Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/OPUBjsurLr9IbgvAkKxSd5FmkB8.roa
File: OPUBjsurLr9IbgvAkKxSd5FmkB8.roa (raw, json)
Hash identifier: //8GzqxwM+dtGDdyf3hMZ9KHkKLACHNektfQ/5UZa7I=
Subject key identifier: 38:F5:01:8E:CB:AB:2E:BF:48:6E:0B:C0:90:AC:52:77:91:66:90:1F
Certificate issuer: /CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Certificate serial: 01856FF036F6EEC2DF1ABACBCB3E13274B07
Authority key identifier: 32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/OPUBjsurLr9IbgvAkKxSd5FmkB8.roa
Signing time: Mon 02 Jan 2023 00:44:51 +0000
ROA not before: Mon 02 Jan 2023 00:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212426
IP address blocks: 193.219.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 12:58:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:36:f6:ee:c2:df:1a:ba:cb:cb:3e:13:27:4b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3263787fd0f94b37813eef16bc8137423ee3fef3
Validity
Not Before: Jan 2 00:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38f5018ecbab2ebf486e0bc090ac52779166901f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:90:f5:ed:22:9b:87:1e:c2:07:f8:80:c4:fb:
ff:af:55:81:15:82:a2:ca:99:b6:8f:c3:fa:4e:ba:
c0:66:8f:12:3d:2e:21:58:26:b1:14:16:67:17:59:
2e:ca:11:51:f0:aa:53:e5:51:92:b8:1d:86:b5:11:
fe:54:70:b3:48:f8:30:7f:f7:fa:e5:b7:f7:f1:e6:
d3:02:b0:76:f7:c0:fc:68:89:52:ea:2f:b2:84:12:
ae:58:2a:60:76:d9:0c:8c:7a:dc:1f:2c:7b:be:28:
34:a7:a6:52:64:61:1d:c5:f3:11:ce:28:ad:4d:dd:
89:12:0b:6b:88:5c:c8:97:4e:36:f7:78:4e:1c:4f:
ef:6c:87:0f:3f:d5:61:73:d6:de:1b:41:9b:01:ab:
3b:c9:cf:f4:3e:f1:0f:64:36:e1:b4:f0:fe:5a:e9:
f1:23:98:54:dd:2a:7f:f2:66:92:34:7e:fd:97:92:
69:02:9e:3c:29:dc:fc:25:d9:22:48:f4:f8:e5:c6:
10:9f:3e:55:fb:de:f7:e2:27:0d:ba:5e:39:77:aa:
61:7e:ea:15:41:52:71:10:80:d5:f4:fc:f0:e6:b9:
1b:55:a3:f9:2a:df:b8:27:f1:79:ee:c7:15:04:63:
ae:4f:c1:4c:c8:31:a0:d6:31:12:26:2d:73:1e:32:
f9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F5:01:8E:CB:AB:2E:BF:48:6E:0B:C0:90:AC:52:77:91:66:90:1F
X509v3 Authority Key Identifier:
keyid:32:63:78:7F:D0:F9:4B:37:81:3E:EF:16:BC:81:37:42:3E:E3:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/OPUBjsurLr9IbgvAkKxSd5FmkB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7703ef-2422-437c-b93d-595e0bf5c613/1/MmN4f9D5SzeBPu8WvIE3Qj7j_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.99.0/24
Signature Algorithm: sha256WithRSAEncryption
