Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/1-pLPO8ri3nembhyZUbcrvgNGgtw.roa
File: 1-pLPO8ri3nembhyZUbcrvgNGgtw.roa (raw, json)
Hash identifier: KBy7HPJAHt02XZ6Ut+cQzDELkq1R/RGtjZj16uyDGiU=
Subject key identifier: FA:92:CF:3B:CA:E2:DE:77:A6:6E:1C:99:51:B7:2B:BE:03:46:82:DC
Certificate issuer: /CN=faf64476ef3945b344ffee38da56caccc5d039b0
Certificate serial: 01856ED4A970282931C060092D06A70EE69B
Authority key identifier: FA:F6:44:76:EF:39:45:B3:44:FF:EE:38:DA:56:CA:CC:C5:D0:39:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-vZEdu85RbNE_-442lbKzMXQObA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/1-pLPO8ri3nembhyZUbcrvgNGgtw.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49103
IP address blocks: 185.57.164.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a9:70:28:29:31:c0:60:09:2d:06:a7:0e:e6:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faf64476ef3945b344ffee38da56caccc5d039b0
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa92cf3bcae2de77a66e1c9951b72bbe034682dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6d:df:db:5a:a8:78:5c:d0:64:a9:b9:7b:68:
3e:47:81:fb:d1:e3:15:69:48:1a:f3:e6:11:5b:9f:
0a:69:a1:7d:7a:42:e6:f3:d5:3f:da:3e:fc:6b:39:
e7:75:4d:d4:52:51:04:92:cd:be:72:ba:27:b8:02:
1b:6b:22:e4:13:27:6c:c4:20:23:fb:16:2d:51:7e:
5a:01:20:8a:cd:72:00:57:d2:bb:e1:10:77:36:a0:
8f:08:c8:98:e4:a3:0c:15:ac:03:19:93:39:d6:f0:
4b:54:94:71:31:7c:ba:24:e7:3b:98:b4:23:f9:c5:
2e:68:87:b8:63:aa:63:86:96:46:ac:c7:46:1f:21:
2e:80:96:bb:5f:12:1d:ad:b0:8f:81:42:8e:2f:92:
04:f6:58:89:40:5c:10:a2:73:07:bb:5c:f6:84:93:
f7:2a:9b:af:d3:77:1f:67:bf:64:ee:5a:a6:45:17:
35:6c:0f:46:be:97:15:49:28:17:8c:e2:ca:59:f0:
35:39:9f:ca:a3:55:dd:95:4d:ae:c9:b3:29:14:26:
83:95:7c:ed:25:27:d0:b6:fd:d8:fd:e8:b7:64:d1:
1e:01:79:3a:6f:dc:88:7d:e4:1e:6b:ec:98:85:1c:
21:ec:fe:dc:d1:47:ea:f4:7e:82:02:50:8d:b6:a6:
c0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:92:CF:3B:CA:E2:DE:77:A6:6E:1C:99:51:B7:2B:BE:03:46:82:DC
X509v3 Authority Key Identifier:
keyid:FA:F6:44:76:EF:39:45:B3:44:FF:EE:38:DA:56:CA:CC:C5:D0:39:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-vZEdu85RbNE_-442lbKzMXQObA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/1-pLPO8ri3nembhyZUbcrvgNGgtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/67e36c-cd55-4b59-aa12-7442f0e2bd17/1/1-vZEdu85RbNE_-442lbKzMXQObA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.164.0/22
Signature Algorithm: sha256WithRSAEncryption
63:6c:0b:14:c7:68:f3:7a:c4:30:78:7e:5f:4e:45:51:b5:5b:
9e:34:d1:f6:6a:dd:1f:ac:3a:b5:e2:45:d0:62:52:6d:b8:d0:
2c:0e:91:e7:5b:f6:4d:25:a8:82:b2:ef:40:49:d5:ba:e9:45:
0d:fc:de:d6:60:4c:fb:0a:91:fc:b2:4c:b9:2c:6f:ac:01:dc:
da:96:b8:87:68:89:65:c0:ca:a4:4a:e4:19:cd:94:f7:3f:c3:
2d:3f:09:d9:df:96:3c:6f:35:bf:11:7f:aa:bd:65:26:77:cc:
98:65:31:fe:0b:a8:b8:c6:17:e2:82:f6:6b:c5:6c:30:7f:79:
ae:9d:78:c1:4c:fb:40:b2:56:65:49:31:40:f6:59:49:0f:12:
3d:56:09:ef:bf:83:fe:a6:1b:d0:ca:c9:79:c0:cd:aa:00:ee:
5f:75:1e:85:98:b2:0c:b8:4a:a9:0d:94:e7:c7:10:77:4b:93:
94:de:4b:46:6f:3f:47:f8:7b:a4:35:10:d6:38:20:aa:68:a0:
00:3c:eb:87:3a:76:af:49:62:45:d8:4a:96:6d:4e:85:6d:4f:
60:a4:ec:2c:56:16:8a:b2:23:5d:23:e5:bb:39:2d:8f:be:0d:
77:72:bd:24:ad:be:2d:a6:9a:dc:29:63:84:0b:99:6a:4a:0b:
93:a0:3a:ab
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVu1KlwKCkxwGAJLQanDuabMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZjY0NDc2ZWYzOTQ1YjM0NGZmZWUzOGRhNTZjYWNjYzVk
MDM5YjAwHhcNMjMwMTAxMTkzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYTkyY2YzYmNhZTJkZTc3YTY2ZTFjOTk1MWI3MmJiZTAzNDY4MmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk23f21qoeFzQZKm5e2g+R4H70eMV
aUga8+YRW58KaaF9ekLm89U/2j78aznndU3UUlEEks2+cronuAIbayLkEydsxCAj
+xYtUX5aASCKzXIAV9K74RB3NqCPCMiY5KMMFawDGZM51vBLVJRxMXy6JOc7mLQj
+cUuaIe4Y6pjhpZGrMdGHyEugJa7XxIdrbCPgUKOL5IE9liJQFwQonMHu1z2hJP3
Kpuv03cfZ79k7lqmRRc1bA9GvpcVSSgXjOLKWfA1OZ/Ko1XdlU2uybMpFCaDlXzt
JSfQtv3Y/ei3ZNEeAXk6b9yIfeQea+yYhRwh7P7c0Ufq9H6CAlCNtqbAewIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPqSzzvK4t53pm4cmVG3K74DRoLcMB8GA1UdIwQY
MBaAFPr2RHbvOUWzRP/uONpWyszF0DmwMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS12WkVkdTg1UmJORV8tNDQybGJLek1YUU9iQS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvNjdlMzZjLWNkNTUtNGI1OS1hYTEy
LTc0NDJmMGUyYmQxNy8xLzEtcExQTzhyaTNuZW1iaHlaVWJjcnZnTkdndHcucm9h
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzk4LzY3ZTM2Yy1jZDU1LTRiNTktYWExMi03NDQyZjBlMmJk
MTcvMS8xLXZaRWR1ODVSYk5FXy00NDJsYkt6TVhRT2JBLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTmk
MA0GCSqGSIb3DQEBCwUAA4IBAQBjbAsUx2jzesQweH5fTkVRtVueNNH2at0frDq1
4kXQYlJtuNAsDpHnW/ZNJaiCsu9ASdW66UUN/N7WYEz7CpH8sky5LG+sAdzalriH
aIllwMqkSuQZzZT3P8MtPwnZ35Y8bzW/EX+qvWUmd8yYZTH+C6i4xhfigvZrxWww
f3munXjBTPtAslZlSTFA9llJDxI9Vgnvv4P+phvQysl5wM2qAO5fdR6FmLIMuEqp
DZTnxxB3S5OU3ktGbz9H+HukNRDWOCCqaKAAPOuHOnavSWJF2EqWbU6FbU9gpOws
VhaKsiNdI+W7OS2Pvg13cr0krb4tpprcKWOEC5lqSguToDqr
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:40 2024 by rpki-client on console.sobornost.net