Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/_KUnpqU-QXkxOIRWaZhxuhoOIu8.roa
File: _KUnpqU-QXkxOIRWaZhxuhoOIu8.roa (raw, json)
Hash identifier: G1EDAM2Sqmo+7webzsfUTqC3+9q8mVElINIYygE8Sog=
Subject key identifier: FC:A5:27:A6:A5:3E:41:79:31:38:84:56:69:98:71:BA:1A:0E:22:EF
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 01856CB85C49C41607E9552768FF226564A9
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/_KUnpqU-QXkxOIRWaZhxuhoOIu8.roa
Signing time: Sun 01 Jan 2023 09:44:59 +0000
ROA not before: Sun 01 Jan 2023 09:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209465
IP address blocks: 171.22.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:5c:49:c4:16:07:e9:55:27:68:ff:22:65:64:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Jan 1 09:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fca527a6a53e417931388456699871ba1a0e22ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fb:b9:c4:ba:36:63:aa:5a:d6:3b:98:04:61:
3e:fc:6e:05:c5:44:04:be:c9:c8:8b:46:e7:2a:07:
4d:53:53:ce:af:1b:1d:49:2e:78:ff:a0:dd:52:15:
a5:e2:9b:f1:ec:f6:b1:5e:bb:f2:6e:c1:47:04:52:
b9:4f:9b:21:ba:dd:35:3f:25:87:25:96:8e:a1:22:
f2:6e:3b:e3:4f:02:14:3b:05:ba:2c:58:0d:d2:34:
66:48:b5:5a:c8:80:2f:66:c0:75:d4:f9:77:d8:d7:
a9:74:ba:6c:d2:5c:f7:85:68:f9:9e:d1:2d:b2:e4:
e3:b6:f2:44:61:9f:73:cc:a2:96:64:63:ef:81:35:
b2:1f:8c:86:ac:dc:de:73:01:2e:c0:27:f9:ee:71:
dd:c5:68:3d:04:21:3e:6e:00:d9:14:0c:26:7c:f9:
17:66:ce:57:8a:f1:07:8f:fa:97:65:e1:db:ca:a3:
31:41:d3:7e:ac:d6:00:a7:ba:43:de:7d:22:5a:f6:
06:a8:b5:d6:26:ca:3d:09:23:ae:70:bf:ac:fd:33:
a4:80:66:6c:db:66:7f:29:d6:98:a4:17:0a:18:4b:
ef:46:95:a4:bf:f6:18:08:12:44:70:14:f5:34:89:
2e:68:45:be:ec:45:28:d5:c9:d2:05:cb:2a:c4:74:
8b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A5:27:A6:A5:3E:41:79:31:38:84:56:69:98:71:BA:1A:0E:22:EF
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/_KUnpqU-QXkxOIRWaZhxuhoOIu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.151.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f0:30:c3:24:37:67:e2:71:af:be:cd:3b:ca:e3:a5:3a:27:
a9:63:c5:ea:de:ba:93:03:83:80:21:60:63:e9:97:22:03:37:
6c:e9:6f:d8:9d:ae:2c:dc:bc:c0:e5:f4:b4:2b:83:1b:b5:22:
a0:de:f0:58:f8:50:17:b8:69:d9:f6:b5:e3:95:ed:c3:79:63:
d5:3f:21:1d:7c:28:df:35:18:ba:e7:c8:18:ff:06:c4:0d:57:
d6:e8:df:28:74:ed:38:2a:3d:e1:00:cd:63:21:cc:ae:86:93:
97:90:31:31:d9:8d:be:d5:25:b6:48:19:27:69:4c:61:21:65:
51:43:56:09:33:5e:8b:b9:58:ca:ef:1b:76:2e:8e:a9:bd:84:
4a:25:dd:a5:e6:8e:16:3e:07:dc:e7:f8:a8:11:1b:78:cb:a5:
51:ca:76:5c:62:23:f7:6f:fa:55:b9:40:c6:08:1f:4d:98:46:
ff:a9:18:74:e1:44:99:09:73:9d:ff:94:36:96:85:07:aa:10:
f9:18:05:1f:61:a8:23:c9:79:c8:05:ef:e1:42:6c:f5:c2:8d:
d6:bf:3c:e5:c1:a3:52:78:da:a2:b4:2a:46:41:4c:79:21:4b:
03:7e:62:de:26:0d:05:db:e2:fe:25:0a:d3:6e:9e:41:f5:e8:
40:aa:43:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuFxJxBYH6VUnaP8iZWSpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzgyMjM4Mjg5YTg4MDJjZjUyYjY3ZDliZjRhZTg3YTUw
OTMzYzMwHhcNMjMwMTAxMDk0NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmY2E1MjdhNmE1M2U0MTc5MzEzODg0NTY2OTk4NzFiYTFhMGUyMmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfu5xLo2Y6pa1juYBGE+/G4FxUQE
vsnIi0bnKgdNU1POrxsdSS54/6DdUhWl4pvx7PaxXrvybsFHBFK5T5shut01PyWH
JZaOoSLybjvjTwIUOwW6LFgN0jRmSLVayIAvZsB11Pl32NepdLps0lz3hWj5ntEt
suTjtvJEYZ9zzKKWZGPvgTWyH4yGrNzecwEuwCf57nHdxWg9BCE+bgDZFAwmfPkX
Zs5XivEHj/qXZeHbyqMxQdN+rNYAp7pD3n0iWvYGqLXWJso9CSOucL+s/TOkgGZs
22Z/KdaYpBcKGEvvRpWkv/YYCBJEcBT1NIkuaEW+7EUo1cnSBcsqxHSLcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPylJ6alPkF5MTiEVmmYcboaDiLvMB8GA1UdIwQY
MBaAFF04IjgomogCz1K2fZv0roelCTPDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRnaU9DaWFpQUxQVXJaOW1fU3VoNlVKTThNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi84NTAxOGEtYzIzOC00MzE5LWFkNDIt
ODg1NzU3YzEyNDhmLzEvX0tVbnBxVS1RWGt4T0lSV2FaaHh1aG9PSXU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi84NTAxOGEtYzIzOC00MzE5LWFkNDItODg1NzU3YzEyNDhm
LzEvWFRnaU9DaWFpQUxQVXJaOW1fU3VoNlVKTThNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqxaXMA0G
CSqGSIb3DQEBCwUAA4IBAQBm8DDDJDdn4nGvvs07yuOlOiepY8Xq3rqTA4OAIWBj
6ZciAzds6W/Yna4s3LzA5fS0K4MbtSKg3vBY+FAXuGnZ9rXjle3DeWPVPyEdfCjf
NRi658gY/wbEDVfW6N8odO04Kj3hAM1jIcyuhpOXkDEx2Y2+1SW2SBknaUxhIWVR
Q1YJM16LuVjK7xt2Lo6pvYRKJd2l5o4WPgfc5/ioERt4y6VRynZcYiP3b/pVuUDG
CB9NmEb/qRh04USZCXOd/5Q2loUHqhD5GAUfYagjyXnIBe/hQmz1wo3WvzzlwaNS
eNqitCpGQUx5IUsDfmLeJg0F2+L+JQrTbp5B9ehAqkNz
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:29 2024 by rpki-client on console-fra.rpki-client.org