Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/KPa87prKJFxz3XQK8ThL-amCN50.roa
File: KPa87prKJFxz3XQK8ThL-amCN50.roa (raw, json)
Hash identifier: OJrbeJMy08f+t7Z4abQkpJ4ffGjXDyPOphsd2kHMaL4=
Subject key identifier: 28:F6:BC:EE:9A:CA:24:5C:73:DD:74:0A:F1:38:4B:F9:A9:82:37:9D
Certificate issuer: /CN=d8fc6e45181d839fd10e4a902762f26c9a646796
Certificate serial: 01856CC15B8E79E08D9E0FA40F450DFBCF14
Authority key identifier: D8:FC:6E:45:18:1D:83:9F:D1:0E:4A:90:27:62:F2:6C:9A:64:67:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/KPa87prKJFxz3XQK8ThL-amCN50.roa
Signing time: Sun 01 Jan 2023 09:54:49 +0000
ROA not before: Sun 01 Jan 2023 09:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48586
IP address blocks: 80.92.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:5b:8e:79:e0:8d:9e:0f:a4:0f:45:0d:fb:cf:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8fc6e45181d839fd10e4a902762f26c9a646796
Validity
Not Before: Jan 1 09:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28f6bcee9aca245c73dd740af1384bf9a982379d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b2:ba:ea:7c:99:40:d1:82:d0:44:9d:dd:3d:
e4:ed:ef:7d:b8:f4:05:e0:0e:c1:ab:f0:4b:9e:57:
7e:24:57:1f:1c:83:7f:f9:a4:dc:29:ee:95:77:db:
cc:48:90:e3:43:7f:70:88:b2:c0:7a:a6:92:da:64:
7a:92:a3:98:38:27:27:46:01:e8:31:60:79:16:fd:
d3:f5:56:68:30:40:89:d6:cb:80:05:5f:7b:29:fa:
86:22:77:eb:98:a0:3c:a9:9e:62:d1:57:84:fd:5c:
f8:d9:db:0f:bc:36:87:de:92:30:0a:03:65:86:9a:
79:17:28:31:d6:e8:e0:db:b1:c9:04:cc:e0:d9:39:
5e:90:a2:1f:37:9d:40:e1:f5:a2:c9:40:61:9d:0b:
ed:e1:8d:7c:a9:2a:50:d3:f9:e9:25:7f:76:23:82:
b1:aa:48:a6:7a:f2:14:39:2e:d9:f1:d8:a6:74:4d:
55:25:20:3e:e2:ee:db:0e:a2:80:15:a3:bb:e5:1d:
ff:5e:20:7a:fa:77:73:05:0b:20:5b:47:80:00:85:
4d:1a:5e:35:56:ea:61:f3:4b:81:f1:df:ce:09:a2:
b4:90:76:10:15:f1:ee:a5:1d:93:6f:5f:5a:af:d0:
22:23:af:3b:b0:8e:9d:0e:bf:f1:31:cc:8b:0f:99:
43:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F6:BC:EE:9A:CA:24:5C:73:DD:74:0A:F1:38:4B:F9:A9:82:37:9D
X509v3 Authority Key Identifier:
keyid:D8:FC:6E:45:18:1D:83:9F:D1:0E:4A:90:27:62:F2:6C:9A:64:67:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/KPa87prKJFxz3XQK8ThL-amCN50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/62343c-edbe-4a8a-84f2-7eb2eb85b84a/1/2PxuRRgdg5_RDkqQJ2LybJpkZ5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.92.207.0/24
Signature Algorithm: sha256WithRSAEncryption
77:39:77:63:35:f7:2c:34:0a:c6:09:9d:f7:88:b1:64:3d:42:
