Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/ODv4mWFS4Vwof4UjqF6530cjwmw.roa
File: ODv4mWFS4Vwof4UjqF6530cjwmw.roa (raw, json)
Hash identifier: uSPuKYL9rAy2VOb0ffMEM9vSAw+PZOC12zG+omimF9A=
Subject key identifier: 38:3B:F8:99:61:52:E1:5C:28:7F:85:23:A8:5E:B9:DF:47:23:C2:6C
Certificate issuer: /CN=ca19abeb8ab9e63890a223c2fd6ba568498bdbba
Certificate serial: 018570C2D0EB2C170CBAE6BC4DFBBC4C0982
Authority key identifier: CA:19:AB:EB:8A:B9:E6:38:90:A2:23:C2:FD:6B:A5:68:49:8B:DB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhmr64q55jiQoiPC_WulaEmL27o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/ODv4mWFS4Vwof4UjqF6530cjwmw.roa
Signing time: Mon 02 Jan 2023 04:34:53 +0000
ROA not before: Mon 02 Jan 2023 04:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48918
IP address blocks: 94.186.128.0/17 maxlen: 24
2a02:c98::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:d0:eb:2c:17:0c:ba:e6:bc:4d:fb:bc:4c:09:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca19abeb8ab9e63890a223c2fd6ba568498bdbba
Validity
Not Before: Jan 2 04:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=383bf8996152e15c287f8523a85eb9df4723c26c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cb:ac:81:f6:33:99:4a:2f:84:6b:c6:87:6b:
87:8b:26:63:eb:ba:67:4b:51:f1:23:15:90:32:a1:
0e:1c:ee:8c:42:f9:f3:9e:fd:31:d3:2b:18:d1:99:
19:65:d0:c6:57:68:dc:41:d4:d3:62:4a:82:f8:ff:
c9:2c:7e:14:3d:22:75:48:16:88:33:8c:2f:40:31:
e1:9f:66:f0:66:87:db:fc:01:6c:39:71:d1:ca:7a:
ac:02:cf:64:64:ca:44:e1:e5:96:44:be:fa:38:91:
13:40:bc:00:0e:04:f0:56:e2:d1:08:6b:07:12:08:
4d:d0:61:ee:bf:81:f6:40:13:cb:27:75:a4:cb:92:
14:1b:77:31:bc:7f:09:7a:ed:e3:87:b1:31:32:61:
3c:5a:d7:00:36:22:f5:71:59:2d:c9:6b:d7:9b:ba:
9a:dc:60:64:1a:5e:40:84:51:d1:05:63:06:8d:c4:
46:af:e1:15:83:ef:c8:f3:fb:36:ee:da:76:e8:3b:
56:c7:b9:58:88:4d:42:f3:a3:2d:2f:a7:54:d3:cb:
65:60:ce:1f:90:1d:fa:eb:51:24:0c:7e:90:cb:19:
6c:ba:4c:ee:0a:ef:04:1d:0c:ac:4d:73:1c:2f:ba:
09:48:a8:7b:df:5e:13:2e:8d:12:45:5e:e8:55:9d:
ac:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3B:F8:99:61:52:E1:5C:28:7F:85:23:A8:5E:B9:DF:47:23:C2:6C
X509v3 Authority Key Identifier:
keyid:CA:19:AB:EB:8A:B9:E6:38:90:A2:23:C2:FD:6B:A5:68:49:8B:DB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhmr64q55jiQoiPC_WulaEmL27o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/ODv4mWFS4Vwof4UjqF6530cjwmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/yhmr64q55jiQoiPC_WulaEmL27o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.186.128.0/17
IPv6:
2a02:c98::/32
Signature Algorithm: sha256WithRSAEncryption
