Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/KZGS8IVZydPpumoa3hp_cisjiaI.roa
File: KZGS8IVZydPpumoa3hp_cisjiaI.roa (raw, json)
Hash identifier: h3wptNy16LW48xcIEdv0Svw1AsnQ18KuMm7I+d/0Bu0=
Subject key identifier: 29:91:92:F0:85:59:C9:D3:E9:BA:6A:1A:DE:1A:7F:72:2B:23:89:A2
Certificate issuer: /CN=5a141c5090824d0a17c29ec4050e21007113fbda
Certificate serial: 018756D5758B003079810223CAC83500590A
Authority key identifier: 5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/KZGS8IVZydPpumoa3hp_cisjiaI.roa
Signing time: Thu 06 Apr 2023 13:50:42 +0000
ROA not before: Thu 06 Apr 2023 13:50:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.85.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:56:d5:75:8b:00:30:79:81:02:23:ca:c8:35:00:59:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a141c5090824d0a17c29ec4050e21007113fbda
Validity
Not Before: Apr 6 13:50:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=299192f08559c9d3e9ba6a1ade1a7f722b2389a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9f:f6:94:c6:4d:9b:7e:84:2b:c3:35:f1:4c:
20:a3:10:65:60:07:e1:cb:3a:ac:37:6a:a6:9f:9c:
bc:01:9d:f8:ca:a3:66:da:da:4e:dd:5c:84:5e:3c:
0b:e7:5f:23:93:57:28:9a:44:a0:9a:96:5b:a7:01:
5e:68:0c:8e:95:0c:a7:78:49:54:b5:13:e3:30:c3:
2f:a2:ec:5b:6b:03:d6:66:b6:9d:67:78:95:c4:dd:
10:ca:d7:96:0b:aa:eb:f4:86:72:ef:73:d2:a7:fb:
9a:1c:82:ef:29:d9:91:02:e9:07:89:d8:bc:20:68:
17:00:21:43:fb:a6:fb:6f:53:7a:bb:b3:3e:8b:7b:
23:72:53:2b:78:95:9c:9e:38:51:ed:e5:c4:38:00:
92:0a:07:3f:af:d3:85:5a:43:8c:a0:28:91:65:f4:
71:9c:85:58:f8:1c:fc:54:00:1a:bd:09:1e:b5:6a:
9f:ab:e0:29:1a:86:9e:9f:8a:43:4c:6e:a1:98:8b:
9a:c8:bf:fc:c1:cd:01:fd:e1:e5:e5:59:98:27:07:
1d:ad:8a:53:9d:e9:43:79:de:01:ca:1d:17:ce:c9:
51:5f:2f:b7:68:41:bb:4e:de:0e:51:20:b7:14:4f:
fd:fd:ad:09:d6:39:fb:ba:d4:bb:bc:61:51:66:99:
81:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:91:92:F0:85:59:C9:D3:E9:BA:6A:1A:DE:1A:7F:72:2B:23:89:A2
X509v3 Authority Key Identifier:
keyid:5A:14:1C:50:90:82:4D:0A:17:C2:9E:C4:05:0E:21:00:71:13:FB:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhQcUJCCTQoXwp7EBQ4hAHET-9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/KZGS8IVZydPpumoa3hp_cisjiaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b20e90-bf6e-4e25-87d5-eceeff8e84e0/1/WhQcUJCCTQoXwp7EBQ4hAHET-9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.79.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:25:41:a6:3e:ad:41:bf:97:0b:83:f8:61:c3:56:23:d7:1e:
