Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/87b09a-ccfa-48ea-aeb5-5667419f44e8/1/Kwp6TzY5Rr2NYmfc6IWrp2qNb5M.roa
File: Kwp6TzY5Rr2NYmfc6IWrp2qNb5M.roa (raw, json)
Hash identifier: n/VzeTDvvtXU2uhDbmCRPGNxgvY+t7dKHu9DzN9RyeA=
Subject key identifier: 2B:0A:7A:4F:36:39:46:BD:8D:62:67:DC:E8:85:AB:A7:6A:8D:6F:93
Certificate issuer: /CN=ab069058b4d367612be4807372b5e593e0347766
Certificate serial: 01856F5DD08316EFB3ADCEE80A28C54CCC6A
Authority key identifier: AB:06:90:58:B4:D3:67:61:2B:E4:80:73:72:B5:E5:93:E0:34:77:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwaQWLTTZ2Er5IBzcrXlk-A0d2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/87b09a-ccfa-48ea-aeb5-5667419f44e8/1/Kwp6TzY5Rr2NYmfc6IWrp2qNb5M.roa
Signing time: Sun 01 Jan 2023 22:04:57 +0000
ROA not before: Sun 01 Jan 2023 22:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1930
IP address blocks: 192.135.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:d0:83:16:ef:b3:ad:ce:e8:0a:28:c5:4c:cc:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab069058b4d367612be4807372b5e593e0347766
Validity
Not Before: Jan 1 22:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b0a7a4f363946bd8d6267dce885aba76a8d6f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:46:1a:95:61:b5:21:3f:e2:9b:86:50:53:
2d:65:4a:04:79:9c:41:1a:d0:1c:6d:34:99:97:00:
4b:46:e8:07:15:ff:85:d5:47:18:6b:17:f5:c2:c2:
00:04:44:b2:19:28:03:f9:b0:6a:38:2c:c7:8b:98:
fc:32:11:2a:c1:d7:74:f1:46:19:c4:ad:4e:fb:d5:
fa:4e:b9:3b:14:22:d2:48:55:ba:3d:4a:cd:17:7f:
d5:c0:c2:c7:36:df:ef:28:0b:39:b8:99:14:0b:7a:
30:72:1a:11:81:78:92:5b:58:16:15:df:4c:14:0e:
b8:33:4f:26:62:16:2e:72:40:45:b4:1e:7f:ad:db:
2b:2f:f4:d5:ac:f4:f9:1e:2b:3a:35:14:74:a1:9e:
00:1b:81:36:6d:5a:11:0b:d0:48:54:2d:e8:13:f6:
ed:e0:4a:b2:27:de:2b:12:2b:7d:73:8b:04:ce:f1:
81:78:ed:96:4d:ac:03:3d:ff:6c:34:9c:5d:55:88:
8c:b9:f5:fa:42:e7:fa:84:41:c0:97:19:7d:0a:d9:
65:93:32:95:c2:88:28:c8:37:07:20:53:48:81:db:
db:5e:4f:44:98:ea:0f:b7:7e:89:74:dc:ff:08:0d:
67:a1:dd:75:0f:e7:8b:90:97:b1:b6:d0:c4:d7:21:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0A:7A:4F:36:39:46:BD:8D:62:67:DC:E8:85:AB:A7:6A:8D:6F:93
X509v3 Authority Key Identifier:
keyid:AB:06:90:58:B4:D3:67:61:2B:E4:80:73:72:B5:E5:93:E0:34:77:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwaQWLTTZ2Er5IBzcrXlk-A0d2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/87b09a-ccfa-48ea-aeb5-5667419f44e8/1/Kwp6TzY5Rr2NYmfc6IWrp2qNb5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/87b09a-ccfa-48ea-aeb5-5667419f44e8/1/qwaQWLTTZ2Er5IBzcrXlk-A0d2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.135.219.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:0c:1a:43:6f:8b:3f:2f:cc:e5:00:32:f5:c7:bc:a6:90:3a:
