Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/rbolg3SsHtBDt85RH9787BxOd9U.roa
File: rbolg3SsHtBDt85RH9787BxOd9U.roa (raw, json)
Hash identifier: wA7W8t0rNNZlNOLxTSNF4GiF8GnEgIGfnyLb6fX2g1I=
Subject key identifier: AD:BA:25:83:74:AC:1E:D0:43:B7:CE:51:1F:DE:FC:EC:1C:4E:77:D5
Certificate issuer: /CN=a0e0c59044c87e3e2dfa13cbf99023aee012efa0
Certificate serial: 01856D8ADE32AA51994E73CAE77F78EC8332
Authority key identifier: A0:E0:C5:90:44:C8:7E:3E:2D:FA:13:CB:F9:90:23:AE:E0:12:EF:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oODFkETIfj4t-hPL-ZAjruAS76A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/rbolg3SsHtBDt85RH9787BxOd9U.roa
Signing time: Sun 01 Jan 2023 13:34:55 +0000
ROA not before: Sun 01 Jan 2023 13:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57480
IP address blocks: 91.232.4.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:de:32:aa:51:99:4e:73:ca:e7:7f:78:ec:83:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e0c59044c87e3e2dfa13cbf99023aee012efa0
Validity
Not Before: Jan 1 13:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adba258374ac1ed043b7ce511fdefcec1c4e77d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cc:d3:b1:25:c2:0f:85:af:15:57:4f:2a:ca:
e9:52:24:c1:cc:5a:56:e3:88:4f:e1:69:a1:ee:35:
1e:84:39:b6:4d:73:dc:f1:bd:a0:f7:a1:cc:95:a6:
e8:da:02:f6:3c:ed:d0:b8:70:b1:e6:5b:a9:0b:ae:
54:ce:c6:ab:15:62:6a:d1:9a:a6:cc:47:da:b2:48:
c7:dc:17:6c:b5:5b:a1:0c:2c:38:c4:dc:f3:8f:b6:
83:e1:34:dc:10:af:54:c8:25:32:ce:89:22:81:89:
bc:1d:d5:cd:c1:3e:e4:4c:f5:7f:f5:1c:fb:46:34:
88:a8:63:f4:36:c7:61:ea:77:ea:13:65:97:b9:c2:
a0:33:b2:5a:05:33:ba:c9:e7:eb:95:69:9a:0b:c6:
36:aa:c8:de:58:71:71:b3:d0:a0:18:dc:aa:e9:82:
67:62:5b:13:6b:e2:8a:52:1b:b7:55:87:d7:94:1a:
b3:79:8a:23:c9:ce:fa:12:c8:29:e7:6e:76:5e:5c:
5a:65:2e:73:62:8e:e1:b1:65:13:ac:0d:56:df:bb:
6a:b3:3e:46:08:ea:22:32:1c:05:03:82:7e:0a:06:
2b:f4:b0:c5:48:9e:be:39:37:8c:ff:aa:4f:68:ed:
99:36:fc:b6:20:85:b3:53:61:ec:59:83:35:7d:fe:
db:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BA:25:83:74:AC:1E:D0:43:B7:CE:51:1F:DE:FC:EC:1C:4E:77:D5
X509v3 Authority Key Identifier:
keyid:A0:E0:C5:90:44:C8:7E:3E:2D:FA:13:CB:F9:90:23:AE:E0:12:EF:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oODFkETIfj4t-hPL-ZAjruAS76A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/rbolg3SsHtBDt85RH9787BxOd9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/b1592d-3a23-4f40-81c8-1600b742b5dd/1/oODFkETIfj4t-hPL-ZAjruAS76A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.4.0/23
Signature Algorithm: sha256WithRSAEncryption
