Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kZQwVE6MeSXi7O7cljkDC7AWe4M.roa
File: kZQwVE6MeSXi7O7cljkDC7AWe4M.roa (raw, json)
Hash identifier: ShFy1BFwQuhxvMyOe2vNYCTgRnMgT1UII6QeJX3yMVg=
Subject key identifier: 91:94:30:54:4E:8C:79:25:E2:EC:EE:DC:96:39:03:0B:B0:16:7B:83
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 018BF843E753E79E7E9BD1DB39C31A15A3DB
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kZQwVE6MeSXi7O7cljkDC7AWe4M.roa
Signing time: Wed 22 Nov 2023 18:21:21 +0000
ROA not before: Wed 22 Nov 2023 18:21:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.149.92.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f8:43:e7:53:e7:9e:7e:9b:d1:db:39:c3:1a:15:a3:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Nov 22 18:21:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=919430544e8c7925e2eceedc9639030bb0167b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8c:0a:0f:07:53:a1:2f:6c:28:f7:84:cf:ff:
66:b0:93:e2:9f:db:11:d8:32:23:c1:f0:46:0d:52:
4d:a5:e6:ed:f7:8c:cf:47:43:3f:a0:e9:7e:8a:d2:
07:d5:e8:f4:a5:72:43:86:6e:ca:74:17:0d:77:12:
51:4c:ee:cd:59:9a:e9:dd:83:66:21:17:37:10:7c:
7d:44:aa:f2:8f:84:de:3d:d3:98:9c:c7:a5:3c:dc:
e3:b3:5c:d6:6f:bb:06:d8:fc:15:15:58:5f:e1:29:
94:1a:7d:37:50:4f:3b:87:6f:81:d5:70:db:84:f0:
4c:0c:b4:77:af:f8:94:d8:a9:ae:82:60:b2:06:86:
d3:18:9e:40:3e:ae:5d:5e:57:dc:8a:0f:cd:fa:b5:
dc:e8:32:60:36:e6:5f:b9:1f:a6:1b:69:4b:79:c1:
0f:7f:96:8c:26:f7:0f:ab:cd:74:88:e4:d4:b5:43:
47:34:45:85:28:5c:29:1d:af:0e:c2:46:67:94:9b:
07:c3:34:7a:48:f7:5d:1c:01:27:cc:2d:c5:2e:5e:
d2:2c:e5:12:e1:a6:45:a6:b3:a0:1a:b2:73:d2:41:
b0:96:cf:63:88:2f:cc:ba:86:57:6d:ac:af:fa:6b:
45:64:ff:6f:e9:1b:ed:dc:64:88:f9:ea:07:8c:f1:
3b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:94:30:54:4E:8C:79:25:E2:EC:EE:DC:96:39:03:0B:B0:16:7B:83
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/kZQwVE6MeSXi7O7cljkDC7AWe4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.92.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:29:ed:40:ee:b1:98:fe:23:d4:c1:cd:ae:8c:8f:29:7f:d1:
65:d3:13:dd:69:c0:3b:03:c1:16:dd:c3:31:a9:78:f0:7c:0e:
00:85:36:af:92:c8:de:17:27:60:fa:db:2d:ac:9b:8b:91:ac:
99:4e:43:8c:ac:c2:a3:cc:db:95:d7:9e:84:a5:47:dc:02:fa:
b3:18:59:af:a1:91:bd:f1:f6:97:c1:0a:c1:4b:85:15:c0:ce:
bb:02:ff:2a:4e:8c:68:26:68:94:cf:87:6d:c0:28:3f:50:00:
1b:df:af:fb:ec:4c:6f:7f:22:2f:3b:c6:9e:b0:f2:47:3b:f5:
08:d6:06:ae:b1:ba:11:ab:a1:ff:8d:82:4b:ec:ae:f6:23:32:
1f:d6:6a:f0:c8:df:59:82:ad:a3:eb:82:31:d6:0d:d7:b8:a0:
5b:3d:49:ce:e8:01:fc:b0:83:58:2f:18:f9:44:3e:50:97:38:
b0:76:5a:a7:c2:66:4a:14:b6:af:81:5b:32:9b:64:bb:54:eb:
04:a0:e3:dd:8b:0c:90:2e:df:0c:99:3d:6c:ac:35:73:23:12:
36:4b:44:17:36:4d:97:1b:a4:ff:77:fe:3e:3e:77:c3:f2:f3:
75:81:c7:f2:f2:b3:ad:16:fd:93:e4:4f:0e:54:09:02:67:1d:
b7:6d:5f:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYv4Q+dT555+m9HbOcMaFaPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjMxMTIyMTgyMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTk0MzA1NDRlOGM3OTI1ZTJlY2VlZGM5NjM5MDMwYmIwMTY3YjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4wKDwdToS9sKPeEz/9msJPin9sR
2DIjwfBGDVJNpebt94zPR0M/oOl+itIH1ej0pXJDhm7KdBcNdxJRTO7NWZrp3YNm
IRc3EHx9RKryj4TePdOYnMelPNzjs1zWb7sG2PwVFVhf4SmUGn03UE87h2+B1XDb
hPBMDLR3r/iU2KmugmCyBobTGJ5APq5dXlfcig/N+rXc6DJgNuZfuR+mG2lLecEP
f5aMJvcPq810iOTUtUNHNEWFKFwpHa8OwkZnlJsHwzR6SPddHAEnzC3FLl7SLOUS
4aZFprOgGrJz0kGwls9jiC/MuoZXbayv+mtFZP9v6Rvt3GSI+eoHjPE7fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGUMFROjHkl4uzu3JY5AwuwFnuDMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEva1pRd1ZFNk1lU1hpN083Y2xqa0RDN0FXZTRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZVcMA0G
CSqGSIb3DQEBCwUAA4IBAQCNKe1A7rGY/iPUwc2ujI8pf9Fl0xPdacA7A8EW3cMx
qXjwfA4AhTavksjeFydg+tstrJuLkayZTkOMrMKjzNuV156EpUfcAvqzGFmvoZG9
8faXwQrBS4UVwM67Av8qToxoJmiUz4dtwCg/UAAb36/77ExvfyIvO8aesPJHO/UI
1gausboRq6H/jYJL7K72IzIf1mrwyN9Zgq2j64Ix1g3XuKBbPUnO6AH8sINYLxj5
RD5QlziwdlqnwmZKFLavgVsym2S7VOsEoOPdiwyQLt8MmT1srDVzIxI2S0QXNk2X
G6T/d/4+PnfD8vN1gcfy8rOtFv2T5E8OVAkCZx23bV+4
-----END CERTIFICATE-----
Generated at Sun Dec 17 18:59:58 2023 by rpki-client on console-fra.rpki-client.org