67:f5:df:9b:a3:6f:d7:7b:8e:ff:e4:1f:21:fc:35:bf:a1:38:
00:9d:cd:99:b9:90:31:a0:3c:c3:62:40:d1:2a:f2:6d:9d:1c:
95:61:ff:99:71:7e:85:ef:1d:93:c3:34:4d:db:cb:dc:b4:bb:
8e:4d:d9:27:b6:e4:44:f4:d8:34:7b:6e:11:40:6a:09:08:6d:
8a:c4:32:fa:ac:5a:10:77:ac:cf:fa:60:1d:34:5a:87:4c:5a:
16:f6:cb:02:63:9f:80:93:f1:5a:dd:e2:42:f0:b0:9b:bf:a3:
e7:6c:3e:34:d1:c6:65:c0:d5:1a:5c:ef:28:27:3b:28:fa:56:
a3:cf:ae:b8:e0:3a:7d:b1:c1:0d:c4:1b:60:20:f8:b0:8f:50:
1a:97:c0:7e:50:ac:9a:a7:00:89:a8:03:4c:39:2e:f9:09:86:
c8:12:5a:06:1b:b9:7a:dd:83:db:01:a9:2e:e6:fe:01:10:b4:
50:5e:2c:62:9b:31:5f:c8:70:07:cc:6f:bd:6b:d7:bb:47:ea:
6f:81:e0:24:19:d3:de:e3:39:06:c9:36:19:f8:4f:2b:33:79:
a8:cb:5f:21:fb:d6:34:ca:10:04:89:94:44:a7:bc:7c:68:23:
c4:87:18:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXdCDFu+zrc7oCijFTMxqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDY5MDU4YjRkMzY3NjEyYmU0ODA3MzcyYjVlNTkzZTAz
NDc3NjYwHhcNMjMwMTAxMjIwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjBhN2E0ZjM2Mzk0NmJkOGQ2MjY3ZGNlODg1YWJhNzZhOGQ2ZjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNdGGpVhtSE/4puGUFMtZUoEeZxB
GtAcbTSZlwBLRugHFf+F1UcYaxf1wsIABESyGSgD+bBqOCzHi5j8MhEqwdd08UYZ
xK1O+9X6Trk7FCLSSFW6PUrNF3/VwMLHNt/vKAs5uJkUC3owchoRgXiSW1gWFd9M
FA64M08mYhYuckBFtB5/rdsrL/TVrPT5His6NRR0oZ4AG4E2bVoRC9BIVC3oE/bt
4EqyJ94rEit9c4sEzvGBeO2WTawDPf9sNJxdVYiMufX6Quf6hEHAlxl9CtllkzKV
wogoyDcHIFNIgdvbXk9EmOoPt36JdNz/CA1nod11D+eLkJexttDE1yGyZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCsKek82OUa9jWJn3OiFq6dqjW+TMB8GA1UdIwQY
MBaAFKsGkFi002dhK+SAc3K15ZPgNHdmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdhUVdMVFRaMkVyNUlCemNyWGxrLUEwZDJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84N2IwOWEtY2NmYS00OGVhLWFlYjUt
NTY2NzQxOWY0NGU4LzEvS3dwNlR6WTVScjJOWW1mYzZJV3JwMnFOYjVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84N2IwOWEtY2NmYS00OGVhLWFlYjUtNTY2NzQxOWY0NGU4
LzEvcXdhUVdMVFRaMkVyNUlCemNyWGxrLUEwZDJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwIfbMA0G
CSqGSIb3DQEBCwUAA4IBAQBfDBpDb4s/L8zlADL1x7ymkDpn9d+bo2/Xe47/5B8h
/DW/oTgAnc2ZuZAxoDzDYkDRKvJtnRyVYf+ZcX6F7x2TwzRN28vctLuOTdkntuRE
9Ng0e24RQGoJCG2KxDL6rFoQd6zP+mAdNFqHTFoW9ssCY5+Ak/Fa3eJC8LCbv6Pn
bD400cZlwNUaXO8oJzso+lajz6644Dp9scENxBtgIPiwj1Aal8B+UKyapwCJqANM
OS75CYbIEloGG7l63YPbAaku5v4BELRQXiximzFfyHAHzG+9a9e7R+pvgeAkGdPe
4zkGyTYZ+E8rM3moy18h+9Y0yhAEiZREp7x8aCPEhxhh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org