8f:94:20:72:02:db:d2:a2:af:cf:92:70:25:58:c4:df:55:99:
9a:51:70:7a:2d:7d:67:d3:e5:05:77:1d:10:9f:19:b3:02:14:
81:1b:52:36:ca:f8:51:df:9e:aa:da:b1:8b:83:a0:bc:04:02:
c3:af:1a:44:2d:b5:f6:27:cf:3c:bd:ca:cc:56:3f:6c:a3:11:
b0:53:ab:9b:04:67:60:a8:1d:ee:03:a0:90:f1:59:fb:1f:7a:
f6:09:08:55:fd:c6:48:71:7f:97:4e:57:ba:da:24:af:55:b8:
d8:0f:25:74:cd:48:45:ad:f3:d0:21:cd:3f:46:fa:36:89:dd:
6c:03:08:ef:9e:83:cc:55:0d:ba:44:e3:cd:d4:27:91:15:2b:
91:24:85:a8:ff:4a:fb:d3:78:ef:bc:fe:6d:23:c5:49:ea:06:
cb:89:fb:08:ca:26:14:92:37:fa:83:58:01:db:dc:9c:72:1a:
68:dc:8c:9c:3c:7c:26:18:d6:9d:8c:98:c1:86:03:1d:60:77:
59:ec:50:f4:43:37:cb:ac:97:28:fe:ac:31:06:63:86:70:59:
2e:63:69:d5:0b:ed:a4:cd:48:34:29:92:a4:4c:d6:8c:83:01:
cb:0e:05:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVswVuOeeCNng+kD0UN+88UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZmM2ZTQ1MTgxZDgzOWZkMTBlNGE5MDI3NjJmMjZjOWE2
NDY3OTYwHhcNMjMwMTAxMDk1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGY2YmNlZTlhY2EyNDVjNzNkZDc0MGFmMTM4NGJmOWE5ODIzNzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbK66nyZQNGC0ESd3T3k7e99uPQF
4A7Bq/BLnld+JFcfHIN/+aTcKe6Vd9vMSJDjQ39wiLLAeqaS2mR6kqOYOCcnRgHo
MWB5Fv3T9VZoMECJ1suABV97KfqGInfrmKA8qZ5i0VeE/Vz42dsPvDaH3pIwCgNl
hpp5Fygx1ujg27HJBMzg2TlekKIfN51A4fWiyUBhnQvt4Y18qSpQ0/npJX92I4Kx
qkimevIUOS7Z8dimdE1VJSA+4u7bDqKAFaO75R3/XiB6+ndzBQsgW0eAAIVNGl41
Vuph80uB8d/OCaK0kHYQFfHupR2Tb19ar9AiI687sI6dDr/xMcyLD5lDhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCj2vO6ayiRcc910CvE4S/mpgjedMB8GA1UdIwQY
MBaAFNj8bkUYHYOf0Q5KkCdi8myaZGeWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlB4dVJSZ2RnNV9SRGtxUUoyTHliSnBrWjVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82MjM0M2MtZWRiZS00YThhLTg0ZjIt
N2ViMmViODViODRhLzEvS1BhODdwcktKRnh6M1hRSzhUaEwtYW1DTjUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82MjM0M2MtZWRiZS00YThhLTg0ZjItN2ViMmViODViODRh
LzEvMlB4dVJSZ2RnNV9SRGtxUUoyTHliSnBrWjVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUFzPMA0G
CSqGSIb3DQEBCwUAA4IBAQB3OXdjNfcsNArGCZ33iLFkPUKPlCByAtvSoq/PknAl
WMTfVZmaUXB6LX1n0+UFdx0QnxmzAhSBG1I2yvhR356q2rGLg6C8BALDrxpELbX2
J888vcrMVj9soxGwU6ubBGdgqB3uA6CQ8Vn7H3r2CQhV/cZIcX+XTle62iSvVbjY
DyV0zUhFrfPQIc0/Rvo2id1sAwjvnoPMVQ26ROPN1CeRFSuRJIWo/0r703jvvP5t
I8VJ6gbLifsIyiYUkjf6g1gB29ycchpo3IycPHwmGNadjJjBhgMdYHdZ7FD0QzfL
rJco/qwxBmOGcFkuY2nVC+2kzUg0KZKkTNaMgwHLDgWj
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:53 2024 by rpki-client on console-fra.rpki-client.org