Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/lRmh4lh3lVz-3hETx6pNpztlSac.roa
File: lRmh4lh3lVz-3hETx6pNpztlSac.roa (raw, json)
Hash identifier: ygyMsVQFA2Kvayi6FdfSrmYueZXflZcUsUmrNPPl34o=
Subject key identifier: 95:19:A1:E2:58:77:95:5C:FE:DE:11:13:C7:AA:4D:A7:3B:65:49:A7
Certificate issuer: /CN=830555f011be5e241eb0b425de5fd86cc6834a54
Certificate serial: 01857227EEEE3950226CAE5392467F4398B6
Authority key identifier: 83:05:55:F0:11:BE:5E:24:1E:B0:B4:25:DE:5F:D8:6C:C6:83:4A:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwVV8BG-XiQesLQl3l_YbMaDSlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/lRmh4lh3lVz-3hETx6pNpztlSac.roa
Signing time: Mon 02 Jan 2023 11:04:57 +0000
ROA not before: Mon 02 Jan 2023 11:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52130
IP address blocks: 188.92.40.0/21 maxlen: 21
2a02:7d00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ee:ee:39:50:22:6c:ae:53:92:46:7f:43:98:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830555f011be5e241eb0b425de5fd86cc6834a54
Validity
Not Before: Jan 2 11:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9519a1e25877955cfede1113c7aa4da73b6549a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:3c:21:de:58:f5:f7:30:96:9b:4c:73:b4:
73:57:5c:24:e7:d9:dd:f2:f6:38:3f:5b:a4:81:2b:
d9:0f:eb:d5:9f:df:6a:19:55:19:d1:eb:f7:82:7f:
e8:1b:89:f7:36:ae:99:82:95:30:a0:23:28:c8:0c:
25:d5:54:1e:50:d4:ee:e7:6f:f4:fd:79:6c:94:cd:
97:1c:0c:fe:d8:b2:ac:b4:4f:12:cb:cd:2e:ad:1c:
13:64:2c:cc:e7:b1:14:40:b9:e8:5e:4d:bb:ed:45:
ad:cc:ed:c7:89:40:d3:ba:1e:d8:4e:c3:b3:b8:f2:
4f:8c:52:3a:11:79:b1:5d:65:1b:16:e7:c6:98:11:
f3:f3:a7:eb:c7:96:81:6c:3f:52:53:00:3d:41:37:
62:c1:5b:cc:fc:68:a7:56:a8:53:4e:a8:1e:f3:b6:
ce:9d:57:2b:77:16:8f:1a:c7:c0:c6:d6:64:9b:06:
68:e1:6b:59:9e:63:c0:8a:0f:9a:69:3e:e2:d9:40:
d6:a4:01:d5:9b:78:46:c2:f7:dc:58:36:14:ff:f5:
a2:6e:e4:55:d7:09:ef:6a:19:38:c4:c2:8d:6b:a9:
a3:43:05:9f:58:f1:43:2c:3a:96:6d:68:71:95:ae:
5d:3d:db:6e:07:20:7f:3d:4a:89:77:7e:eb:b2:df:
ad:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:19:A1:E2:58:77:95:5C:FE:DE:11:13:C7:AA:4D:A7:3B:65:49:A7
X509v3 Authority Key Identifier:
keyid:83:05:55:F0:11:BE:5E:24:1E:B0:B4:25:DE:5F:D8:6C:C6:83:4A:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwVV8BG-XiQesLQl3l_YbMaDSlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/lRmh4lh3lVz-3hETx6pNpztlSac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/bf0162-fcba-4085-b4f1-d699ddc9d09c/1/gwVV8BG-XiQesLQl3l_YbMaDSlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.92.40.0/21
IPv6:
2a02:7d00::/32
