Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/krft28rRC3iCpk3dQAahvkHh75o.roa
File: krft28rRC3iCpk3dQAahvkHh75o.roa (raw, json)
Hash identifier: 0iUFkLYxXBW/kmXkprGio6L8kXS6tesULkkRBtbl0pw=
Subject key identifier: 92:B7:ED:DB:CA:D1:0B:78:82:A6:4D:DD:40:06:A1:BE:41:E1:EF:9A
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018CAFB5869C00253D2FDA37ECEC51476647
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/krft28rRC3iCpk3dQAahvkHh75o.roa
Signing time: Thu 28 Dec 2023 09:15:58 +0000
ROA not before: Thu 28 Dec 2023 09:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201575
IP address blocks: 213.145.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:b5:86:9c:00:25:3d:2f:da:37:ec:ec:51:47:66:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Dec 28 09:15:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92b7eddbcad10b7882a64ddd4006a1be41e1ef9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0a:4b:74:71:a5:d9:dc:ec:00:a6:a6:83:63:
51:a8:19:6b:e6:0a:1a:18:0d:b2:57:d1:7b:8c:1f:
c7:80:cb:56:79:cf:34:73:b7:4c:05:18:3e:ea:03:
22:cb:fe:44:b5:07:08:87:fa:7a:e9:2b:c5:c0:62:
b1:39:6c:59:ac:3f:98:97:a4:6a:41:d7:c1:1a:dc:
bf:bf:84:55:2e:21:53:61:a6:01:2f:6c:8f:0b:86:
e4:07:77:4a:8a:a5:b4:3d:ab:43:5f:e0:f5:4c:42:
31:4f:dc:7f:f4:b1:8e:b1:2e:73:e2:a8:80:2f:3e:
cf:1d:1c:fe:7c:2c:8d:c0:6e:95:e9:c3:e2:b9:fd:
3b:1e:32:ec:51:e2:89:a9:bc:10:b2:b4:c2:e2:28:
e7:3f:fa:14:5e:c6:fd:06:af:ba:de:31:21:6b:9f:
5e:b3:c1:fe:2c:51:d7:13:22:f4:9d:2e:f7:9e:55:
2c:a1:20:9e:79:16:d2:71:c6:6d:29:b4:f9:12:a7:
4c:f4:6b:e2:99:0a:73:07:da:2e:1f:66:7b:00:78:
4d:af:ed:e7:58:f9:59:4b:c7:3b:66:61:85:a6:fd:
94:d3:65:bf:3f:6b:b4:05:54:b6:07:15:3a:f0:13:
fd:4f:c0:ef:e2:43:56:6f:6c:02:9f:81:f6:b4:ad:
95:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B7:ED:DB:CA:D1:0B:78:82:A6:4D:DD:40:06:A1:BE:41:E1:EF:9A
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/krft28rRC3iCpk3dQAahvkHh75o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.74.0/24
Signature Algorithm: sha256WithRSAEncryption
23:75:9e:1c:52:83:b4:5f:74:0a:cc:ec:cb:4c:5a:63:b3:43:
26:ce:10:df:33:bc:9b:33:43:78:cf:49:c5:19:af:17:b1:89:
d4:72:f7:69:a2:5f:43:79:b3:67:ef:30:ab:18:e1:2c:9d:dc:
b7:df:2e:c2:67:37:91:95:81:0f:8b:69:b8:ad:40:6f:f0:ca:
95:5b:a6:df:20:94:f0:52:18:56:61:ae:1e:b8:b0:fe:35:4a:
64:76:b9:b2:66:90:48:86:21:37:28:39:b0:8d:39:a1:77:48:
64:9f:72:c1:66:2c:46:af:98:b1:76:f9:30:f2:75:5c:20:e6:
12:72:36:16:97:e1:03:db:9e:ef:97:92:d0:28:28:be:b4:dc:
ac:03:88:76:f3:de:ae:04:ac:54:f8:1d:08:5a:88:e2:14:b4:
9d:70:34:08:c8:ad:37:22:ed:bf:31:6f:08:c0:a5:d0:7c:9a:
d1:8a:72:63:50:eb:28:d7:c1:cc:36:4c:75:7c:ac:c2:69:e0:
9e:02:f1:02:73:94:6c:0a:5c:11:71:d7:29:46:02:08:8b:68:
00:ec:e0:c3:b0:f6:2a:d1:0a:01:c9:c2:37:da:dd:00:58:5e:
cd:fe:5b:c4:5c:55:35:af:ac:ac:90:de:f8:91:9a:a9:82:a1:
b5:a9:46:e2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyvtYacACU9L9o37OxRR2ZHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMxMjI4MDkxNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmI3ZWRkYmNhZDEwYjc4ODJhNjRkZGQ0MDA2YTFiZTQxZTFlZjlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngpLdHGl2dzsAKamg2NRqBlr5goa
GA2yV9F7jB/HgMtWec80c7dMBRg+6gMiy/5EtQcIh/p66SvFwGKxOWxZrD+Yl6Rq
QdfBGty/v4RVLiFTYaYBL2yPC4bkB3dKiqW0PatDX+D1TEIxT9x/9LGOsS5z4qiA
Lz7PHRz+fCyNwG6V6cPiuf07