq9vNw4uAqasyR+dbUvUX
CjcY2nkEtBqn1E3nMzpW6lJO6LTva90jDnAm3VhTWfhqXQhxYHrWD7p13tXGvVbK
CWELfyxq86AI5+Rx/Kv61xBFKNQz0NkywJ9KqjHq2C3WHo35trtVmCAyc4tRLmbR
oLMNKORvR87XHdaDtEISotagauPa5kYkTabbBJ893nZNSkhu9rojQs0jIQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKE2jiFg7un8xMm0l5Pc0UhiTlrYMB8GA1UdIwQY
MBaAFK2iWq/jqYcOlSSvoCZZh+1aWk2jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUt
OWQ1ODc1ZDg2MzczLzEvb1RhT0lXRHU2ZnpFeWJTWGs5elJTR0pPV3RnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS84MTBkMjQtYWNiZS00Y2IyLTlhYzUtOWQ1ODc1ZDg2Mzcz
LzEvcmFKYXItT3BodzZWSkstZ0psbUg3VnBhVGFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBTVOaAwQC
ixyoMA0GCSqGSIb3DQEBCwUAA4IBAQANfQkim2uxeawk2Ul8IXciSN/OwUVWJ6rX
qbaBmygtCkxINMNp57+Uzrfhg9DMiWVFwH/qGMJLI9QE6cpuoyKeQ8QwZBx3/QJ8
eGsgFA1KKRD5+ACfAFEZGD2alATUjXG0pwjYLYwGjduCgr2s1RUQ2DdtcdK06W9F
LwkefPz4VOdUuYdig8xtFwiozlc6H3AAM7Jp2Hh9R762GhwQOWB73ejXOdSvJbYW
9pcWrUldNUUWpzbcZIroJt9GCjUvAOYngCi7ELreZbPEHdRL20I3Ph/6lnkOwWe5
8cF5F6Ob5oq2+YcJHy4ruguQY6xbeZA2dkd94x2Ehzsetb02/kD9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org