Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/Kf-whfEe2749wQsrGyG9cqeM-VM.roa
File: Kf-whfEe2749wQsrGyG9cqeM-VM.roa (raw, json)
Hash identifier: BbrGvU9fwLyBoofCYIEaMTvBTyhxxVB9NLt408OiSNg=
Subject key identifier: 29:FF:B0:85:F1:1E:DB:BE:3D:C1:0B:2B:1B:21:BD:72:A7:8C:F9:53
Certificate issuer: /CN=ebb2a42550e5e2b4aa1a473b2b371bc28341a16a
Certificate serial: 0185718334791361027347F9BFC162B1B6EE
Authority key identifier: EB:B2:A4:25:50:E5:E2:B4:AA:1A:47:3B:2B:37:1B:C2:83:41:A1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67KkJVDl4rSqGkc7KzcbwoNBoWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/Kf-whfEe2749wQsrGyG9cqeM-VM.roa
Signing time: Mon 02 Jan 2023 08:05:02 +0000
ROA not before: Mon 02 Jan 2023 08:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203897
IP address blocks: 91.229.124.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:34:79:13:61:02:73:47:f9:bf:c1:62:b1:b6:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb2a42550e5e2b4aa1a473b2b371bc28341a16a
Validity
Not Before: Jan 2 08:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ffb085f11edbbe3dc10b2b1b21bd72a78cf953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:28:c1:6a:4b:f8:31:d3:b0:9a:84:c8:4b:f7:
20:83:5f:9b:c8:67:0f:16:b2:b6:28:42:c2:a5:c1:
dd:54:df:1c:54:ba:44:57:e9:ac:4c:38:64:ed:7e:
79:ec:ed:7d:84:a3:fa:53:35:f3:44:3b:8a:ca:39:
f3:00:f3:cd:51:30:3d:5c:e4:01:0a:91:67:e6:a9:
83:86:c0:8b:2c:64:84:4b:e3:41:39:be:73:c8:a4:
0a:3c:f6:8f:95:01:e6:5e:93:97:52:1e:8d:85:45:
df:e0:fa:dd:c6:de:6e:99:af:f5:fc:7e:29:42:98:
9f:82:fa:e7:c6:d8:52:43:52:19:b2:ae:2c:6b:ef:
1a:af:42:d5:b2:8f:e1:3c:5c:44:63:a8:64:0b:eb:
46:b3:fe:6f:c6:65:35:b2:7f:79:ac:ad:80:c9:c9:
35:ef:60:11:c3:0a:35:60:16:59:e5:0c:d6:be:17:
f4:23:ad:8b:f9:18:98:27:ef:df:ad:63:33:e7:f0:
89:ba:89:47:8d:fe:4b:b2:f7:a4:7d:61:66:ae:46:
1c:11:0a:c8:34:1b:4f:7c:47:2f:f3:36:e1:3b:42:
a6:90:3b:38:15:9f:b1:8b:ff:9f:2d:8a:1d:61:24:
c4:1b:ab:67:b4:49:94:52:bb:c7:6b:a1:87:4f:d1:
c2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FF:B0:85:F1:1E:DB:BE:3D:C1:0B:2B:1B:21:BD:72:A7:8C:F9:53
X509v3 Authority Key Identifier:
keyid:EB:B2:A4:25:50:E5:E2:B4:AA:1A:47:3B:2B:37:1B:C2:83:41:A1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67KkJVDl4rSqGkc7KzcbwoNBoWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/Kf-whfEe2749wQsrGyG9cqeM-VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e58b40-dde6-4840-810c-31f92945dffd/1/67KkJVDl4rSqGkc7KzcbwoNBoWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.124.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:1b:f5:1a:73:50:86:42:a0:28:5c:b5:58:de:ef:20:61:f0:
