Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/KcR87M-SUv2L5WsASUzwqjt5F5A.roa
File: KcR87M-SUv2L5WsASUzwqjt5F5A.roa (raw, json)
Hash identifier: uWddFz4O/tO11V5cv+PHNZ5UUHmxeqvn/0Ft5JxchTU=
Subject key identifier: 29:C4:7C:EC:CF:92:52:FD:8B:E5:6B:00:49:4C:F0:AA:3B:79:17:90
Certificate issuer: /CN=7699c189027e25ecc53f98b52ea65ae725d2a730
Certificate serial: 01856FF95F49CF716678295BB6B50662012F
Authority key identifier: 76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/KcR87M-SUv2L5WsASUzwqjt5F5A.roa
Signing time: Mon 02 Jan 2023 00:54:51 +0000
ROA not before: Mon 02 Jan 2023 00:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 185.46.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:5f:49:cf:71:66:78:29:5b:b6:b5:06:62:01:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7699c189027e25ecc53f98b52ea65ae725d2a730
Validity
Not Before: Jan 2 00:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29c47ceccf9252fd8be56b00494cf0aa3b791790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:73:ff:42:56:97:51:16:7e:b3:37:93:ba:53:
a4:8d:e3:27:4f:83:79:19:bd:2c:f6:d6:f2:8e:4b:
7f:67:08:26:eb:1b:96:94:0a:3d:af:8d:1d:2d:79:
2d:19:e2:84:2e:9d:5b:ba:bd:da:a7:9d:32:bc:08:
ab:c0:c4:00:50:04:3b:4f:60:40:9d:03:b3:c1:14:
8f:c7:0e:f1:0c:a1:b6:98:b4:e4:6d:e9:ae:26:17:
fb:aa:96:38:00:08:67:4d:73:20:79:4c:bd:82:cf:
a2:99:5e:e6:c1:fe:44:d6:04:14:09:af:f8:38:bf:
9d:21:93:ee:02:fd:af:84:bd:c7:b7:a4:94:f9:7b:
52:7a:4e:5d:29:f4:46:4b:36:c2:48:7a:3a:a1:b1:
71:60:98:7f:ed:39:5a:60:27:c1:17:9d:af:46:ab:
7e:22:80:9e:92:71:6b:6b:b6:46:46:b9:a5:fe:38:
13:60:48:f3:e0:7a:78:50:f7:bc:60:3c:e6:fa:01:
72:58:05:d8:30:09:d9:b1:47:88:91:0d:dc:95:64:
08:a0:ca:07:87:11:04:fd:81:5b:e4:b0:0a:23:fd:
cf:5e:02:31:b9:93:37:d9:ab:9e:01:47:e2:40:b0:
29:30:f0:5b:20:e9:ad:ec:65:4b:49:2a:48:7d:eb:
33:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C4:7C:EC:CF:92:52:FD:8B:E5:6B:00:49:4C:F0:AA:3B:79:17:90
X509v3 Authority Key Identifier:
keyid:76:99:C1:89:02:7E:25:EC:C5:3F:98:B5:2E:A6:5A:E7:25:D2:A7:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dpnBiQJ-JezFP5i1LqZa5yXSpzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/KcR87M-SUv2L5WsASUzwqjt5F5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/717555-354f-4b37-8a6a-0940436691bd/1/dpnBiQJ-JezFP5i1LqZa5yXSpzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.232.0/24
Signature Algorithm: sha256WithRSAEncryption
07:73:c1:2e:ac:72:64:63:75:de:25:28:f5:c7:ed:f4:ab:2c:
4e:70:c5:6d:28:46:b7:8d:24:d1:2f:bc:25:48:42:11:71:0a:
3c:5c:fe:99:d5:f6:b5:f4:38:28:95:60:7c:fd:5a:b4:24:71:
37:e3:6d:bf:bc:69:7b:30:20:b8:fa:41:6d:ba:f0:ac:0d:2e:
52:4e:f6:92:3b:17:53:48:e7:93:1b:88:da:ad:df:a9:29:c6:
83:7c:fc:e9:35:95:d8:91:2f:0e:35:67:28:77:f7:7f:af:b1:
a7:4c:cd:c2:fb:6a:92:15:e6:e1:50:ac:4a:b6:ad:3e:45:2f:
0b:e1:e6:71:45:d4:db:01:a1:ef:02:03:a2:ff:81:99:a1:41:
f9:7b:e6:24:81:59:f7:58:30:6c:35:e1:85:59:ee:bf:c1:ab:
5b:11:e5:91:68:06:19:19:7b:1d:54:74:54:4b:90:f0:c4:b0:
58:88:c8:21:6b:16:ac:48:0f:26:ab:21:11:80:7b:6a:44:bc:
7b:f4:b1:ed:6e:68:7e:5f:6b:f4:90:57:d7:cd:0e:1f:19:c1:
26:e3:49:cc:ff:37:68:1f:e0:09:26:f7:64:31:ec:75:d7:48:
3f:dc:b6:cb:4c:c6:df:9b:e2:05:ca:42:c9:f0:79:11:e0:3f:
2d:5c:a9:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+V9Jz3FmeClbtrUGYgEvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OTljMTg5MDI3ZTI1ZWNjNTNmOThiNTJlYTY1YWU3MjVk
MmE3MzAwHhcNMjMwMTAyMDA1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWM0N2NlY2NmOTI1MmZkOGJlNTZiMDA0OTRjZjBhYTNiNzkxNzkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXP/QlaXURZ+szeTulOkjeMnT4N5
Gb0s9tbyjkt/Zwgm6xuWlAo9r40dLXktGeKELp1bur3ap50yvAirwMQAUAQ7T2BA
nQOzwRSPxw7xDKG2mLTkbemuJhf7qpY4AAhnTXMgeUy9gs+imV7mwf5E1gQUCa/4
OL+dIZPuAv2vhL3Ht6SU+XtSek5dKfRGSzbCSHo6obFxYJh/7TlaYCfBF52vRqt+
IoCeknFra7ZGRrml/jgTYEjz4Hp4UPe8YDzm+gFyWAXYMAnZsUeIkQ3clWQIoMoH
hxEE/YFb5LAKI/3PXgIxuZM32aueAUfiQLApMPBbIOmt7GVLSSpIfeszywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCnEfOzPklL9i+VrAElM8Ko7eReQMB8GA1UdIwQY
MBaAFHaZwYkCfiXsxT+YtS6mWucl0qcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHBuQmlRSi1KZXpGUDVpMUxxWmE1eVhTcHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83MTc1NTUtMzU0Zi00YjM3LThhNmEt
MDk0MDQzNjY5MWJkLzEvS2NSODdNLVNVdjJMNVdzQVNVendxanQ1RjVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83MTc1NTUtMzU0Zi00YjM3LThhNmEtMDk0MDQzNjY5MWJk
LzEvZHBuQmlRSi1KZXpGUDVpMUxxWmE1eVhTcHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS7oMA0G
CSqGSIb3DQEBCwUAA4IBAQAHc8EurHJkY3XeJSj1x+30qyxOcMVtKEa3jSTRL7wl
SEIRcQo8XP6Z1fa19DgolWB8/Vq0JHE3422/vGl7MCC4+kFtuvCsDS5STvaSOxdT
SOeTG4jard+pKcaDfPzpNZXYkS8ONWcod/d/r7GnTM3C+2qSFebhUKxKtq0+RS8L
4eZxRdTbAaHvAgOi/4GZoUH5e+YkgVn3WDBsNeGFWe6/watbEeWRaAYZGXsdVHRU
S5DwxLBYiMghaxasSA8mqyERgHtqRLx79LHtbmh+X2v0kFfXzQ4fGcEm40nM/zdo
H+AJJvdkMex110g/3LbLTMbfm+IFykLJ8HkR4D8tXKkF
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:35 2024 by rpki-client on console-fra.rpki-client.org