Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/KEWEnFnPkDc3JXIenA7LLbOfOc4.roa
File: KEWEnFnPkDc3JXIenA7LLbOfOc4.roa (raw, json)
Hash identifier: GDXI1/H8LuTMoJHve+kweF3daYj3L9bjKXBBu6g9TNg=
Subject key identifier: 28:45:84:9C:59:CF:90:37:37:25:72:1E:9C:0E:CB:2D:B3:9F:39:CE
Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Certificate serial: 018A83E4E28236D55623E69DEA3B7E147FBB
Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/KEWEnFnPkDc3JXIenA7LLbOfOc4.roa
Signing time: Mon 11 Sep 2023 10:58:50 +0000
ROA not before: Mon 11 Sep 2023 10:58:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207647
IP address blocks: 87.239.9.0/24 maxlen: 24
87.239.8.0/24 maxlen: 24
87.239.10.0/24 maxlen: 24
87.239.12.0/24 maxlen: 24
87.239.15.0/24 maxlen: 24
87.239.14.0/24 maxlen: 24
87.239.13.0/24 maxlen: 24
2001:678:6a0::/48 maxlen: 48
2001:678:be4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 13 Sep 2023 12:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:e4:e2:82:36:d5:56:23:e6:9d:ea:3b:7e:14:7f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8
Validity
Not Before: Sep 11 10:58:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2845849c59cf90373725721e9c0ecb2db39f39ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:ab:8b:42:77:95:c5:37:7e:89:95:7a:6e:
e6:af:74:3b:2f:ef:e5:5b:8d:d8:8a:2a:64:3e:18:
c2:1d:58:13:5e:cc:8b:02:c2:74:13:44:2d:f2:52:
d1:03:9c:e1:5c:87:66:95:1e:a8:f8:f5:ab:51:50:
96:7d:57:03:96:21:32:9e:8f:4b:13:26:b8:80:69:
26:35:f1:73:7e:12:37:0d:a6:aa:00:a7:02:60:a1:
b4:6c:3f:3f:ae:9c:33:2c:01:f4:d0:25:45:97:67:
b1:59:b0:f3:97:15:91:e7:40:7b:a7:89:91:83:5f:
98:b6:aa:7e:91:50:be:1c:8d:7f:1f:37:5d:94:c6:
a4:c8:ef:b4:b0:18:f2:ed:21:04:9e:ea:b7:40:6a:
e6:2b:10:dc:38:e7:38:d8:67:46:99:b0:17:97:81:
0f:3a:fb:e0:fb:c1:76:0c:3e:43:ba:c9:2f:b5:ca:
33:de:f0:4a:0b:48:2b:9a:72:aa:eb:7d:69:55:d3:
3e:08:9b:31:49:97:d3:8d:ec:f0:45:14:51:73:68:
fe:05:83:79:7e:58:bf:cb:d4:a7:1d:36:ac:fd:05:
74:a7:ad:35:c0:9f:26:e6:35:47:f3:00:76:8d:ef:
38:bd:5d:8a:60:23:20:5e:4e:f5:8e:78:2e:33:32:
2c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:45:84:9C:59:CF:90:37:37:25:72:1E:9C:0E:CB:2D:B3:9F:39:CE
X509v3 Authority Key Identifier:
keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/KEWEnFnPkDc3JXIenA7LLbOfOc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.8.0-87.239.10.255
87.239.12.0/22
IPv6:
2001:678:6a0::/48
