Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/osymKUCzk94yIhlZ0mKmSb-nVDA.roa
File: osymKUCzk94yIhlZ0mKmSb-nVDA.roa (raw, json)
Hash identifier: eWu2skPUFfgQMNg61Ng8t4R8s7CcbDb5djHl+oj590A=
Subject key identifier: A2:CC:A6:29:40:B3:93:DE:32:22:19:59:D2:62:A6:49:BF:A7:54:30
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 01856F799E22A037340D36514BFE5EF36B5B
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/osymKUCzk94yIhlZ0mKmSb-nVDA.roa
Signing time: Sun 01 Jan 2023 22:35:19 +0000
ROA not before: Sun 01 Jan 2023 22:35:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203622
IP address blocks: 37.32.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:9e:22:a0:37:34:0d:36:51:4b:fe:5e:f3:6b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Jan 1 22:35:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2cca62940b393de32221959d262a649bfa75430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:88:48:c4:e0:8a:83:51:e6:eb:59:4f:8a:4b:
21:a6:f2:07:45:f1:e9:b4:57:48:f5:16:78:38:9c:
1d:24:02:d0:98:49:97:94:3b:5d:99:a2:a5:23:b2:
d3:08:75:ee:05:7c:17:63:18:7c:08:ae:39:bb:21:
9a:0e:40:8d:c3:90:1c:31:f4:ab:16:18:de:d9:60:
02:4d:c6:6c:f9:b0:aa:28:ef:d0:4e:6f:ff:73:fe:
c1:ad:29:a1:94:c5:e5:8f:3a:5b:61:ed:fd:ff:6c:
b7:f3:71:f5:5c:b7:16:6f:56:2d:9a:85:bb:ad:15:
7b:14:e8:ff:85:69:25:d7:0d:61:7d:8a:ed:98:2f:
5b:9c:9e:fc:9f:d5:d0:0d:e7:ef:64:35:ed:bc:35:
63:ec:29:cc:1e:83:3e:2a:b8:10:fa:4c:80:ef:a9:
af:c1:53:ef:b0:c1:fa:4f:8f:65:23:76:bc:91:01:
56:42:e8:01:27:41:69:cd:d3:4f:f9:9a:5a:cc:5f:
63:99:2e:28:21:fb:d7:df:02:31:0e:12:17:9f:b1:
3d:f0:80:a2:1e:d2:07:cf:62:6b:b4:84:a4:3f:fb:
d8:33:bc:09:4c:61:37:99:ff:08:0b:77:b0:d0:13:
d0:c6:1f:1a:0f:2d:f0:92:1d:8e:64:6b:f7:37:4d:
bd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CC:A6:29:40:B3:93:DE:32:22:19:59:D2:62:A6:49:BF:A7:54:30
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/osymKUCzk94yIhlZ0mKmSb-nVDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.72.0/24
Signature Algorithm: sha256WithRSAEncryption
99:04:14:19:14:5a:8c:45:d1:05:29:cd:e5:c1:90:b4:07:d8:
90:42:c0:3f:b9:95:17:b9:c4:7e:8f:70:89:76:33:82:a0:da:
6a:3d:de:7c:68:19:04:db:a4:f2:ff:66:4f:15:c8:83:f3:42:
b2:13:da:d2:09:41:b5:51:b1:a1:f6:3b:c3:64:4e:78:f0:d9:
d4:e9:ba:35:2f:28:7c:59:a0:63:f3:cd:13:73:3d:10:87:28:
bd:03:da:09:63:da:20:9f:de:6d:60:26:0f:2b:c5:62:f0:54:
ed:78:f4:0b:5a:c9:78:e5:fc:ab:2e:39:86:18:2e:52:77:35:
c3:80:fb:26:fc:ef:94:65:b7:13:1c:6d:86:df:a9:1c:02:0f:
09:58:f2:ab:79:7e:f5:1d:59:23:f9:a9:f8:41:cf:ec:fd:ed:
28:c3:d3:d5:cd:47:bc:46:87:ae:e2:2b:e6:f8:58:ef:ff:27:
bb:b8:2b:d4:75:98:e3:5e:ec:ef:8b:c9:43:28:f2:d3:5d:ce:
54:81:b9:1d:9d:48:85:0f:8f:25:78:52:1f:c1:f1:66:af:c6:
8b:fe:6b:55:86:b8:3b:da:f1:eb:19:35:ac:05:9d:14:d7:c9:
c3:09:78:48:ca:2c:bb:36:e0:56:8f:88:e2:9b:f1:99:9f:75:
0c:d6:bf:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveZ4ioDc0DTZRS/5e82tbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZTgyYmExNzE1ZDZhZWFlNWIwMTAyNzI1ZmZlMGM4MzQ3
MzVkN2QwHhcNMjMwMTAxMjIzNTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmNjYTYyOTQwYjM5M2RlMzIyMjE5NTlkMjYyYTY0OWJmYTc1NDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIhIxOCKg1Hm61lPikshpvIHRfHp
tFdI9RZ4OJwdJALQmEmXlDtdmaKlI7LTCHXuBXwXYxh8CK45uyGaDkCNw5AcMfSr
Fhje2WACTcZs+bCqKO/QTm//c/7BrSmhlMXljzpbYe39/2y383H1XLcWb1YtmoW7
rRV7FOj/hWkl1w1hfYrtmC9bnJ78n9XQDefvZDXtvDVj7CnMHoM+KrgQ+kyA76mv
wVPvsMH6T49lI3a8kQFWQugBJ0FpzdNP+ZpazF9jmS4oIfvX3wIxDhIXn7E98ICi
HtIHz2JrtISkP/vYM7wJTGE3mf8IC3ew0BPQxh8aDy3wkh2OZGv3N029FwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKLMpilAs5PeMiIZWdJipkm/p1QwMB8GA1UdIwQY
MBaAFLToK6FxXWrq5bAQJyX/4Mg0c119MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE9ncm9YRmRhdXJsc0JBbkpmX2d5RFJ6WFgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy85MTUxYzAtMzMyNi00ODAxLTkzNjMt
YzdkMTk5MzBkNjZkLzEvb3N5bUtVQ3prOTR5SWhsWjBtS21TYi1uVkRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy85MTUxYzAtMzMyNi00ODAxLTkzNjMtYzdkMTk5MzBkNjZk
LzEvdE9ncm9YRmRhdXJsc0JBbkpmX2d5RFJ6WFgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJSBIMA0G
CSqGSIb3DQEBCwUAA4IBAQCZBBQZFFqMRdEFKc3lwZC0B9iQQsA/uZUXucR+j3CJ
djOCoNpqPd58aBkE26Ty/2ZPFciD80KyE9rSCUG1UbGh9jvDZE548NnU6bo1Lyh8
WaBj880Tcz0Qhyi9A9oJY9ogn95tYCYPK8Vi8FTtePQLWsl45fyrLjmGGC5SdzXD
gPsm/O+UZbcTHG2G36kcAg8JWPKreX71HVkj+an4Qc/s/e0ow9PVzUe8Roeu4ivm
+Fjv/ye7uCvUdZjjXuzvi8lDKPLTXc5UgbkdnUiFD48leFIfwfFmr8aL/mtVhrg7
2vHrGTWsBZ0U18nDCXhIyiy7NuBWj4jim/GZn3UM1r+l
-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:07 2024 by rpki-client on console-fra.rpki-client.org