Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OmgtnP1b92JUoIxS5lD7jDV16PA.roa
File: OmgtnP1b92JUoIxS5lD7jDV16PA.roa (raw, json)
Hash identifier: hnq6E7Dl0Qw6GS7blf6eu0dSCImNGeLYuCgLxnzRuw8=
Subject key identifier: 3A:68:2D:9C:FD:5B:F7:62:54:A0:8C:52:E6:50:FB:8C:35:75:E8:F0
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0187BE0E4EF20542A4F2407AE37A9CDF73AA
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OmgtnP1b92JUoIxS5lD7jDV16PA.roa
Signing time: Wed 26 Apr 2023 14:53:41 +0000
ROA not before: Wed 26 Apr 2023 14:53:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28546
IP address blocks: 85.92.126.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:be:0e:4e:f2:05:42:a4:f2:40:7a:e3:7a:9c:df:73:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Apr 26 14:53:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a682d9cfd5bf76254a08c52e650fb8c3575e8f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:6e:eb:a9:b8:0f:20:82:01:e2:bf:d7:dd:f6:
95:b6:e9:f3:cf:cf:0c:35:f0:06:aa:50:fa:da:75:
14:39:b7:51:e5:ec:df:24:c6:af:17:7a:0c:01:0c:
22:a9:29:cd:d5:31:21:a5:a5:48:b8:e0:c8:ea:63:
73:e5:83:07:e3:e8:52:ab:e2:b8:26:3a:82:f1:fb:
34:dd:fc:2c:4e:b9:4c:86:0b:66:3c:fe:84:d6:f2:
20:25:eb:7a:51:06:6d:f1:1d:ce:4c:09:cf:2b:c3:
99:5b:81:be:69:80:3a:6a:21:80:56:51:e8:0f:4e:
de:d7:f9:b4:fe:69:fb:e4:9b:dc:f3:d2:6a:38:ea:
8a:a1:0a:d9:f0:45:8f:bd:fc:bd:3d:27:de:92:1c:
c0:c8:1e:d1:86:40:1b:69:17:19:ce:69:f0:45:00:
e6:12:cd:17:47:41:ac:63:c2:e4:47:2a:0d:ef:13:
d3:44:73:74:df:a6:c1:f4:83:0d:bc:ee:5e:30:1e:
e8:79:e2:6a:65:7f:60:f1:fd:ba:8d:ff:2d:09:cb:
6b:e6:e5:55:0f:c0:66:11:62:98:cd:ad:e2:ed:83:
14:a8:17:af:7a:97:3e:29:0a:92:20:0f:62:dd:2b:
ce:1f:1b:a7:44:73:45:23:6d:35:a4:d1:24:51:80:
84:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:68:2D:9C:FD:5B:F7:62:54:A0:8C:52:E6:50:FB:8C:35:75:E8:F0
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/OmgtnP1b92JUoIxS5lD7jDV16PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.92.126.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:3f:6f:c5:3a:97:95:02:f0:b2:ff:97:5c:e1:31:ec:dd:6e:
51:86:36:ce:8f:27:5e:fc:81:4b:7f:d6:db:a1:a4:98:eb:64:
86:ac:f4:0c:19:3a:76:cc:20:f0:89:5c:ee:61:c0:e2:58:6e:
e0:49:93:30:0c:db:6e:e8:7c:cf:ef:2e:53:fe:c0:76:5c:37:
61:af:94:9a:17:e3:ae:c7:17:48:b7:37:27:1d:4a:b0:79:53:
92:cc:98:0d:e3:70:72:22:f6:8f:5c:61:b8:9e:69:d0:0b:69:
11:9c:4b:4c:56:51:f0:0d:b5:23:18:cd:06:0e:27:63:d7:f0:
8a:6a:79:fe:4f:ba:be:6c:30:00:7a:5d:3e:51:2e:a5:da:0c:
b8:30:32:b2:71:bc:5d:1e:e3:3d:f8:bd:23:f5:89:97:bf:8d:
52:66:ee:79:ff:d5:2e:8e:c6:99:88:c1:99:40:ce:69:42:f3:
64:1d:8e:34:6a:50:ee:7a:0e:2d:29:c0:03:f7:15:3b:d6:9c:
99:e3:8c:85:4b:f4:b9:dc:c5:32:d3:e2:5a:fe:16:47:cc:3c:
4f:50:3b:be:b4:b8:1f:7c:52:25:d1:eb:dd:0d:01:a8:a8:e2:
ae:7c:33:31:5f:e6:70:93:da:32:1d:9d:74:14:89:95:2b:9f:
dc:16:ae:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe+Dk7yBUKk8kB643qc33OqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwNDI2MTQ1MzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTY4MmQ5Y2ZkNWJmNzYyNTRhMDhjNTJlNjUwZmI4YzM1NzVlOGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgm7rqbgPIIIB4r/X3faVtunzz88M
NfAGqlD62nUUObdR5ezfJMavF3oMAQwiqSnN1TEhpaVIuODI6mNz5YMH4+hSq+K4
JjqC8fs03fwsTrlMhgtmPP6E1vIgJet6UQZt8R3OTAnPK8OZW4G+aYA6aiGAVlHo
D07e1/m0/mn75Jvc89JqOOqKoQrZ8EWPvfy9PSfekhzAyB7RhkAbaRcZzmnwRQDm
Es0XR0GsY8LkRyoN7xPTRHN036bB9IMNvO5eMB7oeeJqZX9g8f26jf8tCctr5uVV
D8BmEWKYza3i7YMUqBevepc+KQqSIA9i3SvOHxunRHNFI201pNEkUYCEHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDpoLZz9W/diVKCMUuZQ+4w1dejwMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvT21ndG5QMWI5MkpVb0l4UzVsRDdqRFYxNlBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVVx+MA0G
CSqGSIb3DQEBCwUAA4IBAQCPP2/FOpeVAvCy/5dc4THs3W5RhjbOjyde/IFLf9bb
oaSY62SGrPQMGTp2zCDwiVzuYcDiWG7gSZMwDNtu6HzP7y5T/sB2XDdhr5SaF+Ou
xxdItzcnHUqweVOSzJgN43ByIvaPXGG4nmnQC2kRnEtMVlHwDbUjGM0GDidj1/CK
ann+T7q+bDAAel0+US6l2gy4MDKycbxdHuM9+L0j9YmXv41SZu55/9UujsaZiMGZ
QM5pQvNkHY40alDueg4tKcAD9xU71pyZ44yFS/S53MUy0+Ja/hZHzDxPUDu+tLgf
fFIl0evdDQGoqOKufDMxX+Zwk9oyHZ10FImVK5/cFq5A
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org