Signature Algorithm: sha256WithRSAEncryption
0a:fe:21:f1:0a:a8:12:eb:2e:32:7b:18:d3:41:bf:1e:05:07:
ba:91:71:92:16:eb:34:1a:d1:12:d8:da:57:cf:ae:4f:20:2a:
7d:56:af:77:72:ea:86:17:61:50:d8:19:3f:09:45:fa:8b:f9:
fd:ed:bc:f5:1e:14:1e:72:dc:90:83:9d:06:f6:b0:b2:85:61:
0b:dd:8d:96:e5:77:65:e5:f8:c3:25:86:7c:30:ea:fa:21:c2:
35:00:d6:80:dc:fc:c2:49:22:ef:58:19:dd:dd:38:2e:5c:90:
ee:ff:ea:a8:7a:44:2c:3b:d1:d1:98:14:0d:ad:d1:90:ef:e6:
4a:02:6c:6e:be:1b:7e:01:15:ed:49:08:74:44:0b:5b:8b:2d:
74:d8:35:3d:42:d1:4c:78:d5:85:9a:f0:6d:e3:05:dd:c4:70:
01:d2:33:01:f9:9e:41:f6:52:73:8a:f4:34:7b:de:2e:38:7f:
c0:a4:e8:37:e6:dc:65:ac:37:87:78:91:04:48:c6:1c:14:da:
0b:5a:75:d7:a7:3e:fb:4d:d9:68:ed:30:fb:5a:f6:02:6d:d7:
82:b2:28:5c:2a:b1:d8:0c:15:cb:fa:d6:e2:ab:d2:5d:e6:47:
f5:fe:0f:de:45:16:68:3e:d6:88:e1:8e:e9:7a:d5:a0:a6:70:
b2:c6:b0:a4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVyJ+7uOVAibK5TkkZ/Q5i2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMDU1NWYwMTFiZTVlMjQxZWIwYjQyNWRlNWZkODZjYzY4
MzRhNTQwHhcNMjMwMTAyMTEwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTE5YTFlMjU4Nzc5NTVjZmVkZTExMTNjN2FhNGRhNzNiNjU0OWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWM8Id5Y9fcwlptMc7RzV1wk59nd
8vY4P1ukgSvZD+vVn99qGVUZ0ev3gn/oG4n3Nq6ZgpUwoCMoyAwl1VQeUNTu52/0
/XlslM2XHAz+2LKstE8Sy80urRwTZCzM57EUQLnoXk277UWtzO3HiUDTuh7YTsOz
uPJPjFI6EXmxXWUbFufGmBHz86frx5aBbD9SUwA9QTdiwVvM/GinVqhTTqge87bO
nVcrdxaPGsfAxtZkmwZo4WtZnmPAig+aaT7i2UDWpAHVm3hGwvfcWDYU//WibuRV
1wnvahk4xMKNa6mjQwWfWPFDLDqWbWhxla5dPdtuByB/PUqJd37rst+tTQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJUZoeJYd5Vc/t4RE8eqTac7ZUmnMB8GA1UdIwQY
MBaAFIMFVfARvl4kHrC0Jd5f2GzGg0pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3dWVjhCRy1YaVFlc0xRbDNsX1liTWFEU2xRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iZjAxNjItZmNiYS00MDg1LWI0ZjEt
ZDY5OWRkYzlkMDljLzEvbFJtaDRsaDNsVnotM2hFVHg2cE5wenRsU2FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy9iZjAxNjItZmNiYS00MDg1LWI0ZjEtZDY5OWRkYzlkMDlj
LzEvZ3dWVjhCRy1YaVFlc0xRbDNsX1liTWFEU2xRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDvFwoMA0E
AgACMAcDBQAqAn0AMA0GCSqGSIb3DQEBCwUAA4IBAQAK/iHxCqgS6y4yexjTQb8e
BQe6kXGSFus0GtES2NpXz65PICp9Vq93cuqGF2FQ2Bk/CUX6i/n97bz1HhQectyQ
g50G9rCyhWEL3Y2W5Xdl5fjDJYZ8MOr6IcI1ANaA3PzCSSLvWBnd3TguXJDu/+qo
ekQsO9HRmBQNrdGQ7+ZKAmxuvht+ARXtSQh0RAtbiy102DU9QtFMeNWFmvBt4wXd
xHAB0jMB+Z5B9lJzivQ0e94uOH/ApOg35txlrDeHeJEESMYcFNoLWnXXpz77Tdlo
7TD7WvYCbdeCsihcKrHYDBXL+tbiq9Jd5kf1/g/eRRZoPtaI4Y7petWgpnCyxrCk
-----END CERTIFICATE-----
Generated at Thu Nov 2 09:35:31 2023 by rpki-client on console-ams.rpki-client.org