Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/K0WjxE6N0xcJ-KSgVJEBulJDdMM.roa
File: K0WjxE6N0xcJ-KSgVJEBulJDdMM.roa (raw, json)
Hash identifier: BHxlVA6qm0hOtvo3ZXo5tj2i+0HGACLjQN4vRtCE8kI=
Subject key identifier: 2B:45:A3:C4:4E:8D:D3:17:09:F8:A4:A0:54:91:01:BA:52:43:74:C3
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01856DDD6A7D65105C2ABC4CFE0722215D0B
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/K0WjxE6N0xcJ-KSgVJEBulJDdMM.roa
Signing time: Sun 01 Jan 2023 15:05:05 +0000
ROA not before: Sun 01 Jan 2023 15:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205798
IP address blocks: 193.141.109.0/24 maxlen: 24
193.142.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:6a:7d:65:10:5c:2a:bc:4c:fe:07:22:21:5d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jan 1 15:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b45a3c44e8dd31709f8a4a0549101ba524374c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:39:ae:c6:aa:75:9c:24:d9:36:a1:77:68:
3c:8a:0c:11:40:b5:64:a0:1d:2b:8a:e4:fe:65:d6:
15:1b:40:0c:e1:ce:99:57:1b:85:28:3d:51:3d:e6:
01:42:7a:d9:ef:eb:2d:7f:83:25:74:2a:f6:b5:5a:
7f:7b:e0:ba:f4:c1:b3:db:08:e9:7d:25:15:ce:41:
d5:d2:eb:03:75:95:32:c0:aa:12:92:5d:d1:d3:f3:
1b:af:cc:8e:ca:39:c4:e5:74:05:ba:65:8e:cf:01:
10:a7:0f:c5:4d:8d:7e:6d:6d:2b:cb:2d:01:66:4f:
59:ca:7b:50:30:a9:fd:7d:9b:46:56:47:5b:28:8e:
63:95:65:d7:d1:2b:82:3c:02:d5:50:49:1b:62:2c:
98:43:74:ad:96:77:d1:71:2b:85:54:3a:73:e9:18:
ac:8d:37:d1:ac:0c:2e:b0:30:d8:56:95:2b:59:ae:
24:00:6f:47:e5:20:ed:91:b2:bf:65:24:24:05:9e:
af:9d:2c:02:cb:79:f6:1c:fb:77:3a:8a:a1:1a:df:
5e:1f:e6:61:01:ff:1d:3b:73:12:30:36:1f:6f:89:
7f:f2:de:40:00:01:f4:81:24:18:fb:8c:2e:d8:b3:
eb:21:e3:ff:3e:5f:5a:3d:19:1a:81:e8:89:ac:0a:
e6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:45:A3:C4:4E:8D:D3:17:09:F8:A4:A0:54:91:01:BA:52:43:74:C3
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/K0WjxE6N0xcJ-KSgVJEBulJDdMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.109.0/24
193.142.3.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ea:a2:fa:94:68:44:eb:87:ab:c8:7e:a6:7f:48:c4:ec:d9:
3b:02:de:97:7f:48:b0:b8:c6:ad:cd:24:f1:4e:77:0b:b6:f5:
11:9e:cf:1e:7c:1c:d3:2d:7f:c0:c3:a2:bf:a5:50:f8:2f:1c:
2f:fa:4c:8c:86:2b:71:8b:eb:21:f2:11:36:ff:d3:2f:d9:e8:
97:c7:7a:9c:16:51:7a:14:68:96:6a:c9:0b:f0:e5:dc:21:e8:
9e:4b:18:3e:0b:e2:19:f9:ce:15:ad:b3:4b:a7:2c:81:5d:38:
2b:ee:66:86:e7:7a:c6:04:32:39:3e:2c:1f:b9:72:36:77:68:
6a:21:e1:ef:59:36:6b:18:c2:bc:f7:4d:3a:ac:d9:aa:64:73:
78:36:2b:6d:b3:37:f5:31:4a:6d:70:07:78:ff:43:dd:66:c8:
27:82:37:bc:88:ca:14:d0:a3:97:2e:1b:4e:87:5b:95:99:7f:
37:f5:ac:02:34:8d:b0:ed:ac:a2:c1:10:f2:78:a5:70:f5:f8:
61:e8:2a:e2:f5:c5:43:24:d0:c9:80:9d:cd:48:84:89:1c:57:
41:e4:af:ef:35:f6:a1:b5:7f:57:c9:14:db:15:08:5c:7b:17:
c5:1b:e0:93:c4:95:b4:2d:5e:21:4e:08:93:6b:82:e9:b9:2f:
b3:66:18:ae
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVt3Wp9ZRBcKrxM/gciIV0LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjMwMTAxMTUwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYjQ1YTNjNDRlOGRkMzE3MDlmOGE0YTA1NDkxMDFiYTUyNDM3NGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtE45rsaqdZwk2Tahd2g8igwRQLVk
oB0riuT+ZdYVG0AM4c6ZVxuFKD1RPeYBQnrZ7+stf4MldCr2tVp/e+C69MGz2wjp
fSUVzkHV0usDdZUywKoSkl3R0/Mbr8yOyjnE5XQFumWOzwEQpw/FTY1+bW0ryy0B
Zk9ZyntQMKn9fZtGVkdbKI5jlWXX0SuCPALVUEkbYiyYQ3StlnfRcSuFVDpz6Ris
jTfRrAwusDDYVpUrWa4kAG9H5SDtkbK/ZSQkBZ6vnSwCy3n2HPt3OoqhGt9eH+Zh
Af8dO3MSMDYfb4l/8t5AAAH0gSQY+4wu2LPrIeP/Pl9aPRkageiJrArm7wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCtFo8ROjdMXCfikoFSRAbpSQ3TDMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvSzBXanhFNk4weGNKLUtTZ1ZKRUJ1bEpEZE1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwY1tAwQA
wY4DMA0GCSqGSIb3DQEBCwUAA4IBAQA36qL6lGhE64eryH6mf0jE7Nk7At6Xf0iw
uMatzSTxTncLtvURns8efBzTLX/Aw6K/pVD4Lxwv+kyMhitxi+sh8hE2/9Mv2eiX
x3qcFlF6FGiWaskL8OXcIeieSxg+C+IZ+c4VrbNLpyyBXTgr7maG53rGBDI5Piwf
uXI2d2hqIeHvWTZrGMK89006rNmqZHN4Nittszf1MUptcAd4/0PdZsgngje8iMoU
0KOXLhtOh1uVmX839awCNI2w7ayiwRDyeKVw9fhh6Cri9cVDJNDJgJ3NSISJHFdB
5K/vNfahtX9XyRTbFQhcexfFG+CTxJW0LV4hTgiTa4LpuS+zZhiu
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:46 2023 by rpki-client on console-fra.rpki-client.org