Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/KnDxsH7TyrNqzeLw2UUaiBg65vg.roa
File: KnDxsH7TyrNqzeLw2UUaiBg65vg.roa (raw, json)
Hash identifier: vyJRPoStQlEACKE0wtUuY4bcVrtaEiJszfX3fj7RAs8=
Subject key identifier: 2A:70:F1:B0:7E:D3:CA:B3:6A:CD:E2:F0:D9:45:1A:88:18:3A:E6:F8
Certificate issuer: /CN=240e7594aae24a4fd6c38554517d8b9d6fae060d
Certificate serial: 01856B2547CB5326C7352EC72D67F39F2157
Authority key identifier: 24:0E:75:94:AA:E2:4A:4F:D6:C3:85:54:51:7D:8B:9D:6F:AE:06:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JA51lKriSk_Ww4VUUX2LnW-uBg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/KnDxsH7TyrNqzeLw2UUaiBg65vg.roa
Signing time: Sun 01 Jan 2023 02:24:43 +0000
ROA not before: Sun 01 Jan 2023 02:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 193.47.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:47:cb:53:26:c7:35:2e:c7:2d:67:f3:9f:21:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240e7594aae24a4fd6c38554517d8b9d6fae060d
Validity
Not Before: Jan 1 02:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a70f1b07ed3cab36acde2f0d9451a88183ae6f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:65:15:65:5a:28:48:84:3a:3a:63:5e:35:e1:
78:84:2d:88:59:3f:03:e2:67:0e:25:9a:8d:6f:dc:
88:00:c7:10:72:1d:bc:0c:df:3f:01:d7:26:3a:5e:
91:c5:d4:ed:29:87:fe:9f:65:79:6a:f7:91:ae:79:
7d:b3:58:29:ac:be:b7:4b:50:81:a0:6b:e1:3c:d4:
64:8e:de:5a:f2:c9:08:a9:1d:9e:cd:2c:5d:0d:42:
ed:8b:3b:a0:c3:cb:88:fd:5c:19:3e:c2:5c:62:d6:
7e:ad:2b:f6:00:31:32:78:ac:94:0a:f0:2a:5b:0b:
46:b2:76:ed:a3:1f:0c:00:33:2f:5d:06:69:1f:50:
fc:11:37:1a:8c:12:6c:b6:f1:12:57:b2:11:49:18:
0c:d5:ce:c2:12:a6:57:9d:01:fb:22:37:ee:bc:8e:
c7:5d:52:19:10:16:8f:5a:41:0e:97:b4:92:3c:3a:
43:d7:da:90:4d:3f:e0:71:2b:62:e5:e4:58:80:77:
e8:8d:50:7f:33:59:bd:78:39:80:8c:b8:6f:d1:0f:
7b:e7:08:c1:c3:7f:6f:ac:61:cc:f3:a1:fb:02:ad:
be:66:7d:68:ff:6c:a8:d1:4a:c5:79:5b:ba:c7:8c:
56:da:83:9f:7e:f4:e4:0a:10:40:60:ed:a9:46:86:
34:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:70:F1:B0:7E:D3:CA:B3:6A:CD:E2:F0:D9:45:1A:88:18:3A:E6:F8
X509v3 Authority Key Identifier:
keyid:24:0E:75:94:AA:E2:4A:4F:D6:C3:85:54:51:7D:8B:9D:6F:AE:06:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JA51lKriSk_Ww4VUUX2LnW-uBg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/KnDxsH7TyrNqzeLw2UUaiBg65vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/JA51lKriSk_Ww4VUUX2LnW-uBg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.81.0/24
Signature Algorithm: sha256WithRSAEncryption
