Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1u4gdGc27n9Ffs5HCNsWrseFlHA.roa
File: 1u4gdGc27n9Ffs5HCNsWrseFlHA.roa (raw, json)
Hash identifier: WxeRyeSfJxtnSYetZs7o8pS4Rg0PlzPr92nVebsOUIo=
Subject key identifier: D6:EE:20:74:67:36:EE:7F:45:7E:CE:47:08:DB:16:AE:C7:85:94:70
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 01856C78503B16AC2837BB0FBFC3C15EBE2A
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1u4gdGc27n9Ffs5HCNsWrseFlHA.roa
Signing time: Sun 01 Jan 2023 08:35:02 +0000
ROA not before: Sun 01 Jan 2023 08:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 91.132.12.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:50:3b:16:ac:28:37:bb:0f:bf:c3:c1:5e:be:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 1 08:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6ee20746736ee7f457ece4708db16aec7859470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5f:b8:f2:0b:ab:fe:49:4a:14:de:3e:bc:9d:
bd:46:e9:14:5b:de:90:47:dd:76:cd:e6:76:36:99:
e3:b8:a0:ca:ff:2d:92:97:70:c8:c2:d8:8a:d8:c2:
e3:59:16:06:04:89:89:08:b1:fc:df:39:7b:1e:c2:
bf:d2:a7:5f:a3:b8:d7:4f:10:52:7d:d4:24:ec:6f:
6e:fe:ab:fc:f9:bb:83:c1:aa:8d:bf:7e:e5:49:26:
93:33:56:f8:fe:c4:92:22:a8:a5:91:5e:84:49:5f:
a7:d7:e9:29:ea:9d:9d:34:3e:f2:9e:94:8c:2d:7b:
e1:57:8d:42:ad:47:b9:e3:1f:2a:eb:2d:85:b1:d0:
af:b8:63:d2:ab:f9:b9:92:bb:74:3e:2c:11:55:60:
b2:d1:c1:43:d1:c0:0c:03:7a:67:4f:2a:4f:b3:c0:
3e:67:74:07:ac:55:05:d2:c5:0a:12:ac:46:a6:c5:
4a:6d:76:7c:73:45:c1:41:e4:71:b4:a0:a9:f5:80:
f1:53:20:53:de:5a:1e:b1:3f:4c:e7:8f:40:5b:70:
27:c3:79:e0:4d:cb:4e:77:13:d0:a4:65:d9:41:e3:
26:79:c0:dd:7c:10:b7:4c:de:4b:78:cc:19:cd:fb:
0d:13:18:84:63:02:fc:59:a0:a1:a6:f1:3a:22:66:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EE:20:74:67:36:EE:7F:45:7E:CE:47:08:DB:16:AE:C7:85:94:70
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/1u4gdGc27n9Ffs5HCNsWrseFlHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.12.0/22
Signature Algorithm: sha256WithRSAEncryption
08:e5:c4:4d:f0:f5:13:8b:ff:a7:7d:23:66:21:76:a3:70:c2:
65:52:7a:7e:ff:16:05:02:fa:ac:ca:82:6c:74:00:92:aa:ea:
f8:a9:8a:31:d6:19:e4:b2:30:06:bd:a0:53:12:09:2f:5f:ac:
fc:c8:e8:79:d7:c5:10:2a:a8:d8:39:4b:d8:04:c0:12:8f:ee:
db:c2:d1:98:e1:85:de:12:c7:d2:fd:c2:e0:33:8e:4a:6c:28:
b9:30:fb:0c:29:65:69:f9:9f:c7:69:94:ee:42:10:8d:f0:bf:
2a:c9:20:fc:eb:20:18:3a:09:ea:0a:a3:7b:42:15:b5:b1:1c:
ff:1f:e5:96:0d:d5:35:96:a5:d4:0f:d4:f3:cd:d0:c4:06:a6:
95:f8:77:3b:7b:ca:bc:7b:bf:23:bb:9b:18:7e:f3:08:d9:82:
24:b7:72:27:4d:42:eb:d9:d3:6d:b4:e8:5b:2c:30:14:c5:b1:
f8:00:b6:2d:13:05:c6:5b:ff:84:d6:05:80:26:25:9c:75:30:
46:bf:55:1c:ef:c3:a1:b8:07:a1:31:71:12:62:65:9b:61:39:
21:77:89:02:1d:2e:03:66:3b:6d:f5:dd:e5:67:21:56:14:74:
9b:d6:be:89:db:2d:d5:24:1a:34:f2:2a:26:c1:47:ae:ae:2f:
d7:79:a9:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVseFA7FqwoN7sPv8PBXr4qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzYwM2E5M2JjYTMxYjAxOGY1MTFmNmQ0YjBiNzU0NmU5
NjMzNjIwHhcNMjMwMTAxMDgzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmVlMjA3NDY3MzZlZTdmNDU3ZWNlNDcwOGRiMTZhZWM3ODU5NDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1+48gur/klKFN4+vJ29RukUW96Q
R912zeZ2NpnjuKDK/y2Sl3DIwtiK2MLjWRYGBImJCLH83zl7HsK/0qdfo7jXTxBS
fdQk7G9u/qv8+buDwaqNv37lSSaTM1b4/sSSIqilkV6ESV+n1+kp6p2dND7ynpSM
LXvhV41CrUe54x8q6y2FsdCvuGPSq/m5krt0PiwRVWCy0cFD0cAMA3pnTypPs8A+
Z3QHrFUF0sUKEqxGpsVKbXZ8c0XBQeRxtKCp9YDxUyBT3loesT9M549AW3Anw3ng
TctOdxPQpGXZQeMmecDdfBC3TN5LeMwZzfsNExiEYwL8WaChpvE6ImZEYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNbuIHRnNu5/RX7ORwjbFq7HhZRwMB8GA1UdIwQY
MBaAFIJ2A6k7yjGwGPUR9tSwt1RuljNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYt
YjE2Y2I0ZGZhZGQzLzEvMXU0Z2RHYzI3bjlGZnM1SENOc1dyc2VGbEhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYtYjE2Y2I0ZGZhZGQz
LzEvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW4QMMA0G
CSqGSIb3DQEBCwUAA4IBAQAI5cRN8PUTi/+nfSNmIXajcMJlUnp+/xYFAvqsyoJs
dACSqur4qYox1hnksjAGvaBTEgkvX6z8yOh518UQKqjYOUvYBMASj+7bwtGY4YXe
EsfS/cLgM45KbCi5MPsMKWVp+Z/HaZTuQhCN8L8qySD86yAYOgnqCqN7QhW1sRz/
H+WWDdU1lqXUD9TzzdDEBqaV+Hc7e8q8e78ju5sYfvMI2YIkt3InTULr2dNttOhb
LDAUxbH4ALYtEwXGW/+E1gWAJiWcdTBGv1Uc78OhuAehMXESYmWbYTkhd4kCHS4D
Zjtt9d3lZyFWFHSb1r6J2y3VJBo08iomwUeuri/XeamL
-----END CERTIFICATE-----
Generated at Wed Oct 4 13:05:49 2023 by rpki-client on console-ams.rpki-client.org