Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/KaSkwfDiJrXy3nINEaeoRNNdD_M.roa
File: KaSkwfDiJrXy3nINEaeoRNNdD_M.roa (raw, json)
Hash identifier: i/oStmEuvxxvFGBLQd4qE+P1fPbH8yZAMmZlVKMkDos=
Subject key identifier: 29:A4:A4:C1:F0:E2:26:B5:F2:DE:72:0D:11:A7:A8:44:D3:5D:0F:F3
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0188D8AFDF31AB71E2FB5F8BBCD464CD494B
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/KaSkwfDiJrXy3nINEaeoRNNdD_M.roa
Signing time: Tue 20 Jun 2023 12:03:04 +0000
ROA not before: Tue 20 Jun 2023 12:03:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51248
IP address blocks: 45.140.167.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 18 Sep 2023 17:25:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:af:df:31:ab:71:e2:fb:5f:8b:bc:d4:64:cd:49:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jun 20 12:03:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29a4a4c1f0e226b5f2de720d11a7a844d35d0ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ac:a7:72:7d:5c:8d:ed:ac:cd:94:66:ed:27:
5c:86:b3:64:2f:ce:9f:33:9e:45:d5:9f:ec:22:9b:
7f:b5:a3:ad:37:eb:6d:d5:9c:39:91:bb:e3:30:27:
fd:91:23:1d:54:95:eb:38:a9:8a:55:98:6e:0d:7a:
76:01:d4:1f:18:e3:de:56:9a:e3:aa:dc:a6:6d:d8:
b7:e5:d8:79:08:b1:d2:67:cb:b0:85:32:39:2f:bb:
17:b5:85:48:fc:f9:9a:36:92:0a:3b:76:60:38:91:
a9:d7:5e:a3:fa:02:66:2c:96:34:8b:49:84:de:6c:
23:e3:69:7a:ef:f4:e1:30:da:7d:01:a9:97:26:64:
6f:ee:af:f1:c1:12:ff:b4:61:74:31:41:ef:94:5b:
57:70:6c:55:63:d9:53:ba:30:86:82:af:8c:bb:16:
b7:bc:99:e0:4d:c6:f1:74:36:5a:8c:4c:42:92:75:
b0:b8:c0:49:9a:e9:b2:da:a8:35:ff:f4:b3:a4:c0:
f7:4f:fa:4b:c3:91:c7:9b:c8:3f:74:ed:07:28:7b:
b3:55:73:0f:fa:a8:60:96:0b:54:f0:ef:e1:43:c9:
a1:a9:e5:25:8a:d8:31:03:9d:b2:89:9b:84:6a:5e:
24:d8:b9:e4:ef:d9:61:c9:70:dc:3f:cb:0e:88:6e:
28:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A4:A4:C1:F0:E2:26:B5:F2:DE:72:0D:11:A7:A8:44:D3:5D:0F:F3
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/KaSkwfDiJrXy3nINEaeoRNNdD_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.167.0/24
Signature Algorithm: sha256WithRSAEncryption
52:67:f4:81:db:6b:a5:74:6c:81:b3:f2:a7:2a:44:ee:92:d1:
c6:a1:2f:a4:f4:9e:03:3a:4f:74:51:f4:8c:e1:5c:3a:bf:74:
7e:d6:8b:1e:5b:4e:fd:93:95:94:27:55:12:aa:69:12:71:c7:
a3:e1:7d:59:a6:c0:ed:09:25:20:e2:ed:b8:ee:50:c3:dc:57:
fb:35:82:97:58:d1:cc:39:d7:97:52:c3:22:62:37:6c:be:dd:
1c:14:b1:a6:66:c8:03:e5:8d:a7:cd:e4:07:d7:71:7f:d8:f4:
f9:5e:ac:74:14:ec:14:73:de:81:46:a2:60:5e:21:49:22:6c:
ba:30:95:09:a1:f2:38:fb:ac:88:39:d8:8e:a4:39:2c:86:e7:
25:0e:30:d4:06:bd:66:66:c4:27:d3:e3:65:b0:f8:a4:6e:2f:
35:82:5d:11:24:d9:fd:03:ae:98:4f:59:7f:ab:69:73:26:6e:
f3:fc:a2:3b:67:8c:6e:8e:ac:70:bd:d0:a1:dd:a6:f7:d4:1d:
87:09:9d:c4:4e:56:c9:d6:57:d5:2f:ce:5c:dc:4e:d2:00:6f:
06:62:ca:32:93:83:73:18:91:5f:a7:c2:03:69:44:8b:9b:86:
9f:f8:75:d1:1f:63:2b:d5:2c:4f:11:49:99:b2:fa:eb:42:0f:
3b:2a:d5:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjYr98xq3Hi+1+LvNRkzUlLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjMwNjIwMTIwMzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWE0YTRjMWYwZTIyNmI1ZjJkZTcyMGQxMWE3YTg0NGQzNWQwZmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhayncn1cje2szZRm7SdchrNkL86f
M55F1Z/sIpt/taOtN+tt1Zw5kbvjMCf9kSMdVJXrOKmKVZhuDXp2AdQfGOPeVprj
qtymbdi35dh5CLHSZ8uwhTI5L7sXtYVI/PmaNpIKO3ZgOJGp116j+gJmLJY0i0mE
3mwj42l67/ThMNp9AamXJmRv7q/xwRL/tGF0MUHvlFtXcGxVY9lTujCGgq+Muxa3
vJngTcbxdDZajExCknWwuMBJmumy2qg1//SzpMD3T/pLw5HHm8g/dO0HKHuzVXMP
+qhglgtU8O/hQ8mhqeUlitgxA52yiZuEal4k2Lnk79lhyXDcP8sOiG4oYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCmkpMHw4ia18t5yDRGnqETTXQ/zMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvS2FTa3dmRGlKclh5M25JTkVhZW9STk5kRF9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYynMA0G
CSqGSIb3DQEBCwUAA4IBAQBSZ/SB22uldGyBs/KnKkTuktHGoS+k9J4DOk90UfSM
4Vw6v3R+1oseW079k5WUJ1USqmkSccej4X1ZpsDtCSUg4u247lDD3Ff7NYKXWNHM
OdeXUsMiYjdsvt0cFLGmZsgD5Y2nzeQH13F/2PT5Xqx0FOwUc96BRqJgXiFJImy6
MJUJofI4+6yIOdiOpDkshuclDjDUBr1mZsQn0+NlsPikbi81gl0RJNn9A66YT1l/
q2lzJm7z/KI7Z4xujqxwvdCh3ab31B2HCZ3ETlbJ1lfVL85c3E7SAG8GYsoyk4Nz
GJFfp8IDaUSLm4af+HXRH2Mr1SxPEUmZsvrrQg87KtXm
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org