Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/8ZdL2PhOGag3QzK4sB-RURe-OMY.roa
File: 8ZdL2PhOGag3QzK4sB-RURe-OMY.roa (raw, json)
Hash identifier: bGY2XIOZUj4dpxge8Z5Ny9iETgYbMpApZVA+Nawxjvo=
Subject key identifier: F1:97:4B:D8:F8:4E:19:A8:37:43:32:B8:B0:1F:91:51:17:BE:38:C6
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018CC727772FF3707717FB1F637542C9CE90
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/8ZdL2PhOGag3QzK4sB-RURe-OMY.roa
Signing time: Mon 01 Jan 2024 22:31:41 +0000
ROA not before: Mon 01 Jan 2024 22:31:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51751
IP address blocks: 82.137.176.0/22 maxlen: 22
82.137.184.0/22 maxlen: 22
82.137.180.0/22 maxlen: 22
82.137.188.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 11 Feb 2024 13:45:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:77:2f:f3:70:77:17:fb:1f:63:75:42:c9:ce:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 22:31:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1974bd8f84e19a8374332b8b01f915117be38c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1b:2a:25:07:9f:39:3e:9b:48:78:d7:a6:61:
4c:08:3c:7a:af:b5:fe:ea:f6:3a:b0:7b:32:32:ec:
72:12:a5:85:15:a0:aa:54:0a:87:1f:6a:b4:20:88:
98:fc:65:0a:a7:b6:fc:6a:6d:e9:cc:9d:3f:c5:a8:
14:98:a1:50:dc:8d:37:7f:61:0c:73:c8:ca:ae:f2:
c2:a5:84:39:e4:ca:f1:0c:a1:31:e8:fe:a8:25:fe:
2b:19:26:0c:0f:59:14:d2:47:57:32:23:01:f5:96:
1a:26:4e:73:cb:53:21:76:e4:50:fc:d4:e4:26:24:
3f:c0:ad:50:d2:64:44:9f:b9:91:9b:a9:40:b9:dc:
da:30:70:de:61:b0:da:c3:88:0c:41:c1:d3:50:05:
8a:fb:35:03:7c:58:cb:38:61:04:2f:a9:c8:33:dd:
7a:07:86:eb:d9:40:d4:d6:58:12:8d:b8:ad:90:62:
01:59:21:6c:e0:53:65:63:d9:0f:3a:c4:9c:af:8a:
34:5c:14:88:40:18:c4:7d:a7:66:96:2e:8a:14:c6:
2e:80:7e:e8:a5:56:76:58:b3:01:02:5d:6c:cd:5e:
e2:72:8f:50:6c:24:a9:d6:ef:e4:e1:2c:ab:5b:96:
08:20:af:05:0e:54:39:19:80:6c:98:09:41:a7:a7:
83:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:97:4B:D8:F8:4E:19:A8:37:43:32:B8:B0:1F:91:51:17:BE:38:C6
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/8ZdL2PhOGag3QzK4sB-RURe-OMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.137.176.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:08:de:36:42:31:f8:f1:65:65:5b:b4:51:01:be:1f:65:8e:
a0:04:0d:35:41:65:a0:c2:54:7c:b8:7a:ae:ca:b9:c1:c5:a2:
cd:99:2f:60:21:07:11:a0:5f:ba:97:83:ee:53:4d:00:cb:ce:
ab:d6:e4:b0:9e:4f:04:54:eb:ea:fe:6e:90:49:c6:30:ad:c0:
a3:ce:c7:eb:b7:ca:92:0e:93:12:e4:03:b4:95:1e:20:03:f4:
99:91:da:3f:a7:b9:09:b1:74:ae:01:98:ae:68:b6:5c:ad:ff:
50:a5:e6:b6:0c:17:2f:28:cc:07:40:76:7f:e3:86:da:51:1b:
92:ce:c6:03:92:25:72:40:e2:20:d5:60:0f:aa:8e:37:18:89:
c6:bb:dd:69:da:6f:ad:df:86:7f:0c:88:a3:c5:c3:fa:e3:7c:
35:30:c1:5d:b8:c0:7a:ac:07:20:d7:84:c8:83:67:57:eb:d0:
34:d4:75:7c:b8:57:01:37:49:a5:65:45:e0:c8:de:86:3c:7e:
bb:98:c4:1c:74:34:a5:32:b8:d2:24:c7:02:69:e0:73:dd:14:
24:1e:bf:ee:47:b3:fb:b7:a6:c6:2d:60:75:94:c5:fb:ab:45:
f3:04:60:db:a0:76:65:f4:8a:e5:d7:44:ea:b0:31:33:a2:bd:
76:b6:95:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHJ3cv83B3F/sfY3VCyc6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjQwMTAxMjIzMTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTk3NGJkOGY4NGUxOWE4Mzc0MzMyYjhiMDFmOTE1MTE3YmUzOGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgRsqJQefOT6bSHjXpmFMCDx6r7X+
6vY6sHsyMuxyEqWFFaCqVAqHH2q0IIiY/GUKp7b8am3pzJ0/xagUmKFQ3I03f2EM
c8jKrvLCpYQ55MrxDKEx6P6oJf4rGSYMD1kU0kdXMiMB9ZYaJk5zy1MhduRQ/NTk
JiQ/wK1Q0mREn7mRm6lAudzaMHDeYbDaw4gMQcHTUAWK+zUDfFjLOGEEL6nIM916
B4br2UDU1lgSjbitkGIBWSFs4FNlY9kPOsScr4o0XBSIQBjEfadmli6KFMYugH7o
pVZ2WLMBAl1szV7ico9QbCSp1u/k4SyrW5YIIK8FDlQ5GYBsmAlBp6eDtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPGXS9j4ThmoN0MyuLAfkVEXvjjGMB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvOFpkTDJQaE9HYWczUXpLNHNCLVJVUmUtT01ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUomwMA0G
CSqGSIb3DQEBCwUAA4IBAQAMCN42QjH48WVlW7RRAb4fZY6gBA01QWWgwlR8uHqu
yrnBxaLNmS9gIQcRoF+6l4PuU00Ay86r1uSwnk8EVOvq/m6QScYwrcCjzsfrt8qS
DpMS5AO0lR4gA/SZkdo/p7kJsXSuAZiuaLZcrf9Qpea2DBcvKMwHQHZ/44baURuS
zsYDkiVyQOIg1WAPqo43GInGu91p2m+t34Z/DIijxcP643w1MMFduMB6rAcg14TI
g2dX69A01HV8uFcBN0mlZUXgyN6GPH67mMQcdDSlMrjSJMcCaeBz3RQkHr/uR7P7
t6bGLWB1lMX7q0XzBGDboHZl9Irl10TqsDEzor12tpUi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org