Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KEpWKQxveMQ2osrh8ECcsAFpeVk.roa
File: KEpWKQxveMQ2osrh8ECcsAFpeVk.roa (raw, json)
Hash identifier: +NuhuY/fo2oEjDShSjx4T0NkHVKJLL4T//Kd0fdxlQk=
Subject key identifier: 28:4A:56:29:0C:6F:78:C4:36:A2:CA:E1:F0:40:9C:B0:01:69:79:59
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01897CB99E96539262AFA21933C7663EE770
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KEpWKQxveMQ2osrh8ECcsAFpeVk.roa
Signing time: Sat 22 Jul 2023 08:31:26 +0000
ROA not before: Sat 22 Jul 2023 08:31:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.244.107.0/24 maxlen: 24
45.155.66.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:7c:b9:9e:96:53:92:62:af:a2:19:33:c7:66:3e:e7:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jul 22 08:31:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=284a56290c6f78c436a2cae1f0409cb001697959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:da:4c:73:18:b7:66:1f:8d:40:89:fc:7e:b3:
47:5e:bc:a4:11:d1:24:ee:ad:98:5a:18:a9:f8:c7:
1e:ce:14:54:cc:9d:b5:49:0d:1e:e5:ac:6a:a0:81:
c5:7d:18:ac:b5:55:3f:64:30:1a:f4:2f:ff:58:1b:
c2:58:fe:d1:ce:ab:d8:85:dc:9c:c1:30:18:d8:59:
77:05:50:1c:43:b6:4b:76:13:c6:78:0e:8c:7b:19:
d2:3b:c7:ca:6d:98:5b:a1:25:7e:1b:a4:e1:09:a1:
da:4e:0d:43:7f:36:e6:2e:55:a4:32:a7:d6:43:c5:
88:f4:77:2f:1d:7e:f5:5b:ad:59:57:da:f9:ad:6c:
54:13:ce:21:a5:aa:63:d3:7d:3a:f8:bd:83:ca:44:
9d:6a:d5:a3:88:c1:9c:da:be:3a:53:09:dc:df:1e:
3b:29:60:1d:6e:cb:b6:22:86:5e:aa:43:c3:04:d3:
57:2b:60:d3:66:27:7f:93:02:eb:1b:b5:54:cb:f4:
1f:8c:10:fb:74:ae:f4:34:61:81:f5:c1:50:f8:e8:
5e:41:5b:c1:de:7c:1f:1e:0a:85:c9:be:1d:bf:8d:
8e:1c:25:d4:91:a4:ba:00:b2:0b:10:2e:20:19:88:
d6:66:5d:a4:21:ee:44:93:fd:07:8a:95:70:d4:77:
ac:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4A:56:29:0C:6F:78:C4:36:A2:CA:E1:F0:40:9C:B0:01:69:79:59
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KEpWKQxveMQ2osrh8ECcsAFpeVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.66.0/23
185.244.107.0/24
Signature Algorithm: sha256WithRSAEncryption
83:4b:7d:8c:df:f8:a5:2d:a8:e0:bc:89:ef:5a:f1:23:a1:20:
95:fb:1e:a0:8b:05:b5:34:08:19:2d:fd:e9:5a:23:3a:e2:53:
ba:e5:45:23:1e:e1:50:3e:02:29:2b:48:1d:aa:ba:1e:df:56:
75:94:2e:38:d0:85:82:dc:56:86:9b:af:0a:12:86:f5:ec:cb:
eb:8e:29:1a:0f:3b:73:7b:33:b7:a8:e6:4f:8b:d2:33:c1:ba:
f7:12:ee:57:ea:d8:09:82:27:e0:9c:aa:b8:9b:b8:0b:52:b3:
e2:45:f1:75:7d:56:a6:ec:62:ee:d0:fe:98:5e:52:88:e8:c8:
a9:4c:d3:71:6b:44:7e:ab:72:0f:79:c5:19:5a:1a:c0:be:91:
64:0b:50:66:92:32:55:98:0f:28:bd:c2:eb:49:a1:fc:7d:24:
d6:13:3c:27:e3:35:9d:2a:bc:d9:a0:18:17:7d:28:5a:45:11:
8a:99:67:2e:c0:ba:be:d6:40:7c:1f:8b:d3:b1:70:6b:81:66:
f7:a1:20:85:28:56:70:7c:71:45:a9:2f:52:57:4a:56:47:f5:
bd:6c:74:fb:d5:39:1b:b0:ca:c0:29:a4:1a:80:b1:ee:4c:c4:
55:78:6c:67:85:b1:f9:5c:a8:37:b8:73:0d:aa:0c:e0:6d:de:
34:ae:db:10
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYl8uZ6WU5Jir6IZM8dmPudwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNl
ZmRiM2UwHhcNMjMwNzIyMDgzMTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODRhNTYyOTBjNmY3OGM0MzZhMmNhZTFmMDQwOWNiMDAxNjk3OTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNpMcxi3Zh+NQIn8frNHXrykEdEk
7q2YWhip+McezhRUzJ21SQ0e5axqoIHFfRistVU/ZDAa9C//WBvCWP7RzqvYhdyc
wTAY2Fl3BVAcQ7ZLdhPGeA6MexnSO8fKbZhboSV+G6ThCaHaTg1DfzbmLlWkMqfW
Q8WI9HcvHX71W61ZV9r5rWxUE84hpapj0306+L2DykSdatWjiMGc2r46Uwnc3x47
KWAdbsu2IoZeqkPDBNNXK2DTZid/kwLrG7VUy/QfjBD7dK70NGGB9cFQ+OheQVvB
3nwfHgqFyb4dv42OHCXUkaS6ALILEC4gGYjWZl2kIe5Ek/0HipVw1Hes0wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFChKVikMb3jENqLK4fBAnLABaXlZMB8GA1UdIwQY
MBaAFCsUWovfK8oVDyXtVKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMt
MzA0MGJlZDNjY2NkLzEvS0VwV0tReHZlTVEyb3NyaDhFQ2NzQUZwZVZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2Nk
LzEvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLZtCAwQA
ufRrMA0GCSqGSIb3DQEBCwUAA4IBAQCDS32M3/ilLajgvInvWvEjoSCV+x6giwW1
NAgZLf3pWiM64lO65UUjHuFQPgIpK0gdqroe31Z1lC440IWC3FaGm68KEob17Mvr
jikaDztzezO3qOZPi9Izwbr3Eu5X6tgJgifgnKq4m7gLUrPiRfF1fVam7GLu0P6Y
XlKI6MipTNNxa0R+q3IPecUZWhrAvpFkC1BmkjJVmA8ovcLrSaH8fSTWEzwn4zWd
KrzZoBgXfShaRRGKmWcuwLq+1kB8H4vTsXBrgWb3oSCFKFZwfHFFqS9SV0pWR/W9
bHT71TkbsMrAKaQagLHuTMRVeGxnhbH5XKg3uHMNqgzgbd40rtsQ
-----END CERTIFICATE-----
Generated at Fri Aug 4 07:00:16 2023 by rpki-client on console-fra.rpki-client.org