Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/9246cb-d46b-4062-987b-5b34bc378436/1/KyxqL_PRdIajNT1oBdur1Toa0PA.roa
File: KyxqL_PRdIajNT1oBdur1Toa0PA.roa (raw, json)
Hash identifier: 0LPgfWXFBD5I0SwgRCsjV8o6fBrJd1o7m7+GbVfWWJQ=
Subject key identifier: 2B:2C:6A:2F:F3:D1:74:86:A3:35:3D:68:05:DB:AB:D5:3A:1A:D0:F0
Certificate issuer: /CN=231e28359c180ea6c488a98ca3af77b5bb793dee
Certificate serial: 01856E01B0E169AEC4635E7C8A23AFA8E622
Authority key identifier: 23:1E:28:35:9C:18:0E:A6:C4:88:A9:8C:A3:AF:77:B5:BB:79:3D:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ix4oNZwYDqbEiKmMo693tbt5Pe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/9246cb-d46b-4062-987b-5b34bc378436/1/KyxqL_PRdIajNT1oBdur1Toa0PA.roa
Signing time: Sun 01 Jan 2023 15:44:42 +0000
ROA not before: Sun 01 Jan 2023 15:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201300
IP address blocks: 185.79.110.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:b0:e1:69:ae:c4:63:5e:7c:8a:23:af:a8:e6:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=231e28359c180ea6c488a98ca3af77b5bb793dee
Validity
Not Before: Jan 1 15:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b2c6a2ff3d17486a3353d6805dbabd53a1ad0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e6:e1:d4:dd:64:94:8a:9d:e1:45:a3:eb:b8:
7a:ff:24:62:11:d1:21:80:b8:19:d7:0f:06:c2:8f:
c6:78:90:ae:0b:ac:15:86:b0:5b:ab:51:44:9c:60:
27:d0:b4:b9:dc:19:d7:76:40:2a:2d:3a:6f:91:27:
f0:07:08:3e:1a:c3:6f:30:9a:ae:f3:3e:8a:cb:87:
02:ea:af:42:88:88:29:eb:75:aa:f9:b6:84:9a:79:
aa:30:80:02:7e:04:fd:ff:6d:37:13:1d:6c:41:9b:
37:45:62:e9:a1:2b:01:88:32:06:24:bf:c5:51:7c:
62:37:ce:e9:13:99:3f:e4:35:64:73:a1:b5:53:c1:
9d:f7:cd:0f:3a:07:9d:2c:ea:85:a7:42:3e:41:bc:
4f:49:57:ed:00:53:7b:e7:e7:5b:a0:f8:73:b0:0a:
21:25:87:1f:18:9c:06:9f:94:4e:cf:2d:1a:3e:3f:
76:d7:c6:d1:a6:c8:e5:56:f0:08:f9:39:ab:4e:01:
36:f8:9a:da:ea:fe:70:18:a4:31:e2:e7:3a:f7:6c:
21:8e:fc:c4:f2:75:34:52:69:6c:47:f9:f6:b8:27:
d3:6d:55:cd:f6:04:da:79:5f:e9:85:b4:59:38:f9:
44:fb:47:3a:90:63:ef:f3:a7:61:39:8c:7b:0e:b1:
8b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2C:6A:2F:F3:D1:74:86:A3:35:3D:68:05:DB:AB:D5:3A:1A:D0:F0
X509v3 Authority Key Identifier:
keyid:23:1E:28:35:9C:18:0E:A6:C4:88:A9:8C:A3:AF:77:B5:BB:79:3D:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ix4oNZwYDqbEiKmMo693tbt5Pe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9246cb-d46b-4062-987b-5b34bc378436/1/KyxqL_PRdIajNT1oBdur1Toa0PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/9246cb-d46b-4062-987b-5b34bc378436/1/Ix4oNZwYDqbEiKmMo693tbt5Pe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.110.0/23