fd:da:d3:9d:03:7a:46:e1:19:82:79:ba:d4:3c:5a:a8:2b:cc:
54:4a:e6:46:95:d5:13:83:e4:75:7a:c0:fd:42:11:f9:d8:39:
8f:ca:9c:86:11:69:cf:79:f7:d0:50:dc:c5:23:68:e2:bf:a1:
9a:e6:4f:ca:12:aa:f1:f2:ba:e9:14:0b:24:0f:01:99:ac:f3:
19:75:67:4b:54:1b:47:6f:4a:d4:5a:2c:34:22:93:e5:84:3d:
14:43:d6:65:d4:42:6f:3d:53:68:29:d0:57:fd:1d:f3:38:cd:
bb:b6:da:f0:0d:b0:f7:f8:a5:5e:7d:1d:86:c6:a2:9c:ae:f6:
e2:bf:c9:c7:1a:ae:39:59:27:e3:4a:f6:9c:bc:b3:0f:bb:23:
d1:30:d1:6f:50:63:34:4a:b4:88:04:2c:82:30:46:6f:9e:a5:
11:79:0a:5f:43:e0:a3:ea:12:ea:89:2e:97:f0:23:ff:31:3a:
5a:8c:68:02:4d:f1:46:b6:4c:86:e0:4f:57:31:c1:cb:6b:62:
30:88:8d:e4:97:5a:5a:6c:82:fe:a4:57:92:86:0b:bd:0e:ed:
ed:ce:d2:22:4a:4d:6f:09:dc:d5:d3:f1:0a:65:a9:99:af:6b:
c7:06:a6:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdW1XWLADB5gQIjysg1AFkKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhMTQxYzUwOTA4MjRkMGExN2MyOWVjNDA1MGUyMTAwNzEx
M2ZiZGEwHhcNMjMwNDA2MTM1MDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTkxOTJmMDg1NTljOWQzZTliYTZhMWFkZTFhN2Y3MjJiMjM4OWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZ/2lMZNm36EK8M18UwgoxBlYAfh
yzqsN2qmn5y8AZ34yqNm2tpO3VyEXjwL518jk1comkSgmpZbpwFeaAyOlQyneElU
tRPjMMMvouxbawPWZradZ3iVxN0QyteWC6rr9IZy73PSp/uaHILvKdmRAukHidi8
IGgXACFD+6b7b1N6u7M+i3sjclMreJWcnjhR7eXEOACSCgc/r9OFWkOMoCiRZfRx
nIVY+Bz8VAAavQketWqfq+ApGoaen4pDTG6hmIuayL/8wc0B/eHl5VmYJwcdrYpT
nelDed4Byh0XzslRXy+3aEG7Tt4OUSC3FE/9/a0J1jn7utS7vGFRZpmBLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCmRkvCFWcnT6bpqGt4af3IrI4miMB8GA1UdIwQY
MBaAFFoUHFCQgk0KF8KexAUOIQBxE/vaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2hRY1VKQ0NUUW9Yd3A3RUJRNGhBSEVULTlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iMjBlOTAtYmY2ZS00ZTI1LTg3ZDUt
ZWNlZWZmOGU4NGUwLzEvS1pHUzhJVlp5ZFBwdW1vYTNocF9jaXNqaWFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9iMjBlOTAtYmY2ZS00ZTI1LTg3ZDUtZWNlZWZmOGU4NGUw
LzEvV2hRY1VKQ0NUUW9Yd3A3RUJRNGhBSEVULTlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVVPMA0G
CSqGSIb3DQEBCwUAA4IBAQA6JUGmPq1Bv5cLg/hhw1Yj1x792tOdA3pG4RmCebrU
PFqoK8xUSuZGldUTg+R1esD9QhH52DmPypyGEWnPeffQUNzFI2jiv6Ga5k/KEqrx
8rrpFAskDwGZrPMZdWdLVBtHb0rUWiw0IpPlhD0UQ9Zl1EJvPVNoKdBX/R3zOM27
ttrwDbD3+KVefR2GxqKcrvbiv8nHGq45WSfjSvacvLMPuyPRMNFvUGM0SrSIBCyC
MEZvnqUReQpfQ+Cj6hLqiS6X8CP/MTpajGgCTfFGtkyG4E9XMcHLa2IwiI3kl1pa
bIL+pFeShgu9Du3tztIiSk1vCdzV0/EKZamZr2vHBqZk
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:58 2023 by rpki-client on console-ams.rpki-client.org