Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kw8DNkynbnxvNIuqi0YfqbPz5eI.roa
File: kw8DNkynbnxvNIuqi0YfqbPz5eI.roa (raw, json)
Hash identifier: jqfI8/7uF+Ij0VsDMySpJKFjWuvdnGemjfrA88DR6Ow=
Subject key identifier: 93:0F:03:36:4C:A7:6E:7C:6F:34:8B:AA:8B:46:1F:A9:B3:F3:E5:E2
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018659703C65E00D564872EA83DFED75C9F9
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kw8DNkynbnxvNIuqi0YfqbPz5eI.roa
Signing time: Thu 16 Feb 2023 08:56:13 +0000
ROA not before: Thu 16 Feb 2023 08:56:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 77.242.150.0/24 maxlen: 24
77.242.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Jul 2023 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:70:3c:65:e0:0d:56:48:72:ea:83:df:ed:75:c9:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 16 08:56:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=930f03364ca76e7c6f348baa8b461fa9b3f3e5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:14:29:1b:74:b6:b6:7b:00:59:6b:07:85:1b:
6c:60:8a:71:ce:8e:ab:86:3f:15:df:42:23:bd:56:
e5:76:b2:20:dd:d5:a7:d6:5c:20:fd:98:ca:89:98:
d9:72:d0:91:f4:8d:28:7a:f4:98:31:e6:62:0f:06:
29:93:3d:f6:dd:ca:34:03:87:fb:df:65:f0:ed:4e:
19:15:89:f3:98:de:01:39:2c:ba:0c:ac:a5:82:57:
30:0d:cc:3e:05:5b:91:9b:87:64:1c:30:3a:55:06:
65:33:97:7d:a4:95:ca:26:2e:1f:a9:aa:16:14:23:
21:0d:fe:19:a2:10:d4:91:7a:29:e8:f8:c6:ee:c2:
df:77:ff:c8:5a:0b:0c:28:40:ef:24:0b:ba:b0:7f:
86:79:f5:e9:e4:66:4e:2e:fb:7c:0f:2c:6f:3e:44:
f7:2d:4a:d6:80:12:11:a9:b8:d4:a5:17:df:f0:e7:
26:13:9b:50:aa:18:9c:2f:f9:f3:f5:d9:f2:40:83:
0b:2f:49:6f:00:a5:cf:6e:fc:66:36:96:e7:f4:01:
68:38:12:1e:a7:a9:bc:3f:d1:e1:43:80:b8:a2:41:
d5:84:83:cb:fd:a5:56:f5:2b:c4:6a:fc:ee:76:1d:
24:87:1f:d4:a8:97:0f:e7:bc:15:38:1f:6d:53:e8:
53:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0F:03:36:4C:A7:6E:7C:6F:34:8B:AA:8B:46:1F:A9:B3:F3:E5:E2
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/kw8DNkynbnxvNIuqi0YfqbPz5eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.149.0-77.242.150.255
Signature Algorithm: sha256WithRSAEncryption
98:b5:d5:50:e9:df:cf:03:06:32:e5:2b:be:5d:4d:18:7e:4d:
fb:8a:cf:af:66:4d:38:ce:c7:0c:63:e1:4f:00:ae:53:d2:2e:
f2:d4:d0:30:1e:bf:3c:06:58:4f:94:5d:74:9e:7f:1c:ba:9e:
cd:fc:6b:ea:e4:9c:b4:c1:ed:0d:4d:a0:4c:b9:06:e0:90:b6:
33:85:0d:3e:3a:5a:d7:4e:ce:c8:69:cc:5d:04:a8:71:e2:58:
d9:f5:59:2e:07:2b:c6:f0:c1:fd:8a:e6:f8:9e:d1:e9:61:9b:
cf:22:ad:84:8b:63:d7:a6:0e:f7:2d:bb:c9:f1:a3:38:28:b7:
30:de:1c:d3:6e:2d:7f:8d:8f:3f:85:ff:72:ef:6a:8b:20:01:
f0:d4:cf:0e:e9:1e:20:81:40:21:2c:b9:f8:de:07:f5:d1:e4:
33:d7:86:fe:8d:2e:9e:29:c0:5b:6c:af:04:dc:4d:25:83:41:
69:bd:76:e4:49:be:8a:1a:6f:04:52:37:8e:3d:c3:fe:b4:ee:
78:18:00:75:fe:59:e6:de:db:c6:25:c3:05:14:d4:ed:93:6a:
d4:3b:26:8a:5d:f3:7d:a4:30:7a:7f:b5:fc:09:ff:8a:80:e8:
6c:74:2a:e4:e9:fa:bd:12:08:55:de:47:7d:ad:a7:2e:50:42:
67:f2:92:57
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYZZcDxl4A1WSHLqg9/tdcn5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjMwMjE2MDg1NjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzBmMDMzNjRjYTc2ZTdjNmYzNDhiYWE4YjQ2MWZhOWIzZjNlNWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxQpG3S2tnsAWWsHhRtsYIpxzo6r
hj8V30IjvVbldrIg3dWn1lwg/ZjKiZjZctCR9I0oevSYMeZiDwYpkz323co0A4f7
32Xw7U4ZFYnzmN4BOSy6DKylglcwDcw+BVuRm4dkHDA6VQZlM5d9pJXKJi4fqaoW
FCMhDf4ZohDUkXop6PjG7sLfd//IWgsMKEDvJAu6sH+GefXp5GZOLvt8DyxvPkT3
LUrWgBIRqbjUpRff8OcmE5tQqhicL/nz9dnyQIMLL0lvAKXPbvxmNpbn9AFoOBIe
p6m8P9HhQ4C4okHVhIPL/aVW9SvEavzudh0khx/UqJcP57wVOB9tU+hTxwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFJMPAzZMp258bzSLqotGH6mz8+XiMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEva3c4RE5reW5ibnh2Tkl1cWkwWWZxYlB6NWVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBABN8pUD
BABN8pYwDQYJKoZIhvcNAQELBQADggEBAJi11VDp388DBjLlK75dTRh+TfuKz69m
TTjOxwxj4U8ArlPSLvLU0DAevzwGWE+UXXSefxy6ns38a+rknLTB7Q1NoEy5BuCQ
tjOFDT46WtdOzshpzF0EqHHiWNn1WS4HK8bwwf2K5vie0elhm88irYSLY9emDvct
u8nxozgotzDeHNNuLX+Njz+F/3LvaosgAfDUzw7pHiCBQCEsufjeB/XR5DPXhv6N
Lp4pwFtsrwTcTSWDQWm9duRJvooabwRSN449w/607ngYAHX+Webe28YlwwUU1O2T
atQ7Jopd832kMHp/tfwJ/4qA6Gx0KuTp+r0SCFXeR32tpy5QQmfyklc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:56 2024 by rpki-client on console-ams.rpki-client.org