Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0OSBOn0RJPSoQ-2OxlXck4Try7c.roa
File: 0OSBOn0RJPSoQ-2OxlXck4Try7c.roa (raw, json)
Hash identifier: go+Zh6tmFn5b6uon6CW9aQaPtU4u2xgheb9F1xdzhFk=
Subject key identifier: D0:E4:81:3A:7D:11:24:F4:A8:43:ED:8E:C6:55:DC:93:84:EB:CB:B7
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 01914E15885614B7E7DE4ED16D1DAD4931CB
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0OSBOn0RJPSoQ-2OxlXck4Try7c.roa
Signing time: Tue 13 Aug 2024 23:31:59 +0000
ROA not before: Tue 13 Aug 2024 23:31:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 14.102.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 15:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4e:15:88:56:14:b7:e7:de:4e:d1:6d:1d:ad:49:31:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Aug 13 23:31:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0e4813a7d1124f4a843ed8ec655dc9384ebcbb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0d:b1:c2:41:7e:a3:fd:7b:72:10:a9:af:c7:
8b:b9:78:4d:2c:35:de:c1:e8:1d:e7:c3:9e:2a:4a:
6a:db:a9:ba:fd:64:4d:d4:6c:ab:25:e7:31:4a:42:
6b:1e:90:70:48:02:96:4c:e5:2a:1d:32:62:d8:a0:
d9:66:bd:30:92:c3:10:fa:69:d8:5c:c3:20:b8:55:
f1:66:ba:04:91:9a:73:58:60:9c:65:14:27:6f:58:
47:e1:cb:55:bf:bf:8b:5a:33:f8:54:f9:2d:65:48:
31:61:19:15:a7:f0:b5:ab:9a:09:14:b6:f7:98:4b:
ae:9f:de:09:63:1c:57:4e:c0:8a:98:7f:4b:b5:db:
91:03:b8:b6:5d:f2:1f:00:80:cf:a6:50:b7:59:ed:
90:fd:c2:11:3f:d6:27:c7:6a:67:12:aa:f1:43:88:
ed:e1:5e:be:c8:78:07:8b:12:b9:9a:e8:7d:84:2d:
a9:e2:ef:50:87:18:b8:0c:84:16:c6:24:90:98:d7:
d0:0e:33:f5:28:f5:6a:6b:a4:30:9a:d9:63:f4:bc:
92:c3:2e:7e:d8:ef:bd:af:49:e7:66:b1:72:e9:a4:
47:ae:9a:94:35:e0:93:2a:a9:8f:fc:5b:50:cc:d4:
b3:86:07:45:dd:e5:fa:38:03:3d:8d:a2:3e:6d:b8:
c8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E4:81:3A:7D:11:24:F4:A8:43:ED:8E:C6:55:DC:93:84:EB:CB:B7
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0OSBOn0RJPSoQ-2OxlXck4Try7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.231.0/24
Signature Algorithm: sha256WithRSAEncryption
58:b7:c9:1f:aa:af:4a:a7:04:a7:34:99:28:85:ed:ce:20:04:
af:5f:91:02:93:c1:c6:38:d6:22:d4:35:60:42:38:8b:62:b4:
14:92:11:1f:ca:4e:4a:28:1a:85:23:dd:c2:a4:87:bc:18:a9:
40:10:97:92:ed:30:b4:04:71:28:1a:9b:94:15:15:1f:b7:34:
82:c2:1f:54:06:a3:1b:51:d9:d9:af:95:de:97:0d:4f:84:62:
c7:c4:da:3d:96:e0:1b:34:a2:0a:ab:fe:c8:c0:57:17:7f:13:
32:5e:00:c6:0f:f4:3f:54:65:2c:f9:60:bf:04:52:08:41:46:
94:bb:44:f2:ad:e5:27:e5:5e:d2:88:cc:34:63:2a:c0:5d:04:
f5:9f:29:1a:7c:50:52:1b:2d:4d:3e:57:e9:da:2d:95:cb:4f:
11:80:e2:8f:3b:a4:6f:67:f2:87:16:36:35:b2:32:7c:8a:d6:
e8:49:f9:af:88:8e:45:bd:9f:b2:34:59:dc:9c:90:61:1b:67:
ca:e8:9f:df:0a:37:a4:3d:6d:3d:14:06:fd:2b:4e:9c:78:28:
6d:e0:c5:b7:8a:66:63:4c:a4:75:e4:1c:2e:04:d2:08:76:ce:
2a:af:98:ca:4a:2c:3f:85:a3:50:97:85:0f:dc:b7:e1:a3:b0:
7a:71:8f:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFOFYhWFLfn3k7RbR2tSTHLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz
MGNiNjMwHhcNMjQwODEzMjMzMTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGU0ODEzYTdkMTEyNGY0YTg0M2VkOGVjNjU1ZGM5Mzg0ZWJjYmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0w2xwkF+o/17chCpr8eLuXhNLDXe
wegd58OeKkpq26m6/WRN1GyrJecxSkJrHpBwSAKWTOUqHTJi2KDZZr0wksMQ+mnY
XMMguFXxZroEkZpzWGCcZRQnb1hH4ctVv7+LWjP4VPktZUgxYRkVp/C1q5oJFLb3
mEuun94JYxxXTsCKmH9LtduRA7i2XfIfAIDPplC3We2Q/cIRP9Ynx2pnEqrxQ4jt
4V6+yHgHixK5muh9hC2p4u9Qhxi4DIQWxiSQmNfQDjP1KPVqa6Qwmtlj9LySwy5+
2O+9r0nnZrFy6aRHrpqUNeCTKqmP/FtQzNSzhgdF3eX6OAM9jaI+bbjIoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNDkgTp9EST0qEPtjsZV3JOE68u3MB8GA1UdIwQY
MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt
YjRiOGRiMjBiMWZiLzEvME9TQk9uMFJKUFNvUS0yT3hsWGNrNFRyeTdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi
LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQADmbnMA0G
CSqGSIb3DQEBCwUAA4IBAQBYt8kfqq9KpwSnNJkohe3OIASvX5ECk8HGONYi1DVg
QjiLYrQUkhEfyk5KKBqFI93CpIe8GKlAEJeS7TC0BHEoGpuUFRUftzSCwh9UBqMb
UdnZr5Xelw1PhGLHxNo9luAbNKIKq/7IwFcXfxMyXgDGD/Q/VGUs+WC/BFIIQUaU
u0TyreUn5V7SiMw0YyrAXQT1nykafFBSGy1NPlfp2i2Vy08RgOKPO6RvZ/KHFjY1
sjJ8itboSfmviI5FvZ+yNFncnJBhG2fK6J/fCjekPW09FAb9K06ceCht4MW3imZj
TKR15BwuBNIIds4qr5jKSiw/haNQl4UP3Lfho7B6cY/C
-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:25 2025 by rpki-client