43:87:15:d0:54:92:cd:bb:13:ef:fd:27:eb:81:65:bc:2d:68:
7f:76:c2:61:a1:40:9b:8c:4b:71:2e:c1:1e:f8:34:78:4c:00:
52:19:aa:34:11:c9:a6:6a:80:b0:51:3a:af:ec:46:ea:b0:36:
ef:8a:25:e3:dd:15:45:b4:01:47:03:45:69:d2:b4:d7:ce:f8:
b0:54:45:40:9d:75:50:78:41:f3:ef:b6:19:9c:74:e8:73:1b:
d9:eb:e9:f5:7a:47:1d:72:94:48:4b:9b:ca:da:d2:71:b9:44:
00:2b:ab:0d:cf:20:c5:fd:15:3f:26:9d:fe:70:3b:f1:de:ca:
41:c7:e5:3f:fc:65:f5:f8:0f:d0:c3:37:ed:dd:7c:47:62:be:
59:d3:8d:07:82:fb:f2:54:b6:9f:15:67:02:05:b8:02:9d:b1:
b2:9c:6f:d0:7a:be:22:30:91:b1:0e:b8:9d:33:bc:b6:5b:38:
31:ba:03:61:c9:d5:ac:74:e1:31:ab:cb:82:e5:06:ae:b9:d8:
ad:35:c5:9d:99:49:53:53:a3:99:90:25:bd:e5:b5:2a:dd:1e:
17:b9:f3:4e:52:99:00:4a:55:89:b0:44:15:e0:fd:ff:77:d9:
a4:b2:3d:bb:9c:18:9f:0d:39:3e:15:cd:28:5c:a0:af:44:85:
83:2f:c8:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv8Db27sLfGrrLyz4TJ0sHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNjM3ODdmZDBmOTRiMzc4MTNlZWYxNmJjODEzNzQyM2Vl
M2ZlZjMwHhcNMjMwMTAyMDA0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOGY1MDE4ZWNiYWIyZWJmNDg2ZTBiYzA5MGFjNTI3NzkxNjY5MDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJD17SKbhx7CB/iAxPv/r1WBFYKi
ypm2j8P6TrrAZo8SPS4hWCaxFBZnF1kuyhFR8KpT5VGSuB2GtRH+VHCzSPgwf/f6
5bf38ebTArB298D8aIlS6i+yhBKuWCpgdtkMjHrcHyx7vig0p6ZSZGEdxfMRziit
Td2JEgtriFzIl04293hOHE/vbIcPP9Vhc9beG0GbAas7yc/0PvEPZDbhtPD+Wunx
I5hU3Sp/8maSNH79l5JpAp48Kdz8JdkiSPT45cYQnz5V+9734icNul45d6phfuoV
QVJxEIDV9Pzw5rkbVaP5Kt+4J/F57scVBGOuT8FMyDGg1jESJi1zHjL5iQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDj1AY7Lqy6/SG4LwJCsUneRZpAfMB8GA1UdIwQY
MBaAFDJjeH/Q+Us3gT7vFryBN0I+4/7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2Qt
NTk1ZTBiZjVjNjEzLzEvT1BVQmpzdXJMcjlJYmd2QWtLeFNkNUZta0I4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS83NzAzZWYtMjQyMi00MzdjLWI5M2QtNTk1ZTBiZjVjNjEz
LzEvTW1ONGY5RDVTemVCUHU4V3ZJRTNRajdqX3ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwdtjMA0G
CSqGSIb3DQEBCwUAA4IBAQBDhxXQVJLNuxPv/SfrgWW8LWh/dsJhoUCbjEtxLsEe
+DR4TABSGao0EcmmaoCwUTqv7EbqsDbviiXj3RVFtAFHA0Vp0rTXzviwVEVAnXVQ
eEHz77YZnHTocxvZ6+n1ekcdcpRIS5vK2tJxuUQAK6sNzyDF/RU/Jp3+cDvx3spB
x+U//GX1+A/Qwzft3XxHYr5Z040HgvvyVLafFWcCBbgCnbGynG/Qer4iMJGxDrid
M7y2WzgxugNhydWsdOExq8uC5QauuditNcWdmUlTU6OZkCW95bUq3R4XufNOUpkA
SlWJsEQV4P3/d9mksj27nBifDTk+Fc0oXKCvRIWDL8if
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:08 2024 by rpki-client on console-ams.rpki-client.org