Signature Algorithm: sha256WithRSAEncryption
15:f0:87:c8:93:54:ba:a4:a7:cb:dd:bb:81:3e:ba:6b:72:65:
20:c6:71:7e:72:7e:48:c7:eb:ca:9f:31:9e:a0:ce:fd:28:10:
a1:60:0f:e1:3a:97:34:f4:f0:7a:28:a2:db:cf:08:ef:47:17:
99:4c:68:8c:08:48:4a:09:9c:2d:85:55:c6:0c:0a:48:b5:6f:
40:ca:34:48:5c:43:9f:4b:10:80:52:34:ff:11:fa:e5:92:ab:
a5:9a:b3:29:ee:de:af:83:08:a7:af:77:02:6f:14:86:dc:c4:
05:2e:33:63:a7:7b:82:38:88:22:bc:d4:6b:b2:76:a4:e6:3e:
d2:23:d4:45:f6:b0:56:14:35:14:f5:9e:24:9b:ae:81:35:48:
8d:5a:ef:5f:28:0b:62:88:c5:10:4e:07:1a:d8:9e:67:41:4b:
06:3d:a5:c5:df:34:ff:cb:52:20:c4:46:36:a0:e4:da:5f:d4:
9f:24:7b:e0:2a:31:09:fe:27:cd:39:b6:94:88:11:29:5a:7e:
91:65:e4:56:e5:09:91:54:45:bb:ca:fd:99:28:ed:79:4e:c4:
c8:e7:05:6c:32:ea:86:35:3e:d4:28:de:59:c9:78:eb:f2:84:
0c:8d:da:ee:86:10:92:e0:e2:57:8e:ed:40:57:0e:5c:85:13:
90:38:1f:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuAbDhaa7EY158iiOvqOYiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMWUyODM1OWMxODBlYTZjNDg4YTk4Y2EzYWY3N2I1YmI3
OTNkZWUwHhcNMjMwMTAxMTU0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjJjNmEyZmYzZDE3NDg2YTMzNTNkNjgwNWRiYWJkNTNhMWFkMGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgebh1N1klIqd4UWj67h6/yRiEdEh
gLgZ1w8Gwo/GeJCuC6wVhrBbq1FEnGAn0LS53BnXdkAqLTpvkSfwBwg+GsNvMJqu
8z6Ky4cC6q9CiIgp63Wq+baEmnmqMIACfgT9/203Ex1sQZs3RWLpoSsBiDIGJL/F
UXxiN87pE5k/5DVkc6G1U8Gd980POgedLOqFp0I+QbxPSVftAFN75+dboPhzsAoh
JYcfGJwGn5ROzy0aPj9218bRpsjlVvAI+TmrTgE2+Jra6v5wGKQx4uc692whjvzE
8nU0UmlsR/n2uCfTbVXN9gTaeV/phbRZOPlE+0c6kGPv86dhOYx7DrGLzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCssai/z0XSGozU9aAXbq9U6GtDwMB8GA1UdIwQY
MBaAFCMeKDWcGA6mxIipjKOvd7W7eT3uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXg0b05ad1lEcWJFaUttTW82OTN0YnQ1UGU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS85MjQ2Y2ItZDQ2Yi00MDYyLTk4N2It
NWIzNGJjMzc4NDM2LzEvS3l4cUxfUFJkSWFqTlQxb0JkdXIxVG9hMFBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS85MjQ2Y2ItZDQ2Yi00MDYyLTk4N2ItNWIzNGJjMzc4NDM2
LzEvSXg0b05ad1lEcWJFaUttTW82OTN0YnQ1UGU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuU9uMA0G
CSqGSIb3DQEBCwUAA4IBAQAV8IfIk1S6pKfL3buBPrprcmUgxnF+cn5Ix+vKnzGe
oM79KBChYA/hOpc09PB6KKLbzwjvRxeZTGiMCEhKCZwthVXGDApItW9AyjRIXEOf
SxCAUjT/EfrlkqulmrMp7t6vgwinr3cCbxSG3MQFLjNjp3uCOIgivNRrsnak5j7S
I9RF9rBWFDUU9Z4km66BNUiNWu9fKAtiiMUQTgca2J5nQUsGPaXF3zT/y1IgxEY2
oOTaX9SfJHvgKjEJ/ifNObaUiBEpWn6RZeRW5QmRVEW7yv2ZKO15TsTI5wVsMuqG
NT7UKN5ZyXjr8oQMjdruhhCS4OJXju1AVw5chROQOB9i
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:22 2024 by rpki-client on console-ams.rpki-client.org