d2:09:cf:da:d3:58:35:0e:ff:72:00:5d:a9:81:67:3f:3d:3c:
61:69:ac:8e:de:46:b0:57:2f:48:d7:93:98:88:5f:31:6c:56:
16:3a:2e:7d:2e:03:bd:ca:e9:d5:fb:c3:9d:07:a8:b2:e7:5f:
ae:2a:f9:b3:35:78:48:9a:5a:be:38:91:cd:26:89:4d:91:12:
63:f5:23:08:fb:35:a6:70:96:f5:b7:e7:d8:ae:f8:c1:77:97:
1f:c9:7b:87:ef:f6:f4:20:aa:04:09:ca:7a:94:bf:ee:89:ef:
02:56:3a:a4:de:75:c3:a0:97:32:3d:59:87:f0:d2:44:a9:61:
91:1a:8f:9d:2a:f4:0c:be:a3:39:50:ce:7b:74:37:25:a7:54:
c2:8c:41:f7:f8:91:67:00:33:a5:e7:2e:f3:bc:b3:b6:5b:a1:
60:42:7d:5b:6e:9b:3e:e0:77:e9:54:3f:b1:2f:30:2d:f2:14:
05:ec:7b:bd:cb:35:07:9e:78:45:15:f6:9a:95:7b:79:31:2d:
cd:58:d5:d2:4c:9a:0a:77:b6:27:5c:87:cc:5e:7c:12:8e:e8:
15:03:05:43:4e:5a:b0:ee:f8:22:3a:c6:48:36:02:a2:21:61:
99:b3:65:91:96:c5:f5:9e:d7:35:58:b4:3a:ba:2f:56:12:39:
f8:36:34:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtit4yqlGZTnPK53947IMyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZTBjNTkwNDRjODdlM2UyZGZhMTNjYmY5OTAyM2FlZTAx
MmVmYTAwHhcNMjMwMTAxMTMzNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZGJhMjU4Mzc0YWMxZWQwNDNiN2NlNTExZmRlZmNlYzFjNGU3N2Q1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoczTsSXCD4WvFVdPKsrpUiTBzFpW
44hP4Wmh7jUehDm2TXPc8b2g96HMlabo2gL2PO3QuHCx5lupC65UzsarFWJq0Zqm
zEfaskjH3BdstVuhDCw4xNzzj7aD4TTcEK9UyCUyzokigYm8HdXNwT7kTPV/9Rz7
RjSIqGP0Nsdh6nfqE2WXucKgM7JaBTO6yefrlWmaC8Y2qsjeWHFxs9CgGNyq6YJn
YlsTa+KKUhu3VYfXlBqzeYojyc76Esgp5252XlxaZS5zYo7hsWUTrA1W37tqsz5G
COoiMhwFA4J+CgYr9LDFSJ6+OTeM/6pPaO2ZNvy2IIWzU2HsWYM1ff7bgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK26JYN0rB7QQ7fOUR/e/OwcTnfVMB8GA1UdIwQY
MBaAFKDgxZBEyH4+LfoTy/mQI67gEu+gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb09ERmtFVElmajR0LWhQTC1aQWpydUFTNzZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9iMTU5MmQtM2EyMy00ZjQwLTgxYzgt
MTYwMGI3NDJiNWRkLzEvcmJvbGczU3NIdEJEdDg1Ukg5Nzg3QnhPZDlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My9iMTU5MmQtM2EyMy00ZjQwLTgxYzgtMTYwMGI3NDJiNWRk
LzEvb09ERmtFVElmajR0LWhQTC1aQWpydUFTNzZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+gEMA0G
CSqGSIb3DQEBCwUAA4IBAQDSCc/a01g1Dv9yAF2pgWc/PTxhaayO3kawVy9I15OY
iF8xbFYWOi59LgO9yunV+8OdB6iy51+uKvmzNXhImlq+OJHNJolNkRJj9SMI+zWm
cJb1t+fYrvjBd5cfyXuH7/b0IKoECcp6lL/uie8CVjqk3nXDoJcyPVmH8NJEqWGR
Go+dKvQMvqM5UM57dDclp1TCjEH3+JFnADOl5y7zvLO2W6FgQn1bbps+4HfpVD+x
LzAt8hQF7Hu9yzUHnnhFFfaalXt5MS3NWNXSTJoKd7YnXIfMXnwSjugVAwVDTlqw
7vgiOsZINgKiIWGZs2WRlsX1ntc1WLQ6ui9WEjn4NjRj
-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:56 2024 by rpki-client on console-fra.rpki-client.org