Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/KdDJKFVq9c0-RInzABbyHx0-TzE.roa
File: KdDJKFVq9c0-RInzABbyHx0-TzE.roa (raw, json)
Hash identifier: pXzhH4Qsy+yoPfnsOLtktFhkQC9yt7expdfMyMsmb/k=
Subject key identifier: 29:D0:C9:28:55:6A:F5:CD:3E:44:89:F3:00:16:F2:1F:1D:3E:4F:31
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018E1887DD7F6380C20A5CF95E5BDFADE247
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/KdDJKFVq9c0-RInzABbyHx0-TzE.roa
Signing time: Thu 07 Mar 2024 10:49:01 +0000
ROA not before: Thu 07 Mar 2024 10:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 78.159.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 13:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:18:87:dd:7f:63:80:c2:0a:5c:f9:5e:5b:df:ad:e2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Mar 7 10:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29d0c928556af5cd3e4489f30016f21f1d3e4f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:84:20:6a:59:4c:b3:af:34:74:3b:fc:83:66:
db:0b:c7:18:c5:de:b8:1a:b0:52:cb:9e:89:b4:9b:
36:31:3d:a0:03:65:1e:92:4b:82:3d:d2:b6:f2:69:
25:79:dd:19:b8:17:33:1e:83:55:0c:3d:6a:5a:94:
81:29:db:39:47:ec:1a:1f:fe:9d:79:43:a6:f9:0c:
4c:da:26:ce:8f:de:42:95:8d:c6:c8:d4:1c:7d:0e:
70:d6:40:51:ec:91:bd:b7:33:9f:3b:df:cc:04:8b:
77:cc:cc:f6:24:9a:d7:ca:22:2a:50:75:bf:5a:92:
0a:00:51:29:b8:fc:e8:67:f0:aa:d9:28:dc:25:90:
0d:da:e7:15:4c:dc:8a:7f:9b:db:eb:15:29:c1:1a:
15:4a:a7:3f:b0:45:ba:7c:60:8f:e0:84:59:1e:b1:
a7:3f:aa:76:29:46:bd:89:69:32:b2:e6:25:d4:45:
54:ba:8f:c7:33:ab:be:f2:4f:96:51:58:28:15:99:
b9:73:e0:cf:2e:4d:36:3f:74:f4:eb:61:1b:7d:33:
61:e9:d5:09:71:2a:5f:78:e2:69:26:45:f7:20:cb:
8f:3a:31:df:ad:3b:d0:83:ea:ae:46:70:b7:82:6a:
7e:a3:ff:f9:44:84:a7:86:8b:5c:1b:92:8e:69:14:
3e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D0:C9:28:55:6A:F5:CD:3E:44:89:F3:00:16:F2:1F:1D:3E:4F:31
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/KdDJKFVq9c0-RInzABbyHx0-TzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.131.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b1:db:d9:d2:7c:38:12:ef:b5:12:c3:c2:40:eb:4e:bf:c0:
2d:f7:cb:fb:77:93:24:e9:a3:c0:7a:c6:39:89:30:47:87:e7:
bf:e4:d4:5c:72:46:b6:9a:76:38:a3:c2:8f:95:7c:55:2f:19:
16:65:90:ec:93:53:8b:91:f0:2b:4f:82:af:ab:6a:e0:a4:41:
81:dc:e6:47:db:c7:0f:00:82:f7:81:08:18:47:fe:93:b2:41:
65:99:9e:73:79:a7:a7:2c:7c:8f:73:dc:d3:ab:08:e7:00:36:
35:54:d3:9f:15:53:b0:02:b9:bb:72:5b:4e:0a:69:01:4f:dc:
f6:1b:e4:da:27:9c:98:d9:b6:30:82:ae:16:51:94:48:7c:cf:
31:6f:31:d9:89:41:99:98:42:6e:a7:45:18:20:ae:7e:3f:6e:
87:20:f8:81:d1:27:6c:49:6a:0e:6b:56:91:7e:67:06:48:76:
24:fd:1a:de:f8:76:97:f0:d1:1b:ee:35:73:52:f9:2a:a9:e6:
8a:d6:d1:37:7b:61:75:02:7e:f4:82:45:88:ea:8c:c7:cd:88:
46:f4:3c:03:5d:a3:e2:01:a3:4d:26:39:12:10:50:60:47:be:
74:38:3a:4b:07:c0:43:2d:54:7a:2c:4f:89:5e:76:22:d5:44:
5d:3c:1c:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4Yh91/Y4DCClz5XlvfreJHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjQwMzA3MTA0OTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOWQwYzkyODU1NmFmNWNkM2U0NDg5ZjMwMDE2ZjIxZjFkM2U0ZjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YQgallMs680dDv8g2bbC8cYxd64
GrBSy56JtJs2MT2gA2UekkuCPdK28mkled0ZuBczHoNVDD1qWpSBKds5R+waH/6d
eUOm+QxM2ibOj95ClY3GyNQcfQ5w1kBR7JG9tzOfO9/MBIt3zMz2JJrXyiIqUHW/
WpIKAFEpuPzoZ/Cq2SjcJZAN2ucVTNyKf5vb6xUpwRoVSqc/sEW6fGCP4IRZHrGn
P6p2KUa9iWkysuYl1EVUuo/HM6u+8k+WUVgoFZm5c+DPLk02P3T062EbfTNh6dUJ
cSpfeOJpJkX3IMuPOjHfrTvQg+quRnC3gmp+o//5RISnhotcG5KOaRQ+LQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCnQyShVavXNPkSJ8wAW8h8dPk8xMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvS2RESktGVnE5YzAtUkluekFCYnlIeDAtVHpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATp+DMA0G
CSqGSIb3DQEBCwUAA4IBAQANsdvZ0nw4Eu+1EsPCQOtOv8At98v7d5Mk6aPAesY5
iTBHh+e/5NRccka2mnY4o8KPlXxVLxkWZZDsk1OLkfArT4Kvq2rgpEGB3OZH28cP
AIL3gQgYR/6TskFlmZ5zeaenLHyPc9zTqwjnADY1VNOfFVOwArm7cltOCmkBT9z2
G+TaJ5yY2bYwgq4WUZRIfM8xbzHZiUGZmEJup0UYIK5+P26HIPiB0SdsSWoOa1aR
fmcGSHYk/Rre+HaX8NEb7jVzUvkqqeaK1tE3e2F1An70gkWI6ozHzYhG9DwDXaPi
AaNNJjkSEFBgR750ODpLB8BDLVR6LE+JXnYi1URdPBw4
-----END CERTIFICATE-----
Generated at Thu Mar 21 18:08:38 2024 by rpki-client on console-fra.rpki-client.org