2001:678:be4::/48
Signature Algorithm: sha256WithRSAEncryption
7b:70:a3:b4:cd:e3:c0:4a:d4:73:b1:76:80:67:eb:03:5b:72:
39:8c:50:31:f8:23:93:67:a5:63:ce:c5:8a:37:30:4f:75:4b:
9b:96:5c:9c:28:76:4c:c4:72:7b:f6:16:8b:e1:d1:69:1c:6e:
be:4f:88:d7:5c:b7:05:70:f5:d9:65:19:02:7b:5d:0c:12:c2:
d6:10:fe:e2:03:5a:cb:bf:27:30:81:bb:65:19:9f:a8:1a:c3:
e3:15:1e:0a:c4:c9:3a:a4:40:04:ee:dc:73:0a:c2:28:c2:a7:
fc:ce:96:86:2d:99:04:72:34:e6:cb:e4:b6:c8:7d:d6:f3:28:
ce:e0:7a:65:e4:64:ba:8a:8a:56:5b:ba:7a:5f:4b:d0:5d:c5:
b9:d1:3f:10:c6:2d:d1:4c:9f:04:5f:a5:63:0a:3c:c8:89:39:
a4:0c:1e:41:b8:0e:76:25:98:72:1d:ed:74:02:7a:4d:60:fd:
95:4f:81:2b:ee:73:c5:d6:f1:36:08:73:7e:74:ce:6d:c5:57:
d2:ce:6a:d8:16:a9:67:fe:91:eb:0d:ec:40:ec:3f:0e:72:56:
31:e2:5e:a9:5e:6d:71:c0:b4:fb:0c:9e:d3:95:0c:04:49:57:
09:fd:cb:4a:aa:46:59:1c:ac:0a:5e:8e:69:47:27:04:d5:e2:
9e:6e:ab:9f
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYqD5OKCNtVWI+ad6jt+FH+7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2
Mzc4YTgwHhcNMjMwOTExMTA1ODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODQ1ODQ5YzU5Y2Y5MDM3MzcyNTcyMWU5YzBlY2IyZGIzOWYzOWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz2ri0J3lcU3fomVem7mr3Q7L+/l
W43YiipkPhjCHVgTXsyLAsJ0E0Qt8lLRA5zhXIdmlR6o+PWrUVCWfVcDliEyno9L
Eya4gGkmNfFzfhI3DaaqAKcCYKG0bD8/rpwzLAH00CVFl2exWbDzlxWR50B7p4mR
g1+Ytqp+kVC+HI1/HzddlMakyO+0sBjy7SEEnuq3QGrmKxDcOOc42GdGmbAXl4EP
Ovvg+8F2DD5Duskvtcoz3vBKC0grmnKq631pVdM+CJsxSZfTjezwRRRRc2j+BYN5
fli/y9SnHTas/QV0p601wJ8m5jVH8wB2je84vV2KYCMgXk71jnguMzIsqwIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFChFhJxZz5A3NyVyHpwOyy2znznOMB8GA1UdIwQY
MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy
LTJhMWNjZTdkMmM2NS8xL0tFV0VuRm5Qa0RjM0pYSWVuQTdMTGJPZk9jNC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgyLTJhMWNjZTdkMmM2
NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwRwYIKwYBBQUHAQcBAf8EODA2MBoEAgABMBQwDAMEA1fv
CAMEAFfvCgMEAlfvDDAYBAIAAjASAwcAIAEGeAagAwcAIAEGeAvkMA0GCSqGSIb3
DQEBCwUAA4IBAQB7cKO0zePAStRzsXaAZ+sDW3I5jFAx+COTZ6VjzsWKNzBPdUub
llycKHZMxHJ79haL4dFpHG6+T4jXXLcFcPXZZRkCe10MEsLWEP7iA1rLvycwgbtl
GZ+oGsPjFR4KxMk6pEAE7txzCsIowqf8zpaGLZkEcjTmy+S2yH3W8yjO4Hpl5GS6
iopWW7p6X0vQXcW50T8Qxi3RTJ8EX6VjCjzIiTmkDB5BuA52JZhyHe10AnpNYP2V
T4Er7nPF1vE2CHN+dM5txVfSzmrYFqln/pHrDexA7D8OclYx4l6pXm1xwLT7DJ7T
lQwESVcJ/ctKqkZZHKwKXo5pRycE1eKebquf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org