Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/kOMqBdnZj64ISW3SrfenjbWzXBI.roa
File: kOMqBdnZj64ISW3SrfenjbWzXBI.roa (raw, json)
Hash identifier: oh/ocsS4fBnGZA0sD4Kt56cDUNI0LUD9+l9xiYem5ts=
Subject key identifier: 90:E3:2A:05:D9:D9:8F:AE:08:49:6D:D2:AD:F7:A7:8D:B5:B3:5C:12
Certificate issuer: /CN=1e65ede3b6aae7475c354b1e9b84d6a7832b077b
Certificate serial: 0185718C398B13F5D7BBB8F0B644ADDCDE8C
Authority key identifier: 1E:65:ED:E3:B6:AA:E7:47:5C:35:4B:1E:9B:84:D6:A7:83:2B:07:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmXt47aq50dcNUsem4TWp4MrB3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/kOMqBdnZj64ISW3SrfenjbWzXBI.roa
Signing time: Mon 02 Jan 2023 08:14:53 +0000
ROA not before: Mon 02 Jan 2023 08:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51088
IP address blocks: 193.53.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:39:8b:13:f5:d7:bb:b8:f0:b6:44:ad:dc:de:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e65ede3b6aae7475c354b1e9b84d6a7832b077b
Validity
Not Before: Jan 2 08:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90e32a05d9d98fae08496dd2adf7a78db5b35c12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:4a:16:f3:fc:f1:40:f9:69:3b:ee:52:48:
c9:e7:49:f3:23:6d:cf:c9:bd:7b:01:d4:29:2c:c2:
69:c2:bf:eb:84:9b:ed:63:55:ac:df:00:ee:83:a1:
c7:b8:75:03:36:cf:f2:d4:c5:ab:a5:80:de:64:b4:
a7:32:ab:c5:73:c6:ca:5c:2a:de:73:de:e7:1b:4c:
8d:b8:b3:cd:b5:1c:b2:fb:4a:92:63:03:10:76:25:
97:20:ae:3d:a8:4c:91:b1:30:cb:27:82:a5:b2:5b:
94:39:00:20:88:83:83:3e:53:23:33:98:1b:ae:f8:
aa:3f:90:f9:3c:a7:e6:1c:20:95:70:73:2c:c3:f5:
82:08:0b:33:55:6c:20:67:9e:a1:07:ae:47:79:50:
ed:33:b1:5a:0b:ac:b8:e9:47:bc:d8:f9:91:57:17:
dd:7e:2c:24:3d:b6:84:fb:28:cf:39:4b:ce:eb:46:
db:cc:23:b6:a7:de:6a:ea:a0:6d:38:a8:4b:e2:b6:
0b:de:66:6e:fb:fe:8b:5c:85:db:64:d9:d5:88:46:
a5:65:b0:da:2a:f8:4b:3b:2a:bc:29:85:21:8a:6e:
27:ae:a0:8f:ee:f1:5d:a7:77:a1:ce:4c:a3:09:b6:
61:1e:67:0d:f5:01:83:91:48:4a:a6:8e:19:cf:36:
6f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E3:2A:05:D9:D9:8F:AE:08:49:6D:D2:AD:F7:A7:8D:B5:B3:5C:12
X509v3 Authority Key Identifier:
keyid:1E:65:ED:E3:B6:AA:E7:47:5C:35:4B:1E:9B:84:D6:A7:83:2B:07:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmXt47aq50dcNUsem4TWp4MrB3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/kOMqBdnZj64ISW3SrfenjbWzXBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c991ef-84b4-496f-a856-5ce4d8dbd159/1/HmXt47aq50dcNUsem4TWp4MrB3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.249.0/24
Signature Algorithm: sha256WithRSAEncryption
