Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KRown8mHbFn3YPU03NMQkCKxccA.roa
File: KRown8mHbFn3YPU03NMQkCKxccA.roa (raw, json)
Hash identifier: 6sJ7AC3tDgxKwBN455RXmJ7UHJNXWyUYN6kbgXBlV1I=
Subject key identifier: 29:1A:30:9F:C9:87:6C:59:F7:60:F5:34:DC:D3:10:90:22:B1:71:C0
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018A934CFA4A25523FCC8446CEE2FA28F7BE
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KRown8mHbFn3YPU03NMQkCKxccA.roa
Signing time: Thu 14 Sep 2023 10:46:50 +0000
ROA not before: Thu 14 Sep 2023 10:46:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399114
IP address blocks: 185.80.197.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:4c:fa:4a:25:52:3f:cc:84:46:ce:e2:fa:28:f7:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Sep 14 10:46:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=291a309fc9876c59f760f534dcd3109022b171c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ac:7a:93:57:d2:4d:af:18:4d:42:0f:ed:e7:
75:c5:0e:e4:01:48:35:b6:e5:a1:2b:9a:d3:50:7f:
83:4f:e3:03:d1:86:eb:97:e2:4f:66:41:3f:86:f9:
00:10:7b:8f:19:51:77:26:70:de:79:a2:a3:f7:8d:
62:1d:19:40:d3:61:61:6d:40:32:5d:30:b0:3d:c2:
af:05:80:e3:4a:e6:13:4a:f0:66:90:f3:ec:8d:7f:
69:44:a0:a8:0f:90:30:e3:57:44:16:2e:ef:61:a2:
82:1c:7e:df:cb:5e:c7:6d:2d:01:4a:77:21:6d:a4:
3c:59:a0:d5:87:1d:26:02:28:69:16:9d:76:2e:fa:
90:74:90:b8:3e:42:47:b4:07:a2:6e:ff:d4:fb:d8:
0d:87:d0:57:e0:bd:1c:e2:17:15:fa:4b:6e:0b:c2:
86:f6:38:87:50:06:80:1e:50:08:8f:77:52:9f:ca:
5c:37:44:ff:3f:4f:5d:ea:5c:63:1c:4e:ac:92:e1:
d6:d4:c5:2b:6e:b5:3f:9a:b6:f5:21:25:cf:f6:17:
be:c5:b6:3d:0c:bc:c6:35:41:21:5d:52:71:28:46:
e6:01:bf:27:f2:da:d9:89:81:7a:af:70:53:1b:19:
28:a1:2f:f0:ef:cc:a7:b9:3b:1d:56:01:07:45:f4:
2b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1A:30:9F:C9:87:6C:59:F7:60:F5:34:DC:D3:10:90:22:B1:71:C0
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KRown8mHbFn3YPU03NMQkCKxccA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.197.0/24
Signature Algorithm: sha256WithRSAEncryption
44:54:57:b2:51:5c:67:09:09:45:83:27:45:6b:9f:c6:c2:6f:
71:57:aa:cb:d3:f4:15:5c:2d:df:e9:c3:10:0c:a8:f3:26:a9:
d5:3a:dc:87:a6:c3:d4:1c:71:a4:3f:88:04:21:20:65:8e:e6:
9f:19:ba:96:93:f1:5a:6b:0b:af:78:86:bf:f8:d0:6e:0c:21:
c5:b0:d8:ac:9d:5b:d1:56:a3:f0:e1:28:c9:93:00:74:20:ef:
91:86:0f:22:e6:4f:34:45:fa:af:c8:30:75:b8:6c:5b:88:03:
d4:51:46:28:aa:a6:1e:c3:b8:fb:69:e6:98:6d:20:1a:81:cf:
2b:03:35:ba:98:46:a7:a5:27:94:b9:30:5a:6f:94:26:bd:79:
3c:6f:64:a4:24:81:51:be:96:f4:89:17:05:2f:bc:2f:69:97:
3e:e7:0c:2c:8a:41:a4:a3:a2:d6:0b:70:7c:57:fe:dd:76:57:
2d:92:be:15:0b:f3:1d:db:d4:d2:04:26:89:fc:90:b8:2f:0f:
28:79:ab:eb:6d:d4:9e:62:d5:9a:64:3b:49:de:f0:4b:da:ea:
29:2c:91:2f:6b:bb:1d:11:47:09:a0:b4:ae:4b:9c:79:77:fb:
52:c5:40:ca:c0:d2:be:4f:ef:42:65:81:58:01:0e:a5:46:4d:
66:e1:16:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqTTPpKJVI/zIRGzuL6KPe+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjMwOTE0MTA0NjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTFhMzA5ZmM5ODc2YzU5Zjc2MGY1MzRkY2QzMTA5MDIyYjE3MWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiKx6k1fSTa8YTUIP7ed1xQ7kAUg1
tuWhK5rTUH+DT+MD0Ybrl+JPZkE/hvkAEHuPGVF3JnDeeaKj941iHRlA02FhbUAy
XTCwPcKvBYDjSuYTSvBmkPPsjX9pRKCoD5Aw41dEFi7vYaKCHH7fy17HbS0BSnch
baQ8WaDVhx0mAihpFp12LvqQdJC4PkJHtAeibv/U+9gNh9BX4L0c4hcV+ktuC8KG
9jiHUAaAHlAIj3dSn8pcN0T/P09d6lxjHE6skuHW1MUrbrU/mrb1ISXP9he+xbY9
DLzGNUEhXVJxKEbmAb8n8trZiYF6r3BTGxkooS/w78ynuTsdVgEHRfQrLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCkaMJ/Jh2xZ92D1NNzTEJAisXHAMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvS1Jvd244bUhiRm4zWVBVMDNOTVFrQ0t4Y2NBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVDFMA0G
CSqGSIb3DQEBCwUAA4IBAQBEVFeyUVxnCQlFgydFa5/Gwm9xV6rL0/QVXC3f6cMQ
DKjzJqnVOtyHpsPUHHGkP4gEISBljuafGbqWk/FaawuveIa/+NBuDCHFsNisnVvR
VqPw4SjJkwB0IO+Rhg8i5k80RfqvyDB1uGxbiAPUUUYoqqYew7j7aeaYbSAagc8r
AzW6mEanpSeUuTBab5QmvXk8b2SkJIFRvpb0iRcFL7wvaZc+5wwsikGko6LWC3B8
V/7ddlctkr4VC/Md29TSBCaJ/JC4Lw8oeavrbdSeYtWaZDtJ3vBL2uopLJEva7sd
EUcJoLSuS5x5d/tSxUDKwNK+T+9CZYFYAQ6lRk1m4RY2
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:47 2024 by rpki-client on console-fra.rpki-client.org