Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/oIyBCc97Oe8PBYzJiJcdi6TCYVM.roa
File: oIyBCc97Oe8PBYzJiJcdi6TCYVM.roa (raw, json)
Hash identifier: GhIr3HQR+HYvLbXyvBiEw9sa1CifN7Ozduy2irHb03E=
Subject key identifier: A0:8C:81:09:CF:7B:39:EF:0F:05:8C:C9:88:97:1D:8B:A4:C2:61:53
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 01856F5DF5DC3FA3AAD4ED67E62B681769E3
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/oIyBCc97Oe8PBYzJiJcdi6TCYVM.roa
Signing time: Sun 01 Jan 2023 22:05:06 +0000
ROA not before: Sun 01 Jan 2023 22:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198689
IP address blocks: 31.7.84.0/24 maxlen: 24
2a00:c9e0:0:2::/64 maxlen: 64
Validation: Failed, certificate revoked on Thu 23 Feb 2023 06:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:f5:dc:3f:a3:aa:d4:ed:67:e6:2b:68:17:69:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 1 22:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a08c8109cf7b39ef0f058cc988971d8ba4c26153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0e:fc:9f:56:86:9c:b9:bb:82:88:c9:45:db:
c6:f4:1e:a7:87:80:db:c1:6f:db:a0:bc:2d:9c:6f:
99:22:45:12:c6:1e:0e:07:75:05:20:a0:f4:55:37:
7e:4a:b8:8b:ee:72:21:e2:46:ba:34:24:11:19:9c:
a8:8c:cd:6c:81:65:fb:82:4f:96:77:d1:d5:75:a8:
db:1c:ab:62:ae:5c:44:37:8f:cf:0e:2f:4d:fe:9a:
93:78:c6:9e:35:2a:be:c1:6d:e3:9e:09:c5:26:17:
db:87:e5:85:94:be:c6:39:57:e5:2d:42:bc:1e:42:
23:45:91:36:5f:d5:22:99:ff:43:ca:27:22:49:0c:
7e:a0:77:75:44:fb:88:82:30:2a:f6:98:97:28:6c:
96:28:90:ef:a2:93:2b:fb:58:ec:94:96:19:c9:d6:
f4:58:da:b3:d4:5d:70:c5:30:c2:c2:c8:6a:4e:56:
59:94:9a:fc:89:d0:62:1c:4a:79:50:66:9a:4b:ef:
a5:b0:b9:a9:c0:43:db:74:9d:24:c4:9a:8e:40:9d:
05:9a:33:c9:6e:ca:34:64:aa:51:a8:85:d9:ea:f6:
51:ff:72:52:3e:6d:3d:2e:3f:fa:df:34:23:24:85:
2c:b0:4c:c9:27:55:16:45:4b:b4:57:de:89:ac:17:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:8C:81:09:CF:7B:39:EF:0F:05:8C:C9:88:97:1D:8B:A4:C2:61:53
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/oIyBCc97Oe8PBYzJiJcdi6TCYVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.84.0/24
IPv6:
2a00:c9e0:0:2::/64
Signature Algorithm: sha256WithRSAEncryption
6b:6f:39:84:b1:74:b6:9a:01:00:33:51:5b:cb:b0:73:49:5a:
8c:0d:02:42:07:29:c1:70:e2:3a:45:0b:cb:6a:1d:d2:30:35:
0c:32:17:e8:9a:e7:96:7d:45:95:e4:68:dd:cb:04:a2:e0:9e:
6a:01:a9:0e:e5:73:39:df:4f:29:04:62:68:66:5d:89:a7:0a:
36:b7:ed:65:da:4d:1f:97:63:ca:0f:b0:57:85:e4:da:c5:31:
c8:44:56:38:59:f8:01:44:fd:de:96:5e:fb:5f:09:d8:76:4c:
e8:dc:31:d3:c3:90:3b:10:34:b3:bc:54:4c:e5:f9:67:07:6a:
17:97:14:7f:79:03:bd:90:c4:41:81:ff:70:ff:77:da:d6:ba:
ff:83:5f:45:b1:1e:6d:f4:02:30:f3:27:55:22:7e:0c:d5:7b:
02:fd:bb:8c:77:f7:fc:d4:0f:69:7c:3c:cf:b5:e8:d0:e3:51:
c6:3a:d7:cb:40:7f:76:9f:ce:44:dd:c3:77:e7:4b:de:23:85:
f6:c6:b6:3c:79:b4:c7:94:d7:dd:e6:e7:be:d9:b5:2c:50:46:
68:29:e2:fd:b3:e3:35:b4:f6:98:51:72:72:09:bf:ef:67:de:
70:93:00:17:22:4e:b8:f9:a7:39:e0:48:ba:4c:46:e6:d4:47:
d2:5f:72:96
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgISAYVvXfXcP6Oq1O1n5itoF2njMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYmJkNGY4NjVhMTJkNzlhMDlhMDM0NDg2Y2U2MWJhMDIz
ODgyYzcwHhcNMjMwMTAxMjIwNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDhjODEwOWNmN2IzOWVmMGYwNThjYzk4ODk3MWQ4YmE0YzI2MTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjA78n1aGnLm7gojJRdvG9B6nh4Db
wW/boLwtnG+ZIkUSxh4OB3UFIKD0VTd+SriL7nIh4ka6NCQRGZyojM1sgWX7gk+W
d9HVdajbHKtirlxEN4/PDi9N/pqTeMaeNSq+wW3jngnFJhfbh+WFlL7GOVflLUK8
HkIjRZE2X9Uimf9DyiciSQx+oHd1RPuIgjAq9piXKGyWKJDvopMr+1jslJYZydb0
WNqz1F1wxTDCwshqTlZZlJr8idBiHEp5UGaaS++lsLmpwEPbdJ0kxJqOQJ0FmjPJ
bso0ZKpRqIXZ6vZR/3JSPm09Lj/63zQjJIUssEzJJ1UWRUu0V96JrBchvwIDAQAB
o4ICHDCCAhgwHQYDVR0OBBYEFKCMgQnPeznvDwWMyYiXHYukwmFTMB8GA1UdIwQY
MBaAFAK71PhloS15oJoDRIbOYboCOILHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUt
MGE5ODA0OGNkZjcyLzEvb0l5QkNjOTdPZThQQll6SmlKY2RpNlRDWVZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUtMGE5ODA0OGNkZjcy
LzEvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAMBAIAATAGAwQAHwdUMBEE
AgACMAsDCQAqAMngAAAAAjANBgkqhkiG9w0BAQsFAAOCAQEAa285hLF0tpoBADNR
W8uwc0lajA0CQgcpwXDiOkULy2od0jA1DDIX6Jrnln1FleRo3csEouCeagGpDuVz
Od9PKQRiaGZdiacKNrftZdpNH5djyg+wV4Xk2sUxyERWOFn4AUT93pZe+18J2HZM
6Nwx08OQOxA0s7xUTOX5ZwdqF5cUf3kDvZDEQYH/cP932ta6/4NfRbEebfQCMPMn
VSJ+DNV7Av27jHf3/NQPaXw8z7Xo0ONRxjrXy0B/dp/ORN3Dd+dL3iOF9sa2PHm0
x5TX3ebnvtm1LFBGaCni/bPjNbT2mFFycgm/72fecJMAFyJOuPmnOeBIukxG5tRH
0l9ylg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org