Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KmrOXeW9FGHOKZc8QT-tcuk0wEI.roa
File: KmrOXeW9FGHOKZc8QT-tcuk0wEI.roa (raw, json)
Hash identifier: Kyn2UHYHLBSuWncpMC97K19QBryhZemzH0DPYlVFQhw=
Subject key identifier: 2A:6A:CE:5D:E5:BD:14:61:CE:29:97:3C:41:3F:AD:72:E9:34:C0:42
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 01865B8266EE3A1FDAF0B431C9FF1AC2B459
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KmrOXeW9FGHOKZc8QT-tcuk0wEI.roa
Signing time: Thu 16 Feb 2023 18:35:17 +0000
ROA not before: Thu 16 Feb 2023 18:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49496
IP address blocks: 86.104.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5b:82:66:ee:3a:1f:da:f0:b4:31:c9:ff:1a:c2:b4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Feb 16 18:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a6ace5de5bd1461ce29973c413fad72e934c042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:48:70:46:f4:1b:0d:eb:83:f6:21:f8:1b:
80:fb:23:bb:9c:65:81:04:9d:bd:bb:4d:9c:9d:1f:
a6:fa:cf:5f:b0:c1:bc:4a:21:f9:c0:bd:41:1c:76:
f5:20:e0:c7:a2:a2:35:48:96:7a:4e:25:60:c8:4e:
a7:07:f1:c3:6e:60:53:8c:61:3d:15:e7:0f:f4:84:
12:62:b4:a4:cf:9e:c9:58:a2:d7:b5:d8:25:98:76:
7a:2d:5e:da:9a:2d:10:c8:ca:5f:c4:4e:0f:09:fe:
98:26:f6:84:49:95:11:1d:77:da:8d:b6:7f:0b:97:
b5:b6:7c:e3:36:4a:f7:c4:ad:1b:43:ea:90:a3:0c:
c2:e7:c2:be:26:97:36:c5:0b:39:b4:cf:c4:8f:6f:
5b:27:76:e6:50:b5:c1:8f:b5:53:19:b9:4b:a5:03:
72:ca:18:da:19:12:7a:48:3c:50:b1:b8:b1:61:db:
da:ba:99:ae:e4:a9:30:82:09:37:68:bf:6f:f2:f2:
47:c6:fc:94:0a:04:4d:91:70:dc:ae:95:a7:db:c6:
09:45:65:06:cd:4a:55:90:42:d6:85:12:bf:fa:b9:
a6:00:2e:80:ce:a3:e8:e8:9e:97:10:75:d9:ed:99:
eb:b8:8b:54:7a:99:25:8c:d0:1c:f2:d1:08:03:49:
33:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:6A:CE:5D:E5:BD:14:61:CE:29:97:3C:41:3F:AD:72:E9:34:C0:42
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/KmrOXeW9FGHOKZc8QT-tcuk0wEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:c0:67:45:3e:ba:02:ec:89:f2:e6:63:fa:2e:c1:92:10:65:
c7:a7:96:34:f6:99:59:df:f3:d2:1d:21:97:8f:9e:8e:b5:8d:
c0:5d:61:fe:18:de:b6:17:f1:7a:80:22:3d:36:7c:e1:a4:7b:
28:bc:21:91:92:7f:34:44:ed:e5:cd:c2:c2:a3:a8:cc:d6:e9:
3f:74:e8:3d:af:e8:5b:c6:dd:12:81:9a:4c:0c:d0:11:0d:6e:
c5:03:31:2c:32:cb:28:cc:f6:a9:e6:34:e6:ae:45:42:2a:77:
4d:c7:37:ef:2e:9d:32:80:ae:ba:19:29:c8:6d:e3:58:0a:62:
f0:8c:4e:2c:54:50:b6:71:5e:e3:04:6e:c3:8a:4a:40:3d:bf:
e3:04:cb:09:26:40:89:78:29:8c:17:4c:5d:e5:b2:31:a5:20:
28:b1:ad:3b:ab:55:85:2b:2b:85:08:ad:3a:82:01:42:a3:f4:
fb:7e:f3:35:5f:65:69:91:44:39:51:9e:a6:58:31:ec:ac:f8:
b5:87:df:b9:3b:d6:a5:be:da:b8:cc:85:a9:49:f1:d2:88:80:
4c:a5:d6:30:b6:2e:1b:ff:1d:7f:36:6a:c9:67:a4:7f:6f:6d:
8d:d7:6a:fd:83:a6:ef:52:ea:25:bb:cb:c1:92:be:d2:39:6f:
20:b8:e0:93
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYZbgmbuOh/a8LQxyf8awrRZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjMwMjE2MTgzNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYTZhY2U1ZGU1YmQxNDYxY2UyOTk3M2M0MTNmYWQ3MmU5MzRjMDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9ZIcEb0Gw3rg/Yh+BuA+yO7nGWB
BJ29u02cnR+m+s9fsMG8SiH5wL1BHHb1IODHoqI1SJZ6TiVgyE6nB/HDbmBTjGE9
FecP9IQSYrSkz57JWKLXtdglmHZ6LV7ami0QyMpfxE4PCf6YJvaESZURHXfajbZ/
C5e1tnzjNkr3xK0bQ+qQowzC58K+Jpc2xQs5tM/Ej29bJ3bmULXBj7VTGblLpQNy
yhjaGRJ6SDxQsbixYdvaupmu5Kkwggk3aL9v8vJHxvyUCgRNkXDcrpWn28YJRWUG
zUpVkELWhRK/+rmmAC6AzqPo6J6XEHXZ7ZnruItUepkljNAc8tEIA0kzIQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFCpqzl3lvRRhzimXPEE/rXLpNMBCMB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL0ttck9YZVc5RkdIT0taYzhRVC10Y3VrMHdFSS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABWaBIw
DQYJKoZIhvcNAQELBQADggEBAOzAZ0U+ugLsifLmY/ouwZIQZcenljT2mVnf89Id
IZePno61jcBdYf4Y3rYX8XqAIj02fOGkeyi8IZGSfzRE7eXNwsKjqMzW6T906D2v
6FvG3RKBmkwM0BENbsUDMSwyyyjM9qnmNOauRUIqd03HN+8unTKArroZKcht41gK
YvCMTixUULZxXuMEbsOKSkA9v+MEywkmQIl4KYwXTF3lsjGlICixrTurVYUrK4UI
rTqCAUKj9Pt+8zVfZWmRRDlRnqZYMeys+LWH37k71qW+2rjMhalJ8dKIgEyl1jC2
Lhv/HX82aslnpH9vbY3Xav2Dpu9S6iW7y8GSvtI5byC44JM=
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:05 2024 by rpki-client on console-ams.rpki-client.org