14:0e:ca:ee:5e:69:bf:36:ed:3c:0b:70:28:41:65:58:e9:f5:
57:da:ba:ae:dd:e8:4c:7c:17:e5:0a:a8:c7:95:a1:4d:27:6d:
a5:57:c4:bf:83:2a:a7:a7:0f:3f:13:1e:c4:97:e9:70:d6:6b:
7e:7f:06:e0:54:da:3a:52:11:46:7c:25:1f:28:4c:96:1a:ff:
2b:66:49:75:c3:17:02:1b:17:09:77:f1:af:f2:d1:d2:ef:a7:
30:f5:c7:fe:f3:35:fc:04:8e:7a:89:62:2a:f7:7c:ac:ab:f5:
7b:10:1b:30:47:3e:aa:68:cf:59:81:3a:b4:8c:dd:dc:84:08:
98:f6:f9:99:ba:0b:c4:28:35:f2:74:ae:7a:11:6f:24:c2:49:
52:b7:62:1c:34:be:30:0b:17:6a:d0:a2:49:4f:5f:78:d9:bc:
fd:ee:93:40:b2:7e:c5:0f:3f:92:5d:c6:76:23:51:36:fd:4d:
d0:13:3b:cb:3b:da:1b:97:73:9f:c3:a2:45:a3:42:97:a8:15:
0c:c2:7b:bf:1e:5a:1c:55:59:ea:f0:a8:dd:37:55:44:8c:a4:
15:5a:78:74:ea:89:a6:b2:03:1a:a9:a4:3e:a6:4b:1c:9f:7c:
8e:de:8b:82:9f:59:ae:d9:36:8c:9d:d8:0b:c3:9f:ca:55:95:
76:ae:60:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxjDmLE/XXu7jwtkSt3N6MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlNjVlZGUzYjZhYWU3NDc1YzM1NGIxZTliODRkNmE3ODMy
YjA3N2IwHhcNMjMwMTAyMDgxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MGUzMmEwNWQ5ZDk4ZmFlMDg0OTZkZDJhZGY3YTc4ZGI1YjM1YzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFFKFvP88UD5aTvuUkjJ50nzI23P
yb17AdQpLMJpwr/rhJvtY1Ws3wDug6HHuHUDNs/y1MWrpYDeZLSnMqvFc8bKXCre
c97nG0yNuLPNtRyy+0qSYwMQdiWXIK49qEyRsTDLJ4KlsluUOQAgiIODPlMjM5gb
rviqP5D5PKfmHCCVcHMsw/WCCAszVWwgZ56hB65HeVDtM7FaC6y46Ue82PmRVxfd
fiwkPbaE+yjPOUvO60bbzCO2p95q6qBtOKhL4rYL3mZu+/6LXIXbZNnViEalZbDa
KvhLOyq8KYUhim4nrqCP7vFdp3ehzkyjCbZhHmcN9QGDkUhKpo4ZzzZvCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJDjKgXZ2Y+uCElt0q33p421s1wSMB8GA1UdIwQY
MBaAFB5l7eO2qudHXDVLHpuE1qeDKwd7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG1YdDQ3YXE1MGRjTlVzZW00VFdwNE1yQjNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9jOTkxZWYtODRiNC00OTZmLWE4NTYt
NWNlNGQ4ZGJkMTU5LzEva09NcUJkblpqNjRJU1czU3JmZW5qYld6WEJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9jOTkxZWYtODRiNC00OTZmLWE4NTYtNWNlNGQ4ZGJkMTU5
LzEvSG1YdDQ3YXE1MGRjTlVzZW00VFdwNE1yQjNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTX5MA0G
CSqGSIb3DQEBCwUAA4IBAQAUDsruXmm/Nu08C3AoQWVY6fVX2rqu3ehMfBflCqjH
laFNJ22lV8S/gyqnpw8/Ex7El+lw1mt+fwbgVNo6UhFGfCUfKEyWGv8rZkl1wxcC
GxcJd/Gv8tHS76cw9cf+8zX8BI56iWIq93ysq/V7EBswRz6qaM9ZgTq0jN3chAiY
9vmZugvEKDXydK56EW8kwklSt2IcNL4wCxdq0KJJT1942bz97pNAsn7FDz+SXcZ2
I1E2/U3QEzvLO9obl3Ofw6JFo0KXqBUMwnu/HlocVVnq8KjdN1VEjKQVWnh06omm
sgMaqaQ+pkscn3yO3ouCn1mu2TaMndgLw5/KVZV2rmA5
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:27 2024 by rpki-client on console-fra.rpki-client.org