Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/KWue91_0hNmR3YWCM-Js6fQmGoU.roa
File: KWue91_0hNmR3YWCM-Js6fQmGoU.roa (raw, json)
Hash identifier: AHpDLFLgeaJAKpCufPQkJIHYyyH2sYRgnv9sjlegies=
Subject key identifier: 29:6B:9E:F7:5F:F4:84:D9:91:DD:85:82:33:E2:6C:E9:F4:26:1A:85
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 01857315FA11C0456237123F89151A99DF62
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/KWue91_0hNmR3YWCM-Js6fQmGoU.roa
Signing time: Mon 02 Jan 2023 15:24:58 +0000
ROA not before: Mon 02 Jan 2023 15:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61082
IP address blocks: 82.119.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:fa:11:c0:45:62:37:12:3f:89:15:1a:99:df:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 2 15:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=296b9ef75ff484d991dd858233e26ce9f4261a85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7c:ec:5a:9a:5e:43:c8:1e:9c:dc:eb:3b:0e:
ba:5e:f4:06:3f:23:b1:4a:85:f0:95:72:92:48:d1:
00:e1:c1:a7:e5:7f:57:40:5a:d1:5a:bf:d0:9d:14:
b2:77:b5:8d:95:ca:8a:fd:42:48:37:55:3e:16:21:
de:89:99:49:5d:cd:08:2c:c7:41:80:60:6f:01:b1:
94:03:48:50:fd:5f:f0:98:9f:7c:58:43:9a:2c:d2:
a8:b2:d1:ae:b1:df:f6:9b:63:9f:e0:25:86:77:60:
5f:7d:12:9e:4e:33:09:f3:0b:e1:8a:ed:ce:68:6b:
31:a0:70:c9:1e:48:23:69:59:b7:d8:5c:11:a9:29:
92:88:c5:6d:66:12:d0:83:0d:32:6e:fe:39:15:74:
f4:d9:38:77:f1:6c:c1:cb:86:e5:21:48:77:ef:8b:
3e:3e:b4:da:22:b2:d2:4f:8b:f6:cd:56:1b:9e:b1:
25:dd:ff:ad:2c:25:dc:b6:00:b4:35:dd:b3:77:25:
3b:08:bf:ab:80:85:97:15:a1:d8:d8:5e:0e:1d:e5:
e3:94:6d:e0:bd:3c:81:2b:24:37:80:74:9e:ef:20:
42:a0:0e:e6:0d:de:6f:95:4f:b7:20:8b:32:16:c1:
b1:3d:32:fc:cf:58:de:a5:94:88:83:18:cf:71:24:
b2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6B:9E:F7:5F:F4:84:D9:91:DD:85:82:33:E2:6C:E9:F4:26:1A:85
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/KWue91_0hNmR3YWCM-Js6fQmGoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.119.70.0/24
Signature Algorithm: sha256WithRSAEncryption
25:b0:a3:8c:d7:0a:f5:1c:58:43:09:cc:88:01:2a:4c:10:7d:
5a:22:d4:b6:fb:af:1c:79:47:0d:e4:7d:34:2c:80:0e:69:4a:
20:39:2d:9c:ae:b6:2e:fc:fd:07:d9:a0:41:ea:8f:8c:32:c8:
7f:13:8e:ef:66:30:1b:35:39:10:64:55:b8:60:a1:a1:64:3e:
38:87:3c:e4:8e:1a:65:f1:b4:b2:f8:65:23:77:48:5c:df:e6:
ee:91:d4:e5:90:6d:7f:a4:23:e7:24:15:7e:55:bb:e6:ff:b2:
7e:57:51:8b:12:88:36:c4:1f:a0:33:4d:69:52:11:82:9b:59:
67:e1:d8:d5:81:f8:32:b0:c3:aa:c1:c6:8e:92:02:7e:1b:c1:
e7:02:c7:98:51:95:21:e7:2b:0c:83:72:3d:89:92:20:d1:70:
55:12:56:e9:0e:50:9a:40:81:97:23:d3:5d:13:14:4f:a9:aa:
88:54:5d:4c:f8:01:06:c8:1c:d8:44:33:f9:fb:f0:da:7c:b5:
92:2b:66:96:b5:ea:d4:d8:a3:f1:f0:17:55:9f:11:4a:72:74:
bd:14:e7:4b:0f:be:7a:43:bc:db:12:8f:03:51:65:99:80:bc:
09:74:1d:40:8f:d6:26:e2:75:bb:87:e3:63:65:9c:b5:81:82:
67:20:c0:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzFfoRwEViNxI/iRUamd9iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj
M2YwMGEwHhcNMjMwMTAyMTUyNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTZiOWVmNzVmZjQ4NGQ5OTFkZDg1ODIzM2UyNmNlOWY0MjYxYTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXzsWppeQ8genNzrOw66XvQGPyOx
SoXwlXKSSNEA4cGn5X9XQFrRWr/QnRSyd7WNlcqK/UJIN1U+FiHeiZlJXc0ILMdB
gGBvAbGUA0hQ/V/wmJ98WEOaLNKostGusd/2m2Of4CWGd2BffRKeTjMJ8wvhiu3O
aGsxoHDJHkgjaVm32FwRqSmSiMVtZhLQgw0ybv45FXT02Th38WzBy4blIUh374s+
PrTaIrLST4v2zVYbnrEl3f+tLCXctgC0Nd2zdyU7CL+rgIWXFaHY2F4OHeXjlG3g
vTyBKyQ3gHSe7yBCoA7mDd5vlU+3IIsyFsGxPTL8z1jepZSIgxjPcSSy+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFClrnvdf9ITZkd2FgjPibOn0JhqFMB8GA1UdIwQY
MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt
YjI3ZDZlMjc4ZTE4LzEvS1d1ZTkxXzBoTm1SM1lXQ00tSnM2ZlFtR29VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4
LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUndGMA0G
CSqGSIb3DQEBCwUAA4IBAQAlsKOM1wr1HFhDCcyIASpMEH1aItS2+68ceUcN5H00
LIAOaUogOS2crrYu/P0H2aBB6o+MMsh/E47vZjAbNTkQZFW4YKGhZD44hzzkjhpl
8bSy+GUjd0hc3+bukdTlkG1/pCPnJBV+Vbvm/7J+V1GLEog2xB+gM01pUhGCm1ln
4djVgfgysMOqwcaOkgJ+G8HnAseYUZUh5ysMg3I9iZIg0XBVElbpDlCaQIGXI9Nd
ExRPqaqIVF1M+AEGyBzYRDP5+/DafLWSK2aWterU2KPx8BdVnxFKcnS9FOdLD756
Q7zbEo8DUWWZgLwJdB1Aj9Ym4nW7h+NjZZy1gYJnIMCN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org