Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/kn83Q718aeHH1lpRTql_iJBYg28.roa
File: kn83Q718aeHH1lpRTql_iJBYg28.roa (raw, json)
Hash identifier: og3qOF8omdfC8a4ccxASmRjUbWtgLeqiypKjfgTOhxE=
Subject key identifier: 92:7F:37:43:BD:7C:69:E1:C7:D6:5A:51:4E:A9:7F:88:90:58:83:6F
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 01877EC60E1B80C189776E3C83713B8AEE8D
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/kn83Q718aeHH1lpRTql_iJBYg28.roa
Signing time: Fri 14 Apr 2023 07:58:41 +0000
ROA not before: Fri 14 Apr 2023 07:58:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 185.110.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7e:c6:0e:1b:80:c1:89:77:6e:3c:83:71:3b:8a:ee:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Apr 14 07:58:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=927f3743bd7c69e1c7d65a514ea97f889058836f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:8e:c2:b8:75:05:b1:c4:ff:1c:6f:0a:ce:e3:
32:30:5c:ea:5e:b5:3d:cd:26:8e:13:64:94:cd:bf:
d9:c1:ac:44:a2:8a:4f:26:ce:dd:d6:7f:d9:55:53:
e5:29:d7:1c:4d:d6:e1:01:73:0a:af:c7:b0:dd:03:
e4:74:2e:17:8f:ad:86:48:bf:c7:db:17:5f:7f:39:
71:21:37:a4:5e:30:d8:b3:ef:7b:45:3e:23:d9:9c:
ea:6d:b0:42:28:e4:15:92:71:77:09:54:df:93:c1:
2e:e5:72:23:a9:cb:e9:53:b1:cd:e9:d8:80:11:99:
85:22:86:9f:c6:5f:a2:6c:8c:6a:bc:75:c4:e2:92:
49:8a:42:0d:2b:a0:fb:e3:a8:55:09:58:5c:55:02:
9a:fa:6d:ea:c2:c5:b3:cd:56:6e:58:a2:7b:f1:18:
16:21:b9:ea:e9:08:bf:dd:51:0a:d3:1e:47:fc:0b:
db:eb:c1:23:e7:d1:26:80:83:cd:d9:2f:98:86:fa:
67:97:42:35:4e:8a:90:65:fc:ff:68:e8:a1:1f:8c:
02:4b:eb:c8:ff:9f:04:e5:7a:a5:d9:75:cb:5b:9f:
a9:fb:2b:23:b9:1c:27:8c:bd:64:7c:24:54:9a:df:
13:25:8e:7d:96:cd:59:c1:b2:07:05:a9:0b:d6:31:
29:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7F:37:43:BD:7C:69:E1:C7:D6:5A:51:4E:A9:7F:88:90:58:83:6F
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/kn83Q718aeHH1lpRTql_iJBYg28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.62.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5d:1f:91:47:52:d7:7f:82:49:7b:ed:89:b4:96:d5:23:52:
fd:1b:e1:1a:5c:64:5e:b9:21:ed:9e:25:f0:3b:7f:b1:55:f5:
30:fd:a9:41:b9:0c:56:bd:62:c4:d9:36:6f:0d:9a:c0:67:ac:
30:64:d3:2f:86:f6:25:f7:18:2b:2f:31:e0:0f:bf:93:12:c3:
44:33:e2:1f:ad:c5:0c:90:b1:21:0d:b5:de:96:04:46:83:d3:
85:2e:99:d2:dc:15:68:51:10:ae:52:d8:00:06:2c:c4:d1:a2:
35:73:9f:52:5d:79:6f:85:8f:c3:b6:1b:00:ec:46:68:60:82:
12:84:34:4e:a5:8c:6d:2c:4a:e3:f1:db:e2:fa:a7:47:4c:72:
e8:d7:2f:67:40:33:10:53:95:f7:6c:5b:95:b1:de:42:06:44:
4e:d6:8e:ba:f3:a4:1f:4b:a9:c9:7f:60:fc:6d:1d:3e:73:f2:
36:b6:ad:1f:44:9d:ed:61:9b:2b:4e:80:4c:23:ea:07:25:ea:
55:be:8d:f7:1a:f9:9b:31:4f:fd:c6:33:c2:c4:96:ed:9f:7d:
70:5e:ff:f9:a9:d0:a8:ab:97:4e:5a:d3:7a:d3:06:dc:f9:7e:
16:28:19:12:e2:15:1f:e9:f1:4c:8f:f6:4b:83:78:5d:56:83:
7e:79:03:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd+xg4bgMGJd248g3E7iu6NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGViMjA0ZjM1ODAwNDc4ODIyNGUyZmIxOGU0ZDVlNzRi
ZWJmOGQwHhcNMjMwNDE0MDc1ODQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjdmMzc0M2JkN2M2OWUxYzdkNjVhNTE0ZWE5N2Y4ODkwNTg4MzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg47CuHUFscT/HG8KzuMyMFzqXrU9
zSaOE2SUzb/ZwaxEoopPJs7d1n/ZVVPlKdccTdbhAXMKr8ew3QPkdC4Xj62GSL/H
2xdffzlxITekXjDYs+97RT4j2ZzqbbBCKOQVknF3CVTfk8Eu5XIjqcvpU7HN6diA
EZmFIoafxl+ibIxqvHXE4pJJikINK6D746hVCVhcVQKa+m3qwsWzzVZuWKJ78RgW
Ibnq6Qi/3VEK0x5H/Avb68Ej59EmgIPN2S+Yhvpnl0I1ToqQZfz/aOihH4wCS+vI
/58E5Xql2XXLW5+p+ysjuRwnjL1kfCRUmt8TJY59ls1ZwbIHBakL1jEpNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJJ/N0O9fGnhx9ZaUU6pf4iQWINvMB8GA1UdIwQY
MBaAFPBOsgTzWABHiCJOL7GOTV50vr+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMt
NWM1ODkyYWZhNDg3LzEva244M1E3MThhZUhIMWxwUlRxbF9pSkJZZzI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMtNWM1ODkyYWZhNDg3
LzEvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuW4+MA0G
CSqGSIb3DQEBCwUAA4IBAQBfXR+RR1LXf4JJe+2JtJbVI1L9G+EaXGReuSHtniXw
O3+xVfUw/alBuQxWvWLE2TZvDZrAZ6wwZNMvhvYl9xgrLzHgD7+TEsNEM+IfrcUM
kLEhDbXelgRGg9OFLpnS3BVoURCuUtgABizE0aI1c59SXXlvhY/DthsA7EZoYIIS
hDROpYxtLErj8dvi+qdHTHLo1y9nQDMQU5X3bFuVsd5CBkRO1o6686QfS6nJf2D8
bR0+c/I2tq0fRJ3tYZsrToBMI+oHJepVvo33GvmbMU/9xjPCxJbtn31wXv/5qdCo
q5dOWtN60wbc+X4WKBkS4hUf6fFMj/ZLg3hdVoN+eQNp
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org