64:70:79:fd:a8:ec:b9:e0:51:14:94:e6:29:fc:e0:ee:85:d2:
db:0b:c9:e0:80:20:23:13:c2:00:e9:11:a6:49:5e:ff:ab:2f:
4b:82:8d:ae:d1:90:7e:b4:e3:ca:ac:06:f0:d0:ee:0e:d6:47:
8b:1c:cf:05:c9:a6:1b:fd:4b:24:29:51:95:97:58:ec:cf:a7:
a8:1c:77:53:c6:b4:94:3d:8e:e9:7c:82:a8:30:4d:e6:22:82:
c0:24:91:14:da:80:10:a3:be:60:19:b4:ac:de:e6:94:1f:07:
e1:f4:fd:74:75:b4:cb:26:da:19:d6:64:f8:91:39:3a:a7:e3:
87:0a:dd:9d:31:9a:60:f0:81:f6:31:1f:77:bb:a0:c1:e8:82:
67:c0:60:02:c5:bd:73:65:33:13:e8:16:c2:34:0a:e9:b1:95:
dd:c5:7f:6e:c5:4d:09:d7:ea:39:d3:93:bb:d2:1a:c1:b7:b8:
30:6d:84:96:3f:8d:4c:24:8c:2a:7b:07:13:12:0b:6e:eb:2b:
3a:b1:89:ef:a1:32:db:6c:64:7b:00:08:1b:f5:bc:ae:c0:77:
51:57:ee:7b:39:c8:85:b7:cb:1d:0c:7b:50:a9:05:b1:3d:ee:
e6:64:4f:fb:92:55:4b:d0:97:1e:a0:61:d0:38:8a:85:53:87:
ce:15:c0:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrJUfLUybHNS7HLWfznyFXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MGU3NTk0YWFlMjRhNGZkNmMzODU1NDUxN2Q4YjlkNmZh
ZTA2MGQwHhcNMjMwMTAxMDIyNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYTcwZjFiMDdlZDNjYWIzNmFjZGUyZjBkOTQ1MWE4ODE4M2FlNmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2UVZVooSIQ6OmNeNeF4hC2IWT8D
4mcOJZqNb9yIAMcQch28DN8/AdcmOl6RxdTtKYf+n2V5aveRrnl9s1gprL63S1CB
oGvhPNRkjt5a8skIqR2ezSxdDULtizugw8uI/VwZPsJcYtZ+rSv2ADEyeKyUCvAq
WwtGsnbtox8MADMvXQZpH1D8ETcajBJstvESV7IRSRgM1c7CEqZXnQH7IjfuvI7H
XVIZEBaPWkEOl7SSPDpD19qQTT/gcSti5eRYgHfojVB/M1m9eDmAjLhv0Q975wjB
w39vrGHM86H7Aq2+Zn1o/2yo0UrFeVu6x4xW2oOffvTkChBAYO2pRoY0RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCpw8bB+08qzas3i8NlFGogYOub4MB8GA1UdIwQY
MBaAFCQOdZSq4kpP1sOFVFF9i51vrgYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkE1MWxLcmlTa19XdzRWVVVYMkxuVy11QmcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS81YTI2MGUtYWVjMC00ZTRhLWFhODUt
NGI4ZGYwOTg0OTZkLzEvS25EeHNIN1R5ck5xemVMdzJVVWFpQmc2NXZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS81YTI2MGUtYWVjMC00ZTRhLWFhODUtNGI4ZGYwOTg0OTZk
LzEvSkE1MWxLcmlTa19XdzRWVVVYMkxuVy11QmcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS9RMA0G
CSqGSIb3DQEBCwUAA4IBAQBkcHn9qOy54FEUlOYp/ODuhdLbC8nggCAjE8IA6RGm
SV7/qy9Lgo2u0ZB+tOPKrAbw0O4O1keLHM8FyaYb/UskKVGVl1jsz6eoHHdTxrSU
PY7pfIKoME3mIoLAJJEU2oAQo75gGbSs3uaUHwfh9P10dbTLJtoZ1mT4kTk6p+OH
Ct2dMZpg8IH2MR93u6DB6IJnwGACxb1zZTMT6BbCNArpsZXdxX9uxU0J1+o505O7
0hrBt7gwbYSWP41MJIwqewcTEgtu6ys6sYnvoTLbbGR7AAgb9byuwHdRV+57OciF
t8sdDHtQqQWxPe7mZE/7klVL0JceoGHQOIqFU4fOFcCt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org