07:c3:eb:38:87:ad:9f:19:85:30:7d:a5:13:b5:82:66:95:d6:
1f:01:01:43:ad:85:3d:c6:bf:79:37:d6:ec:b3:85:1b:fd:b4:
a3:39:0c:53:ff:3f:1e:1b:63:53:10:29:0d:d3:14:b7:43:5c:
c8:2d:54:1e:45:b5:09:b5:07:6f:69:ea:64:5a:3a:cb:6b:2f:
8c:0c:54:97:14:0f:5e:90:b5:20:46:cc:b0:f9:e5:04:e3:72:
8a:75:1b:63:67:fc:ba:94:d9:95:5a:20:60:63:89:b0:9a:d3:
c6:fe:7b:e3:86:d2:3d:b7:d7:14:ad:0b:10:e2:09:cb:37:a7:
ef:65:2b:18:a4:e4:eb:8d:fd:fd:e2:52:9a:a0:9d:a1:a4:de:
8f:f8:b6:cd:a5:4a:78:82:f6:e5:dc:a7:d4:4b:92:a5:b2:82:
63:e2:04:9e:88:73:0b:4a:0e:f0:8d:ba:42:72:0d:46:2d:e8:
ad:78:97:8d:bb:e8:96:b1:64:4a:d2:87:b0:23:22:ef:76:c3:
8e:a7:3d:8c:d1:92:91:d8:6b:93:57:ce:e7:2d:fa:14:b7:6b:
a6:ad:0e:36:35:16:36:32:78:1a:ff:d6:98:13:f6:64:85:23:
65:2d:8a:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxgzR5E2ECc0f5v8FisbbuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYjJhNDI1NTBlNWUyYjRhYTFhNDczYjJiMzcxYmMyODM0
MWExNmEwHhcNMjMwMTAyMDgwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWZmYjA4NWYxMWVkYmJlM2RjMTBiMmIxYjIxYmQ3MmE3OGNmOTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApyjBakv4MdOwmoTIS/cgg1+byGcP
FrK2KELCpcHdVN8cVLpEV+msTDhk7X557O19hKP6UzXzRDuKyjnzAPPNUTA9XOQB
CpFn5qmDhsCLLGSES+NBOb5zyKQKPPaPlQHmXpOXUh6NhUXf4Prdxt5uma/1/H4p
QpifgvrnxthSQ1IZsq4sa+8ar0LVso/hPFxEY6hkC+tGs/5vxmU1sn95rK2Ayck1
72ARwwo1YBZZ5QzWvhf0I62L+RiYJ+/frWMz5/CJuolHjf5LsvekfWFmrkYcEQrI
NBtPfEcv8zbhO0KmkDs4FZ+xi/+fLYodYSTEG6tntEmUUrvHa6GHT9HCMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCn/sIXxHtu+PcELKxshvXKnjPlTMB8GA1UdIwQY
MBaAFOuypCVQ5eK0qhpHOys3G8KDQaFqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjdLa0pWRGw0clNxR2tjN0t6Y2J3b05Cb1dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9lNThiNDAtZGRlNi00ODQwLTgxMGMt
MzFmOTI5NDVkZmZkLzEvS2Ytd2hmRWUyNzQ5d1Fzckd5RzljcWVNLVZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC9lNThiNDAtZGRlNi00ODQwLTgxMGMtMzFmOTI5NDVkZmZk
LzEvNjdLa0pWRGw0clNxR2tjN0t6Y2J3b05Cb1dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+V8MA0G
CSqGSIb3DQEBCwUAA4IBAQB/G/Uac1CGQqAoXLVY3u8gYfAHw+s4h62fGYUwfaUT
tYJmldYfAQFDrYU9xr95N9bss4Ub/bSjOQxT/z8eG2NTECkN0xS3Q1zILVQeRbUJ
tQdvaepkWjrLay+MDFSXFA9ekLUgRsyw+eUE43KKdRtjZ/y6lNmVWiBgY4mwmtPG
/nvjhtI9t9cUrQsQ4gnLN6fvZSsYpOTrjf394lKaoJ2hpN6P+LbNpUp4gvbl3KfU
S5KlsoJj4gSeiHMLSg7wjbpCcg1GLeiteJeNu+iWsWRK0oewIyLvdsOOpz2M0ZKR
2GuTV87nLfoUt2umrQ42NRY2Mnga/9aYE/ZkhSNlLYqv
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:40 2024 by rpki-client on console-fra.rpki-client.org