Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/__osa6lVLUOy6xUOGa2DHMZ3bUw.roa
File: __osa6lVLUOy6xUOGa2DHMZ3bUw.roa (raw, json)
Hash identifier: vMD5RJ6YUzp0AMjgziqY0l1aDXmKRQ+akpO+Wwsnb4E=
Subject key identifier: FF:FA:2C:6B:A9:55:2D:43:B2:EB:15:0E:19:AD:83:1C:C6:77:6D:4C
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185A69474547B1951976530FA411347D420
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/__osa6lVLUOy6xUOGa2DHMZ3bUw.roa
Signing time: Thu 12 Jan 2023 15:23:45 +0000
ROA not before: Thu 12 Jan 2023 15:23:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201624
IP address blocks: 193.238.44.0/24 maxlen: 24
176.118.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:94:74:54:7b:19:51:97:65:30:fa:41:13:47:d4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 12 15:23:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fffa2c6ba9552d43b2eb150e19ad831cc6776d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2a:32:c4:03:fa:16:db:a4:a8:79:15:2c:8f:
d0:55:17:68:b8:c8:e1:3d:54:0f:c4:10:f2:47:1b:
12:23:c2:83:e3:da:f0:0c:bf:84:74:b7:8a:c0:b8:
21:04:58:88:70:80:36:f8:b9:05:65:c3:5b:5e:3c:
8a:c9:76:1c:d3:6b:8b:83:21:48:ce:ea:58:34:c7:
80:4f:a6:97:01:fa:ae:bc:6c:6d:e7:55:fa:7f:7b:
2b:9a:d6:9a:03:1c:30:af:ed:c4:3e:1b:c4:a6:8a:
b9:3a:5d:a8:25:47:9e:8d:87:54:81:06:57:ff:76:
b6:8b:ea:e5:4d:75:65:4b:df:74:01:40:ff:d6:ae:
60:8e:3b:03:ff:0b:4d:c6:dd:78:38:eb:ef:1d:4f:
21:d3:5d:a5:69:17:5c:b4:ba:8b:9f:33:f0:5f:f1:
74:cf:03:2c:4d:87:69:92:c3:96:01:17:bb:0d:8b:
c0:74:b8:0e:7e:8d:8b:58:df:af:ae:6a:d7:82:31:
04:61:4f:25:7a:56:cb:a2:d1:62:e5:e1:89:2a:5c:
27:60:dd:c0:0e:1b:e3:03:ba:68:e8:9c:af:64:96:
b7:16:46:13:26:41:8c:f7:af:b4:fe:cb:e2:db:0f:
e7:82:15:2c:77:e1:cb:be:bc:34:85:fb:1e:a2:6b:
8a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FA:2C:6B:A9:55:2D:43:B2:EB:15:0E:19:AD:83:1C:C6:77:6D:4C
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/__osa6lVLUOy6xUOGa2DHMZ3bUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.199.0/24
193.238.44.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:66:eb:10:d3:51:00:f7:03:3c:e9:fd:b9:77:69:ec:4e:a2:
c8:4c:ed:25:cf:d7:75:bd:db:9c:1a:2f:c9:15:1f:b9:12:7f:
76:c5:18:bf:f4:94:8a:fc:67:33:fb:a7:c4:a3:bf:ac:f5:02:
11:f8:24:88:bb:07:be:b8:37:94:f3:3b:c8:f2:ed:05:07:76:
a0:ee:70:38:db:b6:f7:46:94:c2:04:40:df:5e:10:7b:f4:00:
f9:5e:fd:af:cb:2c:6d:0c:38:ff:4a:38:c3:3d:25:4b:f3:53:
30:3f:85:bb:e9:4c:0f:37:db:c1:2c:20:18:dd:33:60:8f:51:
83:61:8a:4e:0c:64:a5:fc:bb:f4:4f:c0:5b:0b:bc:73:59:a6:
3d:db:1b:a4:b1:98:76:7b:ac:d8:c9:92:fe:73:9a:a8:60:45:
a2:48:e0:fa:e5:50:f4:6c:2b:54:0a:18:16:ba:a2:43:00:e7:
0c:82:e0:1b:92:4b:4f:92:0d:da:5d:4d:7d:d3:75:4f:19:4d:
4f:d9:d1:56:1c:6a:ac:2b:a5:12:42:1a:a6:0e:39:13:fd:e1:
14:bb:89:e0:91:ed:1d:b1:3a:d6:b1:0c:13:65:1d:e2:8b:cf:
ac:9f:8b:97:79:2c:4a:65:49:70:a4:43:ba:36:46:1c:0e:25:
13:d6:14:60
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYWmlHRUexlRl2Uw+kETR9QgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwMTEyMTUyMzQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmZhMmM2YmE5NTUyZDQzYjJlYjE1MGUxOWFkODMxY2M2Nzc2ZDRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyoyxAP6FtukqHkVLI/QVRdouMjh
PVQPxBDyRxsSI8KD49rwDL+EdLeKwLghBFiIcIA2+LkFZcNbXjyKyXYc02uLgyFI
zupYNMeAT6aXAfquvGxt51X6f3srmtaaAxwwr+3EPhvEpoq5Ol2oJUeejYdUgQZX
/3a2i+rlTXVlS990AUD/1q5gjjsD/wtNxt14OOvvHU8h012laRdctLqLnzPwX/F0
zwMsTYdpksOWARe7DYvAdLgOfo2LWN+vrmrXgjEEYU8lelbLotFi5eGJKlwnYN3A
DhvjA7po6JyvZJa3FkYTJkGM96+0/svi2w/nghUsd+HLvrw0hfseomuK7QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFP/6LGupVS1DsusVDhmtgxzGd21MMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvX19vc2E2bFZMVU95NnhVT0dhMkRITVozYlV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsHbHAwQA
we4sMA0GCSqGSIb3DQEBCwUAA4IBAQC2ZusQ01EA9wM86f25d2nsTqLITO0lz9d1
vducGi/JFR+5En92xRi/9JSK/Gcz+6fEo7+s9QIR+CSIuwe+uDeU8zvI8u0FB3ag
7nA427b3RpTCBEDfXhB79AD5Xv2vyyxtDDj/SjjDPSVL81MwP4W76UwPN9vBLCAY
3TNgj1GDYYpODGSl/Lv0T8BbC7xzWaY92xuksZh2e6zYyZL+c5qoYEWiSOD65VD0
bCtUChgWuqJDAOcMguAbkktPkg3aXU1903VPGU1P2dFWHGqsK6USQhqmDjkT/eEU
u4ngke0dsTrWsQwTZR3ii8+sn4uXeSxKZUlwpEO6NkYcDiUT1hRg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org