Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ktokyBGSmaelwzZ8i39jp3CJqto.roa
File: ktokyBGSmaelwzZ8i39jp3CJqto.roa (raw, json)
Hash identifier: nnn0lK81YY9407d4G12UMjlDwJxe3UlvuQH2CgYR2Zs=
Subject key identifier: 92:DA:24:C8:11:92:99:A7:A5:C3:36:7C:8B:7F:63:A7:70:89:AA:DA
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 0188959D47EC452C5B3C77E1C40D96D90FF2
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ktokyBGSmaelwzZ8i39jp3CJqto.roa
Signing time: Wed 07 Jun 2023 11:28:12 +0000
ROA not before: Wed 07 Jun 2023 11:28:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199545
IP address blocks: 89.23.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:9d:47:ec:45:2c:5b:3c:77:e1:c4:0d:96:d9:0f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Jun 7 11:28:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92da24c8119299a7a5c3367c8b7f63a77089aada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:58:a7:05:9e:c6:15:7e:84:92:5e:2d:e3:
20:93:43:f4:01:5a:dc:4c:15:69:31:86:5f:49:6a:
5f:07:88:98:95:97:ea:6d:88:6f:30:cd:99:59:49:
14:b4:a6:f9:f7:ad:f2:e5:f0:77:82:06:94:54:36:
d1:35:40:6e:5f:a6:a6:8c:f8:bc:ef:95:75:da:8b:
3c:ce:aa:da:0b:c8:67:63:23:7f:53:0e:49:f0:ea:
63:61:23:a3:d1:2b:38:48:6d:ee:74:e7:4d:d9:59:
a2:d6:ea:23:c3:a7:47:96:57:1d:a1:08:9d:dc:e9:
7c:25:2b:4d:c0:cf:46:31:25:87:08:f0:bc:65:6a:
ea:90:24:83:85:79:4c:6a:79:40:8a:cd:91:39:c9:
3f:75:a0:e4:98:be:06:f5:25:55:b3:87:6b:12:7d:
be:34:8a:62:92:dc:2d:da:92:fb:78:69:04:09:4d:
df:dc:94:11:77:c5:1c:2e:88:12:f1:4c:a3:e3:5e:
d7:eb:f8:f1:17:09:64:cb:60:86:c3:aa:d1:bc:44:
22:c1:d3:ad:da:17:4a:4b:d1:54:fd:69:50:cd:e0:
35:8c:3e:5a:68:a6:de:14:bb:fa:4c:30:2a:05:9e:
3a:7d:6b:2b:a3:fe:93:5e:b2:e3:bf:ed:cd:53:b5:
95:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DA:24:C8:11:92:99:A7:A5:C3:36:7C:8B:7F:63:A7:70:89:AA:DA
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/ktokyBGSmaelwzZ8i39jp3CJqto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.86.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:2c:64:19:64:d2:d0:24:bc:c7:b2:af:3c:96:f3:6e:8e:fe:
d6:d4:a6:9a:1b:ff:62:af:13:89:78:9b:44:8f:74:e8:53:de:
ab:e6:fd:3d:50:37:e7:de:11:d7:94:19:cd:92:9f:07:d2:d4:
85:a1:f6:a8:7f:30:97:2b:f9:f5:24:a0:2f:2f:aa:bd:4b:11:
eb:bd:92:51:15:f0:36:1a:d5:87:a6:2c:d8:57:15:12:3f:17:
ba:ea:bd:1e:e6:e6:2f:d6:6f:82:cb:03:39:29:b2:c2:c2:5a:
40:fa:09:90:df:1b:fa:c8:c4:95:46:3b:7c:a1:23:4b:06:0c:
3f:64:37:07:82:f6:03:82:5f:6f:b5:37:fa:d3:82:8a:08:fe:
ad:82:29:d6:21:3d:22:49:c3:66:55:25:9b:36:69:14:3f:60:
2d:74:d5:fc:2b:96:fd:77:f6:f1:bf:68:aa:cc:14:81:bb:b9:
9c:83:63:55:c7:88:f1:c5:86:db:69:e8:ac:c8:10:68:98:0a:
c6:e3:97:36:07:bb:f6:f4:75:f9:26:24:c4:1c:55:0a:e1:05:
73:bc:0a:dd:cb:4f:fb:50:19:d0:4b:5f:d1:ee:84:8f:d9:bc:
4e:e1:86:72:b7:66:b3:12:d4:be:1a:f1:b1:4b:a9:3e:38:89:
2e:09:ba:5a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiVnUfsRSxbPHfhxA2W2Q/yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5NzEzZWYyNTI3N2UxM2RkNzNmNDQxOTZmZGE1Y2VjMGZk
OWNlMTYwHhcNMjMwNjA3MTEyODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmRhMjRjODExOTI5OWE3YTVjMzM2N2M4YjdmNjNhNzcwODlhYWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmr5YpwWexhV+hJJeLeMgk0P0AVrc
TBVpMYZfSWpfB4iYlZfqbYhvMM2ZWUkUtKb5963y5fB3ggaUVDbRNUBuX6amjPi8
75V12os8zqraC8hnYyN/Uw5J8OpjYSOj0Ss4SG3udOdN2Vmi1uojw6dHllcdoQid
3Ol8JStNwM9GMSWHCPC8ZWrqkCSDhXlManlAis2ROck/daDkmL4G9SVVs4drEn2+
NIpiktwt2pL7eGkECU3f3JQRd8UcLogS8Uyj417X6/jxFwlky2CGw6rRvEQiwdOt
2hdKS9FU/WlQzeA1jD5aaKbeFLv6TDAqBZ46fWsro/6TXrLjv+3NU7WV9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJLaJMgRkpmnpcM2fIt/Y6dwiaraMB8GA1UdIwQY
MBaAFOlxPvJSd+E91z9EGW/aXOwP2c4WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEt
MGY2NmMxODg3OTE2LzEva3Rva3lCR1NtYWVsd3paOGkzOWpwM0NKcXRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMTc2ZWItNTZmMi00ODA3LWIxMDEtMGY2NmMxODg3OTE2
LzEvNlhFLThsSjM0VDNYUDBRWmI5cGM3QV9aemhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRdWMA0G
CSqGSIb3DQEBCwUAA4IBAQArLGQZZNLQJLzHsq88lvNujv7W1KaaG/9irxOJeJtE
j3ToU96r5v09UDfn3hHXlBnNkp8H0tSFofaofzCXK/n1JKAvL6q9SxHrvZJRFfA2
GtWHpizYVxUSPxe66r0e5uYv1m+CywM5KbLCwlpA+gmQ3xv6yMSVRjt8oSNLBgw/
ZDcHgvYDgl9vtTf604KKCP6tginWIT0iScNmVSWbNmkUP2AtdNX8K5b9d/bxv2iq
zBSBu7mcg2NVx4jxxYbbaeisyBBomArG45c2B7v29HX5JiTEHFUK4QVzvArdy0/7
UBnQS1/R7oSP2bxO4YZyt2azEtS+GvGxS6k+OIkuCbpa
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:25 2024 by rpki-client on console-fra.rpki-client.org