Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/GC9W-phMkEVvZJeFh2VISR_VPuM.roa
File: GC9W-phMkEVvZJeFh2VISR_VPuM.roa (raw, json)
Hash identifier: ZYUNb7d4/uzhyXbJD3XkVzJ4HMfRlzvyMG+H6vHgobs=
Subject key identifier: 18:2F:56:FA:98:4C:90:45:6F:64:97:85:87:65:48:49:1F:D5:3E:E3
Certificate issuer: /CN=5a3b1dddab33e45506ad977040924720417d5688
Certificate serial: 01856F429AB5511BDBD266B232B4B01B0156
Authority key identifier: 5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/GC9W-phMkEVvZJeFh2VISR_VPuM.roa
Signing time: Sun 01 Jan 2023 21:35:14 +0000
ROA not before: Sun 01 Jan 2023 21:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200915
IP address blocks: 185.91.152.0/22 maxlen: 23
2a05:eb40::/29 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9a:b5:51:1b:db:d2:66:b2:32:b4:b0:1b:01:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a3b1dddab33e45506ad977040924720417d5688
Validity
Not Before: Jan 1 21:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=182f56fa984c90456f649785876548491fd53ee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:46:b0:96:5d:e2:83:6b:65:44:9e:d5:f6:ad:
52:b1:fb:0a:17:a6:b8:a9:5a:3c:db:ec:59:ec:43:
11:28:85:44:66:8f:cb:68:43:81:fb:2d:f1:18:fe:
d3:b4:76:52:26:c6:a7:55:3f:8e:9b:7c:f3:d5:07:
8c:9f:2f:11:62:6d:fd:96:b9:c1:72:f3:e6:39:e5:
2f:0c:d3:00:23:7f:89:02:9f:02:26:7d:6b:34:ba:
7a:61:f2:3f:7a:67:21:44:0f:b9:29:d0:44:b5:99:
30:0f:dd:ae:d0:6c:f9:31:b1:9d:61:40:76:3e:11:
b5:55:46:97:24:7c:b0:1b:fa:1c:36:8a:82:58:4e:
da:64:9a:7d:f3:28:c8:ba:63:69:88:38:de:a5:85:
1c:72:92:9b:bd:6b:4f:e3:de:77:79:5b:96:6a:04:
76:20:28:5a:35:62:f8:bd:49:72:66:89:4c:b9:1e:
f0:91:b7:2c:ae:7b:45:7a:36:39:bb:bb:98:aa:1e:
a7:88:10:7e:fa:d2:1c:f9:40:f7:2e:86:ce:52:51:
0b:2f:b7:c8:9e:99:02:ea:67:37:04:49:7a:21:21:
84:0a:4a:95:03:25:0b:29:bd:78:be:6a:6f:73:a1:
5d:50:a9:9d:b8:a3:20:5d:95:ca:52:d6:05:31:af:
76:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:2F:56:FA:98:4C:90:45:6F:64:97:85:87:65:48:49:1F:D5:3E:E3
X509v3 Authority Key Identifier:
keyid:5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/GC9W-phMkEVvZJeFh2VISR_VPuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/Wjsd3asz5FUGrZdwQJJHIEF9Vog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.152.0/22
IPv6:
2a05:eb40::/29
Signature Algorithm: sha256WithRSAEncryption
84:e9:43:70:28:42:64:f1:9b:29:5b:77:04:38:14:e8:86:36:
41:67:0c:54:a7:48:98:93:81:b0:77:28:b4:4b:58:bc:0b:92:
ae:3a:5b:54:fc:6a:7d:74:da:0f:e4:d0:a7:c5:30:d2:fc:6b:
c1:1e:57:8f:b8:bf:27:9a:1b:c6:5f:08:68:eb:fd:16:97:66:
7d:29:f5:0d:84:22:7c:80:0f:d1:48:3b:43:be:e7:3b:55:df:
ea:04:dd:37:67:57:48:12:21:c2:a5:26:7d:ff:5e:cc:80:7b:
6e:90:55:a1:35:6e:34:cf:17:cc:2f:f6:91:91:1f:ed:05:73:
00:25:a6:f2:48:27:1c:1d:6f:3b:72:a3:07:32:5d:e1:e8:62:
a9:dd:de:56:fb:a9:e9:f5:22:98:f4:83:8c:86:d1:74:92:b0:
0a:d1:11:7c:c6:b0:bd:e6:16:ad:63:f4:31:fe:c7:3d:28:b7:
73:b6:0c:50:51:f7:be:e5:40:34:c7:6a:9f:e3:d0:f2:66:fc:
3b:23:c1:0b:18:22:74:ac:68:e2:c3:77:00:be:5c:70:d6:9f:
ed:b8:77:5e:88:09:f4:54:11:54:d6:52:30:a7:03:d3:8a:20:
85:9f:e1:bb:01:aa:bb:56:75:42:2c:f6:7c:1e:63:00:25:6a:
c9:e5:75:a0
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvQpq1URvb0mayMrSwGwFWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhM2IxZGRkYWIzM2U0NTUwNmFkOTc3MDQwOTI0NzIwNDE3
ZDU2ODgwHhcNMjMwMTAxMjEzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODJmNTZmYTk4NGM5MDQ1NmY2NDk3ODU4NzY1NDg0OTFmZDUzZWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhEawll3ig2tlRJ7V9q1SsfsKF6a4
qVo82+xZ7EMRKIVEZo/LaEOB+y3xGP7TtHZSJsanVT+Om3zz1QeMny8RYm39lrnB
cvPmOeUvDNMAI3+JAp8CJn1rNLp6YfI/emchRA+5KdBEtZkwD92u0Gz5MbGdYUB2
PhG1VUaXJHywG/ocNoqCWE7aZJp98yjIumNpiDjepYUccpKbvWtP4953eVuWagR2
IChaNWL4vUlyZolMuR7wkbcsrntFejY5u7uYqh6niBB++tIc+UD3LobOUlELL7fI
npkC6mc3BEl6ISGECkqVAyULKb14vmpvc6FdUKmduKMgXZXKUtYFMa92dwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBgvVvqYTJBFb2SXhYdlSEkf1T7jMB8GA1UdIwQY
MBaAFFo7Hd2rM+RVBq2XcECSRyBBfVaIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2pzZDNhc3o1RlVHclpkd1FKSkhJRUY5Vm9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8xNzliZDgtZmM2OC00Zjc2LTg2ZmYt
NjhmMzE2NjA3Mzc2LzEvR0M5Vy1waE1rRVZ2WkplRmgyVklTUl9WUHVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8xNzliZDgtZmM2OC00Zjc2LTg2ZmYtNjhmMzE2NjA3Mzc2
LzEvV2pzZDNhc3o1RlVHclpkd1FKSkhJRUY5Vm9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuVuYMA0E
AgACMAcDBQMqBetAMA0GCSqGSIb3DQEBCwUAA4IBAQCE6UNwKEJk8ZspW3cEOBTo
hjZBZwxUp0iYk4Gwdyi0S1i8C5KuOltU/Gp9dNoP5NCnxTDS/GvBHlePuL8nmhvG
Xwho6/0Wl2Z9KfUNhCJ8gA/RSDtDvuc7Vd/qBN03Z1dIEiHCpSZ9/17MgHtukFWh
NW40zxfML/aRkR/tBXMAJabySCccHW87cqMHMl3h6GKp3d5W+6np9SKY9IOMhtF0
krAK0RF8xrC95hatY/Qx/sc9KLdztgxQUfe+5UA0x2qf49DyZvw7I8ELGCJ0rGji
w3cAvlxw1p/tuHdeiAn0VBFU1lIwpwPTiiCFn+G7Aaq7VnVCLPZ8HmMAJWrJ5XWg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:13 2024 by rpki-client on console-fra.rpki-client.org