Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/KH1NOqN5G8xtr7mSRQP4X6MYIns.roa
File: KH1NOqN5G8xtr7mSRQP4X6MYIns.roa (raw, json)
Hash identifier: l38Uuswx/AX9BLkWur2gGdsKu+F+XafiB2XDXHJsIJ8=
Subject key identifier: 28:7D:4D:3A:A3:79:1B:CC:6D:AF:B9:92:45:03:F8:5F:A3:18:22:7B
Certificate issuer: /CN=23523198ae37c02061f45c679daf3e337c285573
Certificate serial: 018964C05BFA558AC0919C4EABD0E0A89974
Authority key identifier: 23:52:31:98:AE:37:C0:20:61:F4:5C:67:9D:AF:3E:33:7C:28:55:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1IxmK43wCBh9Fxnna8-M3woVXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/KH1NOqN5G8xtr7mSRQP4X6MYIns.roa
Signing time: Mon 17 Jul 2023 16:47:55 +0000
ROA not before: Mon 17 Jul 2023 16:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.81.71.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:5b:fa:55:8a:c0:91:9c:4e:ab:d0:e0:a8:99:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23523198ae37c02061f45c679daf3e337c285573
Validity
Not Before: Jul 17 16:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=287d4d3aa3791bcc6dafb9924503f85fa318227b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:26:7d:98:34:dc:6d:8b:54:61:fd:ad:6b:
a2:47:38:38:68:08:3a:4c:ec:37:c0:c1:ac:02:dd:
b7:ac:d3:e9:36:93:94:49:b8:b9:c0:b3:53:60:97:
83:1d:dd:96:57:cd:da:11:63:a8:c4:56:a7:fe:02:
a0:d0:51:f5:6a:2d:50:44:88:04:45:cd:91:e6:0a:
a4:1f:fc:92:b5:fc:a0:11:72:d3:22:5c:fe:50:fc:
99:5f:22:b9:5f:31:88:a3:bd:5d:6b:da:7c:8a:42:
ff:35:b9:7a:c7:ed:96:f6:28:8e:bc:41:37:e9:e8:
5e:fc:49:f3:2b:07:80:b3:8e:4a:82:b2:ea:9d:b8:
26:d9:20:ee:92:6d:d8:70:03:fa:a0:bc:f8:6b:c5:
d5:b4:5a:a3:57:b6:57:bf:85:fb:8e:e7:74:10:5d:
33:b3:1d:b4:96:c9:9a:d4:d3:af:cd:95:19:42:8f:
e0:ec:e0:76:42:b0:40:25:72:0c:6c:5f:eb:50:4b:
a0:35:c0:5a:4e:ea:ed:04:71:7e:6e:77:77:d0:2d:
f2:1d:71:c7:31:aa:7e:a1:08:53:37:06:cf:a9:63:
18:e2:b4:fc:ff:08:98:1c:14:bd:ad:ff:53:4c:0c:
63:96:26:a6:b6:b9:14:b1:80:de:8c:b1:32:60:44:
7d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7D:4D:3A:A3:79:1B:CC:6D:AF:B9:92:45:03:F8:5F:A3:18:22:7B
X509v3 Authority Key Identifier:
keyid:23:52:31:98:AE:37:C0:20:61:F4:5C:67:9D:AF:3E:33:7C:28:55:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1IxmK43wCBh9Fxnna8-M3woVXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/KH1NOqN5G8xtr7mSRQP4X6MYIns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/I1IxmK43wCBh9Fxnna8-M3woVXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.71.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:da:57:8f:6d:a2:f4:87:2c:d0:37:13:2a:61:ba:b5:28:2b:
a2:35:3c:2e:f8:a2:7b:a3:1a:4c:08:3d:34:13:a5:00:25:11:
0d:be:bf:44:9f:3d:ab:17:6f:ee:de:93:f5:b3:24:f2:f8:0f:
5f:72:d7:8a:db:34:5a:93:59:31:0b:24:9f:37:92:a5:6b:b0:
80:0c:99:4f:5b:c2:b8:c6:f1:51:db:50:f4:85:86:a0:ce:01:
5c:75:c5:8f:30:be:51:51:97:5b:6e:a6:bd:c9:a3:0c:22:9d:
09:b5:00:02:a1:1e:41:09:02:31:da:67:f6:46:8e:8b:05:b1:
8c:4f:8c:ad:db:ea:e8:30:91:03:fa:cb:84:31:72:76:35:44:
09:0b:6c:b1:27:6f:bb:1f:78:c9:03:d2:f1:fd:f8:23:8c:20:
20:02:aa:c8:3b:3f:13:f2:0d:18:42:97:34:3e:d3:4b:8f:2f:
c8:91:0d:9f:cd:53:3b:aa:c2:42:5f:83:db:4f:f6:63:c4:9b:
1f:cc:50:70:7c:4b:d4:05:a6:7c:1c:2f:f0:ed:61:26:f0:1f:
23:7b:11:ba:40:f1:dc:f4:7a:c9:97:c2:5f:0d:78:18:d4:6a:
ba:3f:cb:bc:3d:65:77:3d:ea:cc:ea:f9:c2:09:75:be:c1:f5:
af:d4:38:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlkwFv6VYrAkZxOq9DgqJl0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzNTIzMTk4YWUzN2MwMjA2MWY0NWM2NzlkYWYzZTMzN2My
ODU1NzMwHhcNMjMwNzE3MTY0NzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODdkNGQzYWEzNzkxYmNjNmRhZmI5OTI0NTAzZjg1ZmEzMTgyMjdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsasmfZg03G2LVGH9rWuiRzg4aAg6
TOw3wMGsAt23rNPpNpOUSbi5wLNTYJeDHd2WV83aEWOoxFan/gKg0FH1ai1QRIgE
Rc2R5gqkH/yStfygEXLTIlz+UPyZXyK5XzGIo71da9p8ikL/Nbl6x+2W9iiOvEE3
6ehe/EnzKweAs45KgrLqnbgm2SDukm3YcAP6oLz4a8XVtFqjV7ZXv4X7jud0EF0z
sx20lsma1NOvzZUZQo/g7OB2QrBAJXIMbF/rUEugNcBaTurtBHF+bnd30C3yHXHH
Map+oQhTNwbPqWMY4rT8/wiYHBS9rf9TTAxjliamtrkUsYDejLEyYER9iwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCh9TTqjeRvMba+5kkUD+F+jGCJ7MB8GA1UdIwQY
MBaAFCNSMZiuN8AgYfRcZ52vPjN8KFVzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTFJeG1LNDN3Q0JoOUZ4bm5hOC1NM3dvVlhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wYTNlMTItYmZjNS00YjQ1LTlmYzUt
MzdhMWY2MWFlY2YxLzEvS0gxTk9xTjVHOHh0cjdtU1JRUDRYNk1ZSW5zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wYTNlMTItYmZjNS00YjQ1LTlmYzUtMzdhMWY2MWFlY2Yx
LzEvSTFJeG1LNDN3Q0JoOUZ4bm5hOC1NM3dvVlhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVFHMA0G
CSqGSIb3DQEBCwUAA4IBAQA72lePbaL0hyzQNxMqYbq1KCuiNTwu+KJ7oxpMCD00
E6UAJRENvr9Enz2rF2/u3pP1syTy+A9fcteK2zRak1kxCySfN5Kla7CADJlPW8K4
xvFR21D0hYagzgFcdcWPML5RUZdbbqa9yaMMIp0JtQACoR5BCQIx2mf2Ro6LBbGM
T4yt2+roMJED+suEMXJ2NUQJC2yxJ2+7H3jJA9Lx/fgjjCAgAqrIOz8T8g0YQpc0
PtNLjy/IkQ2fzVM7qsJCX4PbT/ZjxJsfzFBwfEvUBaZ8HC/w7WEm8B8jexG6QPHc
9HrJl8JfDXgY1Gq6P8u8PWV3PerM6vnCCXW+wfWv1DgR
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:31 2024 by rpki-client on console-fra.rpki-client.org