Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/orKTovB1Lt_F8hhlczy7yjEY6Yg.roa
File: orKTovB1Lt_F8hhlczy7yjEY6Yg.roa (raw, json)
Hash identifier: 504Wehd9SJT1pqofBazjKRYN2hMRhueqm89c+92/Gog=
Subject key identifier: A2:B2:93:A2:F0:75:2E:DF:C5:F2:18:65:73:3C:BB:CA:31:18:E9:88
Certificate issuer: /CN=ad102f1af17d00fd80a3d9fe9ffe81d04ce17447
Certificate serial: 01856EA6BAD620A539A63499CDFE95D0A513
Authority key identifier: AD:10:2F:1A:F1:7D:00:FD:80:A3:D9:FE:9F:FE:81:D0:4C:E1:74:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/orKTovB1Lt_F8hhlczy7yjEY6Yg.roa
Signing time: Sun 01 Jan 2023 18:44:58 +0000
ROA not before: Sun 01 Jan 2023 18:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202022
IP address blocks: 185.56.32.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ba:d6:20:a5:39:a6:34:99:cd:fe:95:d0:a5:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad102f1af17d00fd80a3d9fe9ffe81d04ce17447
Validity
Not Before: Jan 1 18:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2b293a2f0752edfc5f21865733cbbca3118e988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:29:14:64:30:67:3b:1a:24:8a:e0:5a:50:
cc:8f:59:e5:5a:96:03:9e:b9:c8:12:8c:54:65:35:
fa:be:1c:3e:75:dd:7a:8a:66:ac:18:e2:7a:ae:e8:
34:94:f7:86:60:bb:79:7e:c2:ad:ba:1f:70:c9:19:
d4:52:b0:ea:39:41:80:0f:bf:b8:23:f4:28:a6:45:
6b:3d:4e:78:69:d7:ad:6c:cd:c8:ac:4f:f8:fe:11:
49:7e:98:a6:9a:84:d3:be:b8:59:80:39:4b:ce:7f:
27:77:24:85:cf:c6:89:06:23:7f:0c:13:04:d6:ef:
cf:25:6d:69:dd:24:56:ec:99:42:96:ce:bb:bc:c1:
5d:45:9d:82:b4:7a:b5:5f:db:46:22:bd:11:66:d5:
77:24:9e:9b:e1:e2:93:23:0c:0d:9d:92:97:2b:ea:
27:55:52:05:b5:e1:da:56:86:16:1f:ec:d3:bb:ea:
2a:e6:05:f6:16:f0:cd:b3:20:51:07:a8:e5:6e:c0:
5f:a6:27:7d:e2:8a:5b:b7:90:15:68:a2:ed:e3:6c:
aa:0a:9b:71:f3:eb:df:c4:43:93:f5:5d:86:24:b2:
29:d2:97:a0:94:8a:90:fb:a4:6e:f0:be:25:d4:3e:
7f:ec:b3:29:bf:42:78:33:af:0a:56:ee:ff:4b:69:
5c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B2:93:A2:F0:75:2E:DF:C5:F2:18:65:73:3C:BB:CA:31:18:E9:88
X509v3 Authority Key Identifier:
keyid:AD:10:2F:1A:F1:7D:00:FD:80:A3:D9:FE:9F:FE:81:D0:4C:E1:74:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/orKTovB1Lt_F8hhlczy7yjEY6Yg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/e1a78b-dd36-4ee9-a260-3b1aad9fdd57/1/rRAvGvF9AP2Ao9n-n_6B0EzhdEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.32.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:74:f1:cd:b4:9d:ea:83:52:2b:f1:70:04:e7:96:b2:cf:e5:
cd:f1:9c:52:23:7b:72:a1:b7:0d:1e:61:a9:d2:f8:72:f7:71:
eb:d9:ef:bd:81:18:18:b8:f8:b8:d8:18:dd:fc:35:ae:df:7c:
2a:f1:87:36:1a:89:e5:5a:56:fd:24:8b:97:81:b3:01:e5:1d:
3e:31:b8:1f:8c:c2:94:8b:f9:92:ad:11:71:d4:1e:df:33:bd:
e1:77:6f:f1:7b:1b:4f:d7:35:40:75:70:07:19:1b:ac:22:7d:
8e:da:5e:2b:92:fc:b3:57:57:6c:70:c4:1f:d9:bf:0d:3f:94:
41:33:c6:1f:2c:45:9b:b7:d7:29:f8:a8:f5:a5:3a:c5:9f:1c:
ea:e7:23:36:29:d1:64:13:a3:cc:af:ac:09:9b:3d:13:2e:03:
a6:72:cf:3d:8e:10:ca:15:90:02:b3:65:e8:e2:cb:13:75:b0:
61:7c:52:e7:48:e5:88:85:b6:78:d5:c8:c3:56:b8:4c:6b:33:
fb:66:1e:8e:8b:8e:ec:5b:88:f3:f3:4c:fb:e2:a7:58:52:3a:
b6:45:7c:e1:b9:1d:ff:99:21:0d:c0:62:08:64:19:99:da:95:
7c:e5:0b:ae:c0:ab:e5:db:55:31:62:65:da:48:50:4a:b8:60:
fb:7f:f3:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuprrWIKU5pjSZzf6V0KUTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMTAyZjFhZjE3ZDAwZmQ4MGEzZDlmZTlmZmU4MWQwNGNl
MTc0NDcwHhcNMjMwMTAxMTg0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmIyOTNhMmYwNzUyZWRmYzVmMjE4NjU3MzNjYmJjYTMxMThlOTg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppUpFGQwZzsaJIrgWlDMj1nlWpYD
nrnIEoxUZTX6vhw+dd16imasGOJ6rug0lPeGYLt5fsKtuh9wyRnUUrDqOUGAD7+4
I/QopkVrPU54adetbM3IrE/4/hFJfpimmoTTvrhZgDlLzn8ndySFz8aJBiN/DBME
1u/PJW1p3SRW7JlCls67vMFdRZ2CtHq1X9tGIr0RZtV3JJ6b4eKTIwwNnZKXK+on
VVIFteHaVoYWH+zTu+oq5gX2FvDNsyBRB6jlbsBfpid94opbt5AVaKLt42yqCptx
8+vfxEOT9V2GJLIp0peglIqQ+6Ru8L4l1D5/7LMpv0J4M68KVu7/S2lcKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKKyk6LwdS7fxfIYZXM8u8oxGOmIMB8GA1UdIwQY
MBaAFK0QLxrxfQD9gKPZ/p/+gdBM4XRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclJBdkd2RjlBUDJBbzluLW5fNkIwRXpoZEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9lMWE3OGItZGQzNi00ZWU5LWEyNjAt
M2IxYWFkOWZkZDU3LzEvb3JLVG92QjFMdF9GOGhobGN6eTd5akVZNllnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9lMWE3OGItZGQzNi00ZWU5LWEyNjAtM2IxYWFkOWZkZDU3
LzEvclJBdkd2RjlBUDJBbzluLW5fNkIwRXpoZEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTggMA0G
CSqGSIb3DQEBCwUAA4IBAQAedPHNtJ3qg1Ir8XAE55ayz+XN8ZxSI3tyobcNHmGp
0vhy93Hr2e+9gRgYuPi42Bjd/DWu33wq8Yc2GonlWlb9JIuXgbMB5R0+MbgfjMKU
i/mSrRFx1B7fM73hd2/xextP1zVAdXAHGRusIn2O2l4rkvyzV1dscMQf2b8NP5RB
M8YfLEWbt9cp+Kj1pTrFnxzq5yM2KdFkE6PMr6wJmz0TLgOmcs89jhDKFZACs2Xo
4ssTdbBhfFLnSOWIhbZ41cjDVrhMazP7Zh6Oi47sW4jz80z74qdYUjq2RXzhuR3/
mSENwGIIZBmZ2pV85QuuwKvl21UxYmXaSFBKuGD7f/My
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org