32:95:19:c1:64:a8:aa:91:2f:15:34:89:cb:4e:af:26:9e:4b:
ca:f5:b2:69:9b:20:ad:00:53:46:50:d5:6a:02:86:c2:c5:43:
07:a7:42:c6:5d:85:dc:8b:c5:ca:0f:d3:4d:d3:d7:63:41:89:
a4:69:78:48:a1:c7:52:c6:2b:6f:c9:29:d4:f6:b0:33:da:05:
24:75:36:33:ac:04:aa:4e:a2:6c:ba:b1:e6:13:ae:e5:a3:7b:
7d:6d:a4:af:56:89:6c:f9:50:75:a6:f3:27:f9:9e:2f:8d:05:
c4:17:c6:ff:4b:05:65:dd:ec:4b:20:4e:80:2a:fe:b9:15:10:
d5:63:7e:43:d8:c0:6f:c5:47:fe:1f:6c:8d:7d:00:90:cd:98:
05:74:c1:c3:44:17:1b:9e:e7:c0:46:f0:85:22:fc:12:77:25:
85:39:83:8b:d0:75:a5:a1:a9:f0:30:29:71:67:1e:14:cc:06:
64:89:e7:0d:bf:e0:30:de:85:f9:60:38:ab:11:10:68:24:81:
92:5d:15:7e:c4:bb:96:d0:10:e4:8b:63:e9:f6:c0:28:2d:53:
bd:2e:d1:cb:ac:fc:79:46:4d:65:ec:3c:62:3e:3e:8e:8e:fb:
88:9a:c5:9e:6c:a1:67:bc:34:d8:53:78:34:b4:46:ed:13:fe:
74:5f:40:d7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVwwtDrLBcMuua8Tfu8TAmCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMTlhYmViOGFiOWU2Mzg5MGEyMjNjMmZkNmJhNTY4NDk4
YmRiYmEwHhcNMjMwMTAyMDQzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODNiZjg5OTYxNTJlMTVjMjg3Zjg1MjNhODVlYjlkZjQ3MjNjMjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMusgfYzmUovhGvGh2uHiyZj67pn
S1HxIxWQMqEOHO6MQvnznv0x0ysY0ZkZZdDGV2jcQdTTYkqC+P/JLH4UPSJ1SBaI
M4wvQDHhn2bwZofb/AFsOXHRynqsAs9kZMpE4eWWRL76OJETQLwADgTwVuLRCGsH
EghN0GHuv4H2QBPLJ3Wky5IUG3cxvH8Jeu3jh7ExMmE8WtcANiL1cVktyWvXm7qa
3GBkGl5AhFHRBWMGjcRGr+EVg+/I8/s27tp26DtWx7lYiE1C86MtL6dU08tlYM4f
kB3661EkDH6QyxlsukzuCu8EHQysTXMcL7oJSKh7314TLo0SRV7oVZ2sHQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFDg7+JlhUuFcKH+FI6heud9HI8JsMB8GA1UdIwQY
MBaAFMoZq+uKueY4kKIjwv1rpWhJi9u6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWhtcjY0cTU1amlRb2lQQ19XdWxhRW1MMjdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9iMTdlMWQtZmQ5MS00OTIzLTlkM2Mt
MTNiYmNkMGY5Mzc2LzEvT0R2NG1XRlM0VndvZjRVanFGNjUzMGNqd213LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9iMTdlMWQtZmQ5MS00OTIzLTlkM2MtMTNiYmNkMGY5Mzc2
LzEveWhtcjY0cTU1amlRb2lQQ19XdWxhRW1MMjdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQHXrqAMA0E
AgACMAcDBQAqAgyYMA0GCSqGSIb3DQEBCwUAA4IBAQAylRnBZKiqkS8VNInLTq8m
nkvK9bJpmyCtAFNGUNVqAobCxUMHp0LGXYXci8XKD9NN09djQYmkaXhIocdSxitv
ySnU9rAz2gUkdTYzrASqTqJsurHmE67lo3t9baSvVols+VB1pvMn+Z4vjQXEF8b/
SwVl3exLIE6AKv65FRDVY35D2MBvxUf+H2yNfQCQzZgFdMHDRBcbnufARvCFIvwS
dyWFOYOL0HWloanwMClxZx4UzAZkiecNv+Aw3oX5YDirERBoJIGSXRV+xLuW0BDk
i2Pp9sAoLVO9LtHLrPx5Rk1l7DxiPj6OjvuImsWebKFnvDTYU3g0tEbtE/50X0DX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:48 2024 by rpki-client on console-ams.rpki-client.org