Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ks1Tuer2v-wv_O3Xol_nNcku2aM.roa
File: ks1Tuer2v-wv_O3Xol_nNcku2aM.roa (raw, json)
Hash identifier: Rt/OhQ5SIyC837hTy7l/bdfS07dL3dmg5kgrP3ooD6I=
Subject key identifier: 92:CD:53:B9:EA:F6:BF:EC:2F:FC:ED:D7:A2:5F:E7:35:C9:2E:D9:A3
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FE773E0E0B866603CEA762978098E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ks1Tuer2v-wv_O3Xol_nNcku2aM.roa
Signing time: Mon 02 Jan 2023 17:38:08 +0000
ROA not before: Mon 02 Jan 2023 17:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43233
IP address blocks: 178.218.145.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:e7:73:e0:e0:b8:66:60:3c:ea:76:29:78:09:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92cd53b9eaf6bfec2ffcedd7a25fe735c92ed9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c0:fa:bc:b9:54:3e:a5:b7:81:d6:80:d8:14:
7a:de:52:70:4f:e9:f0:8b:cd:ad:39:88:3c:c9:3f:
eb:41:1f:4f:e6:64:a1:93:d4:05:a3:0c:bc:6b:e2:
79:65:99:3c:da:ca:a9:13:d6:90:7d:25:7d:e2:7f:
79:aa:84:ff:4b:6c:08:65:b7:a0:fd:a1:b1:8a:84:
65:3a:9c:fa:c6:44:4b:90:0a:11:f2:74:eb:d9:be:
26:60:7c:ef:d9:25:a1:4b:b9:28:46:a3:d4:06:d1:
b4:7f:95:cf:cc:c8:b4:e7:04:34:40:a2:e7:a0:6e:
ca:6e:09:0d:c8:92:0c:10:63:40:2a:b7:19:14:f9:
7a:d1:a4:4e:7e:a6:c8:8e:a0:eb:bb:c8:fd:da:13:
84:fb:30:d5:b0:e7:1e:ec:2a:7e:29:da:4e:06:36:
5e:b3:9e:b1:5f:9e:f1:a7:38:2f:83:66:04:75:2a:
97:4a:1e:71:ed:a5:6d:52:c5:6e:a9:da:3a:be:c9:
11:86:de:c6:72:3d:c4:d8:37:9b:2a:8f:79:38:2c:
51:6d:8d:31:32:9e:41:db:91:24:35:09:db:77:76:
8e:e3:f8:b9:01:61:9f:f1:c7:ba:71:f8:3b:09:32:
1a:5b:70:2a:26:ea:ad:5b:67:a6:5a:e0:cb:40:8f:
ef:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:CD:53:B9:EA:F6:BF:EC:2F:FC:ED:D7:A2:5F:E7:35:C9:2E:D9:A3
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/ks1Tuer2v-wv_O3Xol_nNcku2aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.218.145.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:22:ff:0c:95:d7:8f:86:c6:2b:94:3a:5d:88:9b:c5:ff:ab:
b2:a1:b8:75:8a:d4:b7:c3:1c:89:7e:5b:ad:5a:f8:30:b9:5e:
bd:3c:af:5e:5a:57:c9:c4:76:3c:ac:79:a1:6d:01:18:76:90:
43:4a:fe:88:8e:b8:b0:16:b7:a7:c0:22:7c:4f:73:06:ef:a3:
61:4a:e6:08:e5:6e:84:62:1a:5c:24:a3:c7:d6:3b:fc:4f:39:
f2:4d:28:6c:8a:0a:ac:ab:f5:5e:1e:bf:c9:20:1c:76:df:36:
b8:91:a8:43:ba:a9:cb:dd:6a:62:80:81:c6:33:e5:50:1b:96:
c2:57:55:c3:c4:2c:08:42:db:ba:e7:b5:01:56:45:54:dc:4d:
f8:37:9f:1a:68:4b:d1:d1:16:5b:c0:d4:33:71:39:e7:d2:83:
86:7f:12:d7:1d:24:69:86:10:64:ee:ac:66:b2:ca:36:e6:af:
42:49:49:8d:75:af:f0:a5:7b:fa:fa:eb:1c:16:cf:0f:30:35:
67:4a:19:d0:df:4d:6b:df:8c:3f:5e:c6:c3:eb:5f:38:07:de:
e1:ec:4d:55:02:da:25:3c:34:69:95:d4:8f:b2:3c:ce:f9:25:
45:0b:38:ec:ec:59:c0:ac:4e:18:8e:a6:7f:3c:27:62:88:de:
9b:8b:5a:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzj+dz4OC4ZmA86nYpeAmOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmNkNTNiOWVhZjZiZmVjMmZmY2VkZDdhMjVmZTczNWM5MmVkOWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMD6vLlUPqW3gdaA2BR63lJwT+nw
i82tOYg8yT/rQR9P5mShk9QFowy8a+J5ZZk82sqpE9aQfSV94n95qoT/S2wIZbeg
/aGxioRlOpz6xkRLkAoR8nTr2b4mYHzv2SWhS7koRqPUBtG0f5XPzMi05wQ0QKLn
oG7KbgkNyJIMEGNAKrcZFPl60aROfqbIjqDru8j92hOE+zDVsOce7Cp+KdpOBjZe
s56xX57xpzgvg2YEdSqXSh5x7aVtUsVuqdo6vskRht7Gcj3E2DebKo95OCxRbY0x
Mp5B25EkNQnbd3aO4/i5AWGf8ce6cfg7CTIaW3AqJuqtW2emWuDLQI/vVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJLNU7nq9r/sL/zt16Jf5zXJLtmjMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEva3MxVHVlcjJ2LXd2X08zWG9sX25OY2t1MmFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstqRMA0G
CSqGSIb3DQEBCwUAA4IBAQBqIv8MldePhsYrlDpdiJvF/6uyobh1itS3wxyJflut
WvgwuV69PK9eWlfJxHY8rHmhbQEYdpBDSv6IjriwFrenwCJ8T3MG76NhSuYI5W6E
YhpcJKPH1jv8TznyTShsigqsq/VeHr/JIBx23za4kahDuqnL3WpigIHGM+VQG5bC
V1XDxCwIQtu657UBVkVU3E34N58aaEvR0RZbwNQzcTnn0oOGfxLXHSRphhBk7qxm
sso25q9CSUmNda/wpXv6+uscFs8PMDVnShnQ301r34w/XsbD6184B97h7E1VAtol
PDRpldSPsjzO+SVFCzjs7FnArE4YjqZ/PCdiiN6bi1rb
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:21 2024 by rpki-client on console-fra.rpki-client.org