Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/oWa7sAyiMVzXJn5LhGXSWq6bzR4.roa
File: oWa7sAyiMVzXJn5LhGXSWq6bzR4.roa (raw, json)
Hash identifier: Bij00/tkX0mfteThnHGdOukTY1dd61+5uR0M6cedAuM=
Subject key identifier: A1:66:BB:B0:0C:A2:31:5C:D7:26:7E:4B:84:65:D2:5A:AE:9B:CD:1E
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 018987C7CAB2DB8E8D9CF84029D24153339F
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/oWa7sAyiMVzXJn5LhGXSWq6bzR4.roa
Signing time: Mon 24 Jul 2023 12:02:44 +0000
ROA not before: Mon 24 Jul 2023 12:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26931
IP address blocks: 31.186.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:87:c7:ca:b2:db:8e:8d:9c:f8:40:29:d2:41:53:33:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jul 24 12:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a166bbb00ca2315cd7267e4b8465d25aae9bcd1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a4:25:c3:ab:b5:fc:b9:5d:01:b1:d2:a1:5a:
08:31:bb:79:59:24:32:48:e8:3c:4f:1e:5a:1d:fb:
a0:c0:8c:7d:5b:88:6e:c1:4e:b2:2a:ae:b6:b0:54:
d9:51:a7:2d:a0:9b:82:2f:03:5b:ae:15:a0:ed:b9:
bb:a9:c6:e7:2d:2b:a3:ba:a7:b4:7c:34:25:07:ba:
35:3c:89:a5:90:e4:0a:2c:76:19:2d:8c:91:73:8a:
3d:73:8f:5e:9a:ca:40:27:c3:16:be:43:8d:59:33:
be:93:b0:af:7b:bf:00:cd:81:ab:db:0c:ba:4e:da:
db:49:e2:b7:75:3f:07:8c:8c:fb:d9:65:17:18:0f:
cc:f6:d8:92:c5:d8:5c:c4:bd:e0:a1:68:e1:fd:2b:
cd:92:37:a7:9d:a0:5e:06:e1:c3:3c:02:8e:9e:bd:
36:92:f4:13:9b:4e:96:e2:71:c2:31:89:75:7a:2a:
17:81:7d:3d:c3:52:93:c5:ca:06:a9:cb:84:bd:8a:
2a:d4:17:49:38:b4:d3:e8:ea:0f:fe:a5:32:92:4e:
17:59:b9:61:d3:1f:7a:65:48:6e:6e:58:f5:8b:b0:
45:8b:fc:b8:13:0c:48:4c:0c:b0:a1:c3:37:ac:18:
df:13:5c:3b:66:32:7a:2a:d2:37:8e:85:13:cc:9e:
85:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:66:BB:B0:0C:A2:31:5C:D7:26:7E:4B:84:65:D2:5A:AE:9B:CD:1E
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/oWa7sAyiMVzXJn5LhGXSWq6bzR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.235.0/24
Signature Algorithm: sha256WithRSAEncryption
15:9e:c8:ee:66:31:87:c8:7b:b4:3f:94:05:56:6f:eb:0e:54:
d5:25:27:5c:fb:19:73:92:ed:c0:fd:cf:75:7f:52:2f:ab:ab:
1e:3e:76:dc:51:8e:53:80:18:54:d2:48:dd:4e:fa:ef:d1:04:
60:ed:36:9f:38:38:3b:1b:da:92:06:54:9a:d2:55:b2:92:e2:
55:0b:bf:db:02:9c:27:9d:dc:2c:30:d7:3a:31:18:9f:f3:32:
26:52:68:90:d8:c1:33:ff:25:4f:57:38:60:3e:f6:63:44:52:
9c:fc:68:48:c4:3f:df:97:40:9c:43:10:53:00:b4:cd:25:a0:
0f:9a:31:4b:b3:4f:67:a4:15:14:3d:b6:35:d6:87:59:ac:76:
bf:f2:55:45:03:ef:83:c9:bc:77:7f:f4:13:e9:4c:56:38:eb:
5f:ee:23:7a:b4:46:9d:bb:55:c2:e5:07:6b:a7:4a:e4:be:37:
97:f9:8c:31:ab:6c:3c:dd:58:e3:60:b8:d7:06:af:3d:23:05:
97:7b:75:c9:25:c6:c0:62:b3:cc:60:45:8b:a3:2c:8b:5e:16:
7e:97:4d:76:c9:ac:24:03:44:1c:f6:3e:65:23:ed:d1:fe:cd:
ef:47:21:28:87:8b:d2:2c:6b:e4:ec:c8:4b:88:5b:60:17:d1:
6e:9f:24:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmHx8qy246NnPhAKdJBUzOfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZGFlZWE5MTE3YTFkNWNjYzMyMDIyMjk1NWEwOWZhYTA3
OThmZDkwHhcNMjMwNzI0MTIwMjQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTY2YmJiMDBjYTIzMTVjZDcyNjdlNGI4NDY1ZDI1YWFlOWJjZDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKQlw6u1/LldAbHSoVoIMbt5WSQy
SOg8Tx5aHfugwIx9W4huwU6yKq62sFTZUactoJuCLwNbrhWg7bm7qcbnLSujuqe0
fDQlB7o1PImlkOQKLHYZLYyRc4o9c49emspAJ8MWvkONWTO+k7Cve78AzYGr2wy6
TtrbSeK3dT8HjIz72WUXGA/M9tiSxdhcxL3goWjh/SvNkjennaBeBuHDPAKOnr02
kvQTm06W4nHCMYl1eioXgX09w1KTxcoGqcuEvYoq1BdJOLTT6OoP/qUykk4XWblh
0x96ZUhublj1i7BFi/y4EwxITAywocM3rBjfE1w7ZjJ6KtI3joUTzJ6FqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKFmu7AMojFc1yZ+S4Rl0lqum80eMB8GA1UdIwQY
MBaAFK7a7qkReh1czDICIpVaCfqgeY/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEt
OTk4NjhjNTEzMjlhLzEvb1dhN3NBeWlNVnpYSm41TGhHWFNXcTZielI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEtOTk4NjhjNTEzMjlh
LzEvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH7rrMA0G
CSqGSIb3DQEBCwUAA4IBAQAVnsjuZjGHyHu0P5QFVm/rDlTVJSdc+xlzku3A/c91
f1Ivq6sePnbcUY5TgBhU0kjdTvrv0QRg7TafODg7G9qSBlSa0lWykuJVC7/bApwn
ndwsMNc6MRif8zImUmiQ2MEz/yVPVzhgPvZjRFKc/GhIxD/fl0CcQxBTALTNJaAP
mjFLs09npBUUPbY11odZrHa/8lVFA++Dybx3f/QT6UxWOOtf7iN6tEadu1XC5Qdr
p0rkvjeX+Ywxq2w83VjjYLjXBq89IwWXe3XJJcbAYrPMYEWLoyyLXhZ+l012yawk
A0Qc9j5lI+3R/s3vRyEoh4vSLGvk7MhLiFtgF9FunyS9
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:02 2024 by rpki-client on console-ams.rpki-client.org