Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/KMvAXlBLkfUw9sZ1OO29dxi2OGk.roa
File: KMvAXlBLkfUw9sZ1OO29dxi2OGk.roa (raw, json)
Hash identifier: /OGHCeVKslV0sC4zgHVX81WSrgpt/6FhyheQhmkdShQ=
Subject key identifier: 28:CB:C0:5E:50:4B:91:F5:30:F6:C6:75:38:ED:BD:77:18:B6:38:69
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018C38F90C460730CF4142EC52655B54F96B
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/KMvAXlBLkfUw9sZ1OO29dxi2OGk.roa
Signing time: Tue 05 Dec 2023 07:54:54 +0000
ROA not before: Tue 05 Dec 2023 07:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215903
IP address blocks: 195.136.108.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:38:f9:0c:46:07:30:cf:41:42:ec:52:65:5b:54:f9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Dec 5 07:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28cbc05e504b91f530f6c67538edbd7718b63869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:86:38:d7:89:30:b3:b6:d7:99:f9:4d:1a:ab:
b0:98:9a:8f:7b:43:84:61:07:63:1e:c7:c2:c0:0b:
8c:97:41:cf:15:2a:2d:b4:9a:7a:36:c5:06:82:14:
08:da:dd:3b:de:17:73:a8:5d:db:fc:65:f7:68:98:
1b:1a:a2:e3:c7:91:60:95:f8:18:5e:81:a7:5d:7c:
b9:7a:40:d0:94:2f:2b:a4:c0:f8:bc:60:b5:fa:28:
87:d1:d7:05:bb:ab:1c:f8:b7:f0:e1:95:31:f2:d5:
f4:d2:a7:f4:00:ea:3b:d3:d8:ba:41:ad:96:89:6b:
e0:82:10:87:77:0b:f3:d8:aa:a4:a9:3b:0b:94:3b:
36:88:62:41:0e:52:c8:6a:29:81:63:70:b1:95:5a:
b6:dc:02:f6:cc:46:33:17:69:f1:51:b0:41:97:73:
67:38:9d:20:3f:e9:f9:e6:69:1e:18:d3:8d:17:20:
ab:b5:48:17:d6:61:7c:27:92:0e:38:88:e2:d8:cc:
51:37:fd:fa:d4:d1:ef:98:17:c0:0c:c4:a0:48:fb:
4d:76:99:0a:76:57:06:93:17:95:dd:5a:1d:1a:40:
6d:8a:a1:ef:70:39:fe:42:81:19:f0:23:91:a2:11:
b7:e1:82:3e:be:f1:a0:38:73:72:a3:33:25:69:e5:
dd:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CB:C0:5E:50:4B:91:F5:30:F6:C6:75:38:ED:BD:77:18:B6:38:69
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/KMvAXlBLkfUw9sZ1OO29dxi2OGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.136.108.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:86:9a:40:97:72:90:4b:fd:ab:de:cc:7b:0e:43:a4:a3:eb:
25:94:70:b9:c4:54:eb:62:00:11:06:b0:bc:00:9c:73:86:7e:
51:23:e7:43:5b:fa:94:45:de:71:eb:4d:f5:03:8c:f4:b4:7b:
37:96:be:bb:62:83:3e:11:1c:ab:e5:e3:0b:85:37:a5:a7:13:
17:e1:c2:e9:2f:90:1a:79:0c:07:82:68:d3:9e:93:d7:57:c7:
38:bd:16:cf:25:6c:72:39:69:0e:d0:b9:38:2a:9b:2e:42:87:
e6:29:e2:00:42:63:48:b1:86:36:f8:19:eb:d8:98:bd:e9:47:
a1:1d:05:20:a6:ac:ae:84:03:c4:b3:9f:57:fc:02:e7:7b:2f:
75:11:b8:c2:78:df:f8:b7:37:1e:6a:52:ac:2f:11:28:7d:e5:
dc:9d:45:97:bb:92:a8:25:0f:2a:f7:cc:61:f2:1d:2c:a2:bd:
87:fa:57:e4:71:5e:66:48:44:f0:d6:b1:29:e3:a1:77:2d:1e:
06:80:81:55:f3:a9:a2:62:3f:04:0a:b8:55:a1:f4:01:e1:fe:
99:48:5c:80:b5:d0:2d:45:cf:b0:28:41:c8:53:d5:6f:c4:fe:
17:9e:4a:b5:5e:a1:c8:91:a4:ed:a6:ee:b3:40:42:fc:bf:96:
23:98:64:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw4+QxGBzDPQULsUmVbVPlrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj
MmQ3NmIwHhcNMjMxMjA1MDc1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGNiYzA1ZTUwNGI5MWY1MzBmNmM2NzUzOGVkYmQ3NzE4YjYzODY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIY414kws7bXmflNGquwmJqPe0OE
YQdjHsfCwAuMl0HPFSottJp6NsUGghQI2t073hdzqF3b/GX3aJgbGqLjx5FglfgY
XoGnXXy5ekDQlC8rpMD4vGC1+iiH0dcFu6sc+Lfw4ZUx8tX00qf0AOo709i6Qa2W
iWvgghCHdwvz2KqkqTsLlDs2iGJBDlLIaimBY3CxlVq23AL2zEYzF2nxUbBBl3Nn
OJ0gP+n55mkeGNONFyCrtUgX1mF8J5IOOIji2MxRN/361NHvmBfADMSgSPtNdpkK
dlcGkxeV3VodGkBtiqHvcDn+QoEZ8CORohG34YI+vvGgOHNyozMlaeXdzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCjLwF5QS5H1MPbGdTjtvXcYtjhpMB8GA1UdIwQY
MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt
NTI3NjZiMjRiYWE0LzEvS012QVhsQkxrZlV3OXNaMU9PMjlkeGkyT0drLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0
LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4hsMA0G
CSqGSIb3DQEBCwUAA4IBAQC7hppAl3KQS/2r3sx7DkOko+sllHC5xFTrYgARBrC8
AJxzhn5RI+dDW/qURd5x6031A4z0tHs3lr67YoM+ERyr5eMLhTelpxMX4cLpL5Aa
eQwHgmjTnpPXV8c4vRbPJWxyOWkO0Lk4KpsuQofmKeIAQmNIsYY2+Bnr2Ji96Ueh
HQUgpqyuhAPEs59X/ALney91EbjCeN/4tzcealKsLxEofeXcnUWXu5KoJQ8q98xh
8h0sor2H+lfkcV5mSETw1rEp46F3LR4GgIFV86miYj8ECrhVofQB4f6ZSFyAtdAt
Rc+wKEHIU9VvxP4Xnkq1XqHIkaTtpu6zQEL8v5YjmGSA
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:20 2024 by rpki-client on console-ams.rpki-client.org