Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/d81745-658d-4a74-92f7-5d3a421a0f10/1/KO1m0zAx03_gD9-TAmVoQBSk4v0.roa
File: KO1m0zAx03_gD9-TAmVoQBSk4v0.roa (raw, json)
Hash identifier: B9j3z61NPokSl0Udb1ekz2Z3SUnyFrYoQXTLbB0wsl0=
Subject key identifier: 28:ED:66:D3:30:31:D3:7F:E0:0F:DF:93:02:65:68:40:14:A4:E2:FD
Certificate issuer: /CN=5f08dc10218ac6db79430ae7c44515590417d605
Certificate serial: 018EFB8BD355279CA607BDF22340E0305B22
Authority key identifier: 5F:08:DC:10:21:8A:C6:DB:79:43:0A:E7:C4:45:15:59:04:17:D6:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwjcECGKxtt5QwrnxEUVWQQX1gU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/d81745-658d-4a74-92f7-5d3a421a0f10/1/KO1m0zAx03_gD9-TAmVoQBSk4v0.roa
Signing time: Sat 20 Apr 2024 12:47:08 +0000
ROA not before: Sat 20 Apr 2024 12:47:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29577
IP address blocks: 194.146.148.0/24 maxlen: 24
194.146.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 12:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:fb:8b:d3:55:27:9c:a6:07:bd:f2:23:40:e0:30:5b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f08dc10218ac6db79430ae7c44515590417d605
Validity
Not Before: Apr 20 12:47:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28ed66d33031d37fe00fdf930265684014a4e2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f6:db:f3:07:2e:3a:9f:1f:0b:f8:a6:9c:0f:
ee:da:23:54:2a:95:51:1b:4a:08:00:4e:97:6f:4d:
e7:c7:2d:7d:96:55:99:e5:30:05:77:c6:c9:34:4b:
55:59:ad:c5:f1:f2:e2:43:d8:da:9e:0f:4e:a6:d4:
9a:ef:37:1f:53:2e:c1:08:14:0e:63:a5:92:0c:f9:
f2:22:e2:38:6a:0e:e6:db:3f:56:b9:c8:3a:9a:b0:
ab:d5:cf:44:92:dc:de:2d:3e:17:48:5a:7a:1a:a3:
2b:5e:03:2e:0c:2f:09:9e:7f:52:da:4a:fe:ac:37:
b3:f2:07:d3:3b:43:bb:8c:be:8d:ac:94:96:92:45:
15:78:0d:11:ff:25:c3:0a:49:84:6d:f2:06:23:dd:
e1:39:1a:cb:66:60:7d:7b:c1:20:7d:84:96:03:07:
2b:92:85:28:c5:83:2f:71:0f:22:1e:a6:23:4b:80:
15:11:83:d8:bd:d7:e7:5a:fa:25:f4:1d:94:45:3e:
49:c5:f5:62:48:b4:ce:e0:a1:91:8b:1f:08:07:cb:
ff:fd:ff:c3:f4:05:40:1b:8e:cb:f8:f5:3e:19:59:
65:c4:93:dd:ea:ec:d2:04:71:50:40:d2:9a:eb:1b:
ab:81:b8:6e:17:e8:83:7c:60:88:8b:c1:4f:20:be:
cc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:ED:66:D3:30:31:D3:7F:E0:0F:DF:93:02:65:68:40:14:A4:E2:FD
X509v3 Authority Key Identifier:
keyid:5F:08:DC:10:21:8A:C6:DB:79:43:0A:E7:C4:45:15:59:04:17:D6:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwjcECGKxtt5QwrnxEUVWQQX1gU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/d81745-658d-4a74-92f7-5d3a421a0f10/1/KO1m0zAx03_gD9-TAmVoQBSk4v0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/d81745-658d-4a74-92f7-5d3a421a0f10/1/XwjcECGKxtt5QwrnxEUVWQQX1gU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.148.0/23
Signature Algorithm: sha256WithRSAEncryption
31:d2:4c:2a:34:13:84:cf:48:f7:d9:d8:ff:09:02:1d:31:87:
cd:a9:7d:91:50:f6:f7:d3:0b:73:0c:3d:67:1a:b8:de:6c:eb:
98:2e:5f:52:f1:a8:8b:2e:54:4d:26:b0:22:01:9d:3b:69:51:
78:97:1c:18:cc:da:8e:d1:3e:6b:b1:93:f2:63:38:47:df:bd:
c9:d1:83:11:fb:de:b4:64:28:5d:b5:e1:5c:0b:9a:df:ca:e0:
55:f3:cc:31:b2:93:48:f3:ab:db:a0:86:22:ba:3f:c9:1e:a9:
07:66:2b:87:fc:24:d3:95:94:6f:e2:d0:c3:1e:5a:1e:14:3f:
82:b2:13:c8:35:98:6b:d2:11:fe:6c:eb:9e:74:39:15:c9:f9:
c7:46:a7:b0:2c:dc:6f:ff:ca:24:9c:5a:24:32:28:71:33:cf:
cf:7f:05:ff:50:74:34:42:8e:19:ed:02:e2:d0:90:0f:d6:c9:
29:77:03:6c:31:c0:b1:5e:a7:0c:73:a1:1d:e7:98:0a:30:18:
73:38:18:b7:ce:5a:db:e6:c6:ea:60:69:c5:3b:2e:9a:8c:c8:
2b:37:c7:50:9c:b2:17:f9:25:c1:77:61:5b:eb:1b:f7:80:de:
d7:c0:bc:96:9f:d8:e5:f3:d9:f5:69:b1:90:90:88:c8:fc:f9:
5d:37:11:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY77i9NVJ5ymB73yI0DgMFsiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMDhkYzEwMjE4YWM2ZGI3OTQzMGFlN2M0NDUxNTU5MDQx
N2Q2MDUwHhcNMjQwNDIwMTI0NzA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOGVkNjZkMzMwMzFkMzdmZTAwZmRmOTMwMjY1Njg0MDE0YTRlMmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfbb8wcuOp8fC/imnA/u2iNUKpVR
G0oIAE6Xb03nxy19llWZ5TAFd8bJNEtVWa3F8fLiQ9jang9OptSa7zcfUy7BCBQO
Y6WSDPnyIuI4ag7m2z9Wucg6mrCr1c9EktzeLT4XSFp6GqMrXgMuDC8Jnn9S2kr+
rDez8gfTO0O7jL6NrJSWkkUVeA0R/yXDCkmEbfIGI93hORrLZmB9e8EgfYSWAwcr
koUoxYMvcQ8iHqYjS4AVEYPYvdfnWvol9B2URT5JxfViSLTO4KGRix8IB8v//f/D
9AVAG47L+PU+GVllxJPd6uzSBHFQQNKa6xurgbhuF+iDfGCIi8FPIL7MMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCjtZtMwMdN/4A/fkwJlaEAUpOL9MB8GA1UdIwQY
MBaAFF8I3BAhisbbeUMK58RFFVkEF9YFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHdqY0VDR0t4dHQ1UXdybnhFVVZXUVFYMWdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9kODE3NDUtNjU4ZC00YTc0LTkyZjct
NWQzYTQyMWEwZjEwLzEvS08xbTB6QXgwM19nRDktVEFtVm9RQlNrNHYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy9kODE3NDUtNjU4ZC00YTc0LTkyZjctNWQzYTQyMWEwZjEw
LzEvWHdqY0VDR0t4dHQ1UXdybnhFVVZXUVFYMWdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwpKUMA0G
CSqGSIb3DQEBCwUAA4IBAQAx0kwqNBOEz0j32dj/CQIdMYfNqX2RUPb30wtzDD1n
GrjebOuYLl9S8aiLLlRNJrAiAZ07aVF4lxwYzNqO0T5rsZPyYzhH373J0YMR+960
ZChdteFcC5rfyuBV88wxspNI86vboIYiuj/JHqkHZiuH/CTTlZRv4tDDHloeFD+C
shPINZhr0hH+bOuedDkVyfnHRqewLNxv/8oknFokMihxM8/PfwX/UHQ0Qo4Z7QLi
0JAP1skpdwNsMcCxXqcMc6Ed55gKMBhzOBi3zlrb5sbqYGnFOy6ajMgrN8dQnLIX
+SXBd2Fb6xv3gN7XwLyWn9jl89n1abGQkIjI/PldNxG3
Generated at Sat Apr 20 13:49:31 2024 by rpki-client on console-fra.rpki-client.org