Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/OUGNqOmmn5puvN_5pjW97hx9C5w.roa
File: OUGNqOmmn5puvN_5pjW97hx9C5w.roa (raw, json)
Hash identifier: JfWfG0vpOpDTFFEwjOpHtE4AH/3rHiRRQW6HVAJOOyo=
Subject key identifier: 39:41:8D:A8:E9:A6:9F:9A:6E:BC:DF:F9:A6:35:BD:EE:1C:7D:0B:9C
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0187E22008DFE9C433048B4DEB29D1D4287D
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/OUGNqOmmn5puvN_5pjW97hx9C5w.roa
Signing time: Wed 03 May 2023 14:59:22 +0000
ROA not before: Wed 03 May 2023 14:59:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.155.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Jun 2023 21:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:20:08:df:e9:c4:33:04:8b:4d:eb:29:d1:d4:28:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: May 3 14:59:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39418da8e9a69f9a6ebcdff9a635bdee1c7d0b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:dd:a5:d8:ee:03:ab:19:45:d4:98:87:dc:81:
c8:e0:68:9f:c4:d9:27:5e:4f:60:a1:ec:df:bd:63:
71:62:61:c6:07:8b:c1:d1:21:93:18:ee:24:af:07:
8f:0b:61:40:c9:d5:68:f1:69:fc:98:83:c7:60:16:
11:a5:3a:0c:21:be:43:ed:7c:8d:c3:93:1a:f2:4e:
2e:44:4d:18:81:e8:dc:9b:14:5c:61:02:f5:69:bf:
b4:0a:83:77:eb:1a:ed:2f:e5:8e:fb:4e:db:c4:49:
13:0b:24:9f:6b:68:fd:6e:eb:7c:38:e4:2a:ee:a7:
69:40:fa:63:51:75:cb:88:2d:c1:f5:49:9b:4f:22:
b2:a7:8c:90:a2:1f:c8:45:f5:8e:40:ea:68:e7:e9:
16:b5:9e:9a:3f:85:cd:09:1b:88:ca:43:87:4d:87:
9c:04:85:7b:a8:80:b4:11:82:4e:68:a4:a4:91:ab:
7a:57:c7:f5:52:22:ef:3a:0b:a1:ef:5b:98:ac:95:
09:34:dd:09:42:31:6e:69:87:bb:f9:65:4b:16:31:
49:05:f8:45:e5:6d:98:a7:c9:f7:07:3b:2e:fc:0c:
cb:cc:49:5c:27:e1:1c:e5:20:ac:82:d8:8a:93:6e:
d5:df:9b:ca:1d:e8:0e:5e:9a:72:ef:e5:0b:e6:b8:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:41:8D:A8:E9:A6:9F:9A:6E:BC:DF:F9:A6:35:BD:EE:1C:7D:0B:9C
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/OUGNqOmmn5puvN_5pjW97hx9C5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.232.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:50:41:7d:e5:39:19:80:eb:a9:1c:bd:4e:10:19:bb:fd:1c:
46:4e:5f:16:1b:d4:6f:d6:d2:21:aa:92:52:69:99:db:17:37:
48:bd:f1:bb:db:d8:8e:00:35:a6:6c:2d:c2:a7:f9:4d:1e:74:
cb:77:51:0d:1a:a8:ec:88:72:27:a7:c6:37:3d:96:a5:9f:1d:
a1:02:7f:98:89:a0:a9:1b:a8:91:db:26:98:05:82:e1:5f:ff:
76:8c:ce:41:a9:3a:0c:6a:66:fd:aa:f9:12:26:bb:cb:b4:ee:
eb:41:e4:aa:61:0c:a6:39:4d:ea:d8:9e:4a:97:a0:cb:00:c9:
0c:ec:02:f4:d3:e0:d2:76:5a:3e:9f:96:9f:be:62:8f:75:90:
ba:0d:f7:11:c0:53:9c:2a:1f:3a:3f:9b:f9:d6:65:de:df:c1:
f5:17:96:b8:b0:c5:c9:da:26:8a:1b:f3:37:13:33:0e:36:83:
28:6f:fb:0c:1c:7f:11:79:30:4b:02:fd:c5:e6:5b:37:c6:8f:
74:a3:74:b6:ec:37:1d:fd:da:f4:8b:90:98:da:fe:c9:46:8c:
33:46:05:ea:48:f5:22:f7:4a:7c:a3:65:c8:a6:61:60:43:c9:
65:76:ad:71:8b:a9:00:4c:88:4b:3b:e9:33:7d:ef:40:9f:51:
29:53:ae:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfiIAjf6cQzBItN6ynR1Ch9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MTdjOWRlOTI3ZmE3NWJlYWVmNzg4NWYwZDg4ZjZmNGQy
YTBlZDYwHhcNMjMwNTAzMTQ1OTIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTQxOGRhOGU5YTY5ZjlhNmViY2RmZjlhNjM1YmRlZTFjN2QwYjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp92l2O4DqxlF1JiH3IHI4GifxNkn
Xk9goezfvWNxYmHGB4vB0SGTGO4krwePC2FAydVo8Wn8mIPHYBYRpToMIb5D7XyN
w5Ma8k4uRE0YgejcmxRcYQL1ab+0CoN36xrtL+WO+07bxEkTCySfa2j9but8OOQq
7qdpQPpjUXXLiC3B9UmbTyKyp4yQoh/IRfWOQOpo5+kWtZ6aP4XNCRuIykOHTYec
BIV7qIC0EYJOaKSkkat6V8f1UiLvOguh71uYrJUJNN0JQjFuaYe7+WVLFjFJBfhF
5W2Yp8n3Bzsu/AzLzElcJ+Ec5SCsgtiKk27V35vKHegOXppy7+UL5rjLlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDlBjajppp+abrzf+aY1ve4cfQucMB8GA1UdIwQY
MBaAFDUXyd6Sf6db6u94hfDYj29NKg7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTIt
ZmQzYjMwMDJjMGJiLzEvT1VHTnFPbW1uNXB1dk5fNXBqVzk3aHg5QzV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85NTRhZGUtODRiNy00NDZkLWE2ZTItZmQzYjMwMDJjMGJi
LzEvTlJmSjNwSl9wMXZxNzNpRjhOaVBiMDBxRHRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZvoMA0G
CSqGSIb3DQEBCwUAA4IBAQDKUEF95TkZgOupHL1OEBm7/RxGTl8WG9Rv1tIhqpJS
aZnbFzdIvfG729iOADWmbC3Cp/lNHnTLd1ENGqjsiHInp8Y3PZalnx2hAn+YiaCp
G6iR2yaYBYLhX/92jM5BqToMamb9qvkSJrvLtO7rQeSqYQymOU3q2J5Kl6DLAMkM
7AL00+DSdlo+n5afvmKPdZC6DfcRwFOcKh86P5v51mXe38H1F5a4sMXJ2iaKG/M3
EzMONoMob/sMHH8ReTBLAv3F5ls3xo90o3S27Dcd/dr0i5CY2v7JRowzRgXqSPUi
90p8o2XIpmFgQ8lldq1xi6kATIhLO+kzfe9An1EpU67T
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:51 2024 by rpki-client on console-fra.rpki-client.org