Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/obV_aHKtHHnUkvjpcc8HPttXjkw.roa
File: obV_aHKtHHnUkvjpcc8HPttXjkw.roa (raw, json)
Hash identifier: DFyHGDOBernYYdo+miDoQTM58He9UBVpaq6BXncQc6U=
Subject key identifier: A1:B5:7F:68:72:AD:1C:79:D4:92:F8:E9:71:CF:07:3E:DB:57:8E:4C
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 01856C784E1D6D22FBA8B5BAEEA561EACAE4
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/obV_aHKtHHnUkvjpcc8HPttXjkw.roa
Signing time: Sun 01 Jan 2023 08:35:01 +0000
ROA not before: Sun 01 Jan 2023 08:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 185.169.228.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:4e:1d:6d:22:fb:a8:b5:ba:ee:a5:61:ea:ca:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 1 08:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1b57f6872ad1c79d492f8e971cf073edb578e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:72:fe:0d:d8:8f:a4:94:8c:47:d6:62:83:24:
f6:19:18:ce:95:c3:d9:f1:50:05:fa:dc:7d:2d:57:
8a:67:57:41:2c:81:88:02:78:57:d1:77:71:7b:87:
60:34:8f:95:67:98:6f:2c:2f:32:cf:76:f0:52:1f:
68:84:b7:b8:42:f8:0a:16:94:bf:da:b1:6b:75:82:
4e:97:6c:56:17:1c:f4:20:42:e3:66:b4:08:4e:27:
d1:12:bd:f2:0b:43:c2:ec:35:3e:75:f0:cd:da:62:
ab:4e:30:60:8a:08:53:b5:0b:2c:0b:4c:4f:bf:0f:
3e:b0:f3:d7:1c:02:42:1f:d3:fe:e6:d2:a9:e4:b0:
e4:82:0b:db:af:f4:37:e0:cf:bc:ac:c8:7c:11:e6:
6f:8e:98:24:6a:87:9e:8e:b9:0e:29:62:e4:6d:35:
2c:bc:ee:9c:6b:9e:3a:4b:93:a7:4a:5d:1d:4c:1d:
5f:7a:13:38:90:3a:e0:9d:79:ed:b0:0b:c1:ba:b6:
e6:59:db:5e:04:42:88:de:fd:11:27:e5:b1:be:ba:
b1:bd:96:c7:85:43:10:b4:dd:79:ae:2e:57:4a:d1:
9c:1f:2a:cb:df:67:5d:d0:44:ab:59:db:78:b0:30:
b5:9a:ac:b6:1e:d2:e0:8e:2a:37:d7:73:6c:f6:b7:
3f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B5:7F:68:72:AD:1C:79:D4:92:F8:E9:71:CF:07:3E:DB:57:8E:4C
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/obV_aHKtHHnUkvjpcc8HPttXjkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.228.0/22
Signature Algorithm: sha256WithRSAEncryption
12:1e:cc:2e:db:4d:6b:ef:9a:0f:78:62:d9:48:98:62:0f:5a:
d5:1b:c6:9e:52:68:77:fc:ad:e0:ee:3c:8b:bc:ab:65:30:00:
8d:63:cb:1e:53:85:2c:ea:f8:58:33:47:ad:6f:f2:91:aa:ed:
c9:2e:59:ef:1c:b2:6f:2d:f0:f3:78:f2:59:ce:56:30:06:98:
9f:f1:88:73:97:b6:eb:e5:f0:7f:c0:90:4f:32:d8:cc:03:4b:
39:92:36:62:8d:76:e0:59:1d:81:d7:a6:2c:86:a4:97:65:1d:
29:2f:a3:1d:dd:dc:40:4e:3e:1a:c2:25:d8:0d:4d:c8:af:bc:
a0:28:d2:2d:7c:88:2b:7b:ff:5c:82:29:d7:48:ec:4a:54:db:
8d:87:12:3f:e7:5f:df:3b:43:c2:2c:e9:45:94:94:b3:57:fb:
1c:2c:a0:d3:e5:7d:bd:a5:91:6e:76:6d:e7:82:1b:34:a6:08:
35:cb:ae:a3:ed:39:70:64:2c:11:71:f1:60:34:66:98:89:b9:
03:9d:97:cf:49:89:7c:98:f6:50:59:79:0d:68:b1:9f:2d:10:
33:44:68:c4:0b:ba:c1:9c:60:fb:74:70:f9:f8:ab:9f:db:e1:
b4:e4:25:26:65:82:97:78:ca:eb:78:71:35:d9:09:35:28:cd:
9c:b1:62:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVseE4dbSL7qLW67qVh6srkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzYwM2E5M2JjYTMxYjAxOGY1MTFmNmQ0YjBiNzU0NmU5
NjMzNjIwHhcNMjMwMTAxMDgzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMWI1N2Y2ODcyYWQxYzc5ZDQ5MmY4ZTk3MWNmMDczZWRiNTc4ZTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHL+DdiPpJSMR9ZigyT2GRjOlcPZ
8VAF+tx9LVeKZ1dBLIGIAnhX0Xdxe4dgNI+VZ5hvLC8yz3bwUh9ohLe4QvgKFpS/
2rFrdYJOl2xWFxz0IELjZrQITifREr3yC0PC7DU+dfDN2mKrTjBgighTtQssC0xP
vw8+sPPXHAJCH9P+5tKp5LDkggvbr/Q34M+8rMh8EeZvjpgkaoeejrkOKWLkbTUs
vO6ca546S5OnSl0dTB1fehM4kDrgnXntsAvBurbmWdteBEKI3v0RJ+WxvrqxvZbH
hUMQtN15ri5XStGcHyrL32dd0ESrWdt4sDC1mqy2HtLgjio313Ns9rc/bwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKG1f2hyrRx51JL46XHPBz7bV45MMB8GA1UdIwQY
MBaAFIJ2A6k7yjGwGPUR9tSwt1RuljNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYt
YjE2Y2I0ZGZhZGQzLzEvb2JWX2FIS3RISG5Va3ZqcGNjOEhQdHRYamt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi85MWFmNjYtZDM5NC00MmZhLWEwYzYtYjE2Y2I0ZGZhZGQz
LzEvZ25ZRHFUdktNYkFZOVJIMjFMQzNWRzZXTTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuankMA0G
CSqGSIb3DQEBCwUAA4IBAQASHswu201r75oPeGLZSJhiD1rVG8aeUmh3/K3g7jyL
vKtlMACNY8seU4Us6vhYM0etb/KRqu3JLlnvHLJvLfDzePJZzlYwBpif8Yhzl7br
5fB/wJBPMtjMA0s5kjZijXbgWR2B16YshqSXZR0pL6Md3dxATj4awiXYDU3Ir7yg
KNItfIgre/9cginXSOxKVNuNhxI/51/fO0PCLOlFlJSzV/scLKDT5X29pZFudm3n
ghs0pgg1y66j7TlwZCwRcfFgNGaYibkDnZfPSYl8mPZQWXkNaLGfLRAzRGjEC7rB
nGD7dHD5+Kuf2+G05CUmZYKXeMrreHE12Qk1KM2csWIo
-----END CERTIFICATE-----
Generated at Wed Oct 4 13:01:19 2023 by rpki-client on console-fra.rpki-client.org