Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/OkaPGmki5YKXVvQugzV06xDDfyo.roa
File: OkaPGmki5YKXVvQugzV06xDDfyo.roa (raw, json)
Hash identifier: +BLns6zbkXsS6U8mwMem1PkqL/0m1dWtmTTDhIvETjQ=
Subject key identifier: 3A:46:8F:1A:69:22:E5:82:97:56:F4:2E:83:35:74:EB:10:C3:7F:2A
Certificate issuer: /CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Certificate serial: 018A655B29CC2270BE3DB15A1CCB614825E5
Authority key identifier: D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/OkaPGmki5YKXVvQugzV06xDDfyo.roa
Signing time: Tue 05 Sep 2023 12:39:47 +0000
ROA not before: Tue 05 Sep 2023 12:39:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39370
IP address blocks: 89.147.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Sep 2023 12:51:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:5b:29:cc:22:70:be:3d:b1:5a:1c:cb:61:48:25:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Validity
Not Before: Sep 5 12:39:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a468f1a6922e5829756f42e833574eb10c37f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:32:a1:8c:95:95:3c:b2:75:0d:2a:22:26:fe:
f9:7e:c9:13:8b:7d:63:ba:81:09:d8:f4:44:50:95:
74:2d:45:e2:a0:0d:8d:22:81:f8:0a:c8:a8:2b:21:
52:b4:b9:32:52:e2:9c:c5:5d:d0:ed:65:71:52:9e:
b9:6a:99:c2:e0:49:9e:8f:2e:ee:be:a7:40:de:f2:
57:bc:c0:b9:01:9b:fd:0d:e9:db:15:f7:6d:7a:2f:
48:65:1b:31:29:ee:cb:d5:06:85:1a:81:fe:75:e9:
81:bf:c9:cf:4c:a3:47:c4:1a:10:9b:d2:6a:98:40:
9c:3b:11:06:df:9b:2b:e5:e4:85:cd:85:80:b2:f6:
a8:d6:11:7f:45:ab:74:4c:06:c5:96:f7:1b:fb:46:
fb:92:82:10:62:77:2a:23:c6:72:fd:da:46:c4:4a:
91:ab:04:e6:59:f8:e4:06:b6:b0:50:aa:be:dd:52:
09:46:bb:d7:c4:c4:49:00:77:43:ba:ea:4a:c6:e8:
55:14:3f:37:65:ad:a5:d9:89:26:04:06:59:32:e0:
6e:db:8c:fc:10:3c:c3:fe:4e:f0:94:3d:99:df:90:
84:d4:01:a6:d1:9d:2c:50:98:90:84:d0:98:8e:bb:
55:47:25:dc:98:f3:47:8b:0e:9a:54:e1:58:47:05:
71:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:46:8F:1A:69:22:E5:82:97:56:F4:2E:83:35:74:EB:10:C3:7F:2A
X509v3 Authority Key Identifier:
keyid:D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/OkaPGmki5YKXVvQugzV06xDDfyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/19BnS9bwzJF1IZoyjIs5aCn2wK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.147.4.0/24
Signature Algorithm: sha256WithRSAEncryption
38:7c:8d:0d:87:f0:da:4a:1b:cf:12:43:56:3b:45:79:79:8c:
6f:c3:72:20:3b:fd:2b:fa:d3:bd:55:38:cb:0a:8f:b0:2a:95:
9d:83:be:48:29:10:49:f1:cc:8a:9f:ce:8c:28:d6:c1:f5:75:
af:1a:71:3e:b3:c1:33:ba:0a:51:55:73:b9:d7:49:0b:8d:26:
b4:ac:f7:a4:82:03:4b:ac:c8:40:31:6c:a1:83:31:8b:0c:64:
1f:2c:ff:01:bb:8f:da:c9:25:57:70:85:31:ce:20:26:c4:0a:
4c:b0:80:17:6b:04:76:34:5c:ba:ce:ab:6a:42:13:16:e4:ff:
f5:ff:97:5c:fc:0e:2a:54:10:9d:69:54:ae:c8:9b:ca:f7:93:
4c:ff:70:4f:e5:5c:4d:ae:33:90:a4:ff:0e:dd:8d:1b:18:5a:
47:53:fa:47:af:dc:e1:2d:bf:97:54:8f:25:13:91:44:20:37:
cc:d0:0c:95:9d:0e:35:2f:81:ed:3e:1e:05:1e:fa:d9:fb:a7:
bf:f7:09:db:a7:f0:c3:64:87:31:59:e9:a3:29:aa:fd:f1:6b:
aa:a1:b7:51:04:38:f9:1a:81:2a:82:1b:84:5c:9d:ab:09:8b:
a4:cd:d1:b4:d9:b8:9b:ed:7d:1f:bf:50:1f:8f:44:9d:8c:48:
25:00:8d:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYplWynMInC+PbFaHMthSCXlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3ZDA2NzRiZDZmMGNjOTE3NTIxOWEzMjhjOGIzOTY4Mjlm
NmMwYWYwHhcNMjMwOTA1MTIzOTQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTQ2OGYxYTY5MjJlNTgyOTc1NmY0MmU4MzM1NzRlYjEwYzM3ZjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjKhjJWVPLJ1DSoiJv75fskTi31j
uoEJ2PREUJV0LUXioA2NIoH4CsioKyFStLkyUuKcxV3Q7WVxUp65apnC4Emejy7u
vqdA3vJXvMC5AZv9DenbFfdtei9IZRsxKe7L1QaFGoH+demBv8nPTKNHxBoQm9Jq
mECcOxEG35sr5eSFzYWAsvao1hF/Rat0TAbFlvcb+0b7koIQYncqI8Zy/dpGxEqR
qwTmWfjkBrawUKq+3VIJRrvXxMRJAHdDuupKxuhVFD83Za2l2YkmBAZZMuBu24z8
EDzD/k7wlD2Z35CE1AGm0Z0sUJiQhNCYjrtVRyXcmPNHiw6aVOFYRwVx3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDpGjxppIuWCl1b0LoM1dOsQw38qMB8GA1UdIwQY
MBaAFNfQZ0vW8MyRdSGaMoyLOWgp9sCvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTlCblM5Ynd6SkYxSVpveWpJczVhQ24yd0s4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iMzBlNWQtOGIzYi00Mjg3LTliM2It
ODIzMmZhM2U2MjlkLzEvT2thUEdta2k1WUtYVnZRdWd6VjA2eEREZnlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9iMzBlNWQtOGIzYi00Mjg3LTliM2ItODIzMmZhM2U2Mjlk
LzEvMTlCblM5Ynd6SkYxSVpveWpJczVhQ24yd0s4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWZMEMA0G
CSqGSIb3DQEBCwUAA4IBAQA4fI0Nh/DaShvPEkNWO0V5eYxvw3IgO/0r+tO9VTjL
Co+wKpWdg75IKRBJ8cyKn86MKNbB9XWvGnE+s8EzugpRVXO510kLjSa0rPekggNL
rMhAMWyhgzGLDGQfLP8Bu4/aySVXcIUxziAmxApMsIAXawR2NFy6zqtqQhMW5P/1
/5dc/A4qVBCdaVSuyJvK95NM/3BP5VxNrjOQpP8O3Y0bGFpHU/pHr9zhLb+XVI8l
E5FEIDfM0AyVnQ41L4HtPh4FHvrZ+6e/9wnbp/DDZIcxWemjKar98WuqobdRBDj5
GoEqghuEXJ2rCYukzdG02bib7X0fv1Afj0SdjEglAI1O
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:47 2024 by rpki-client on console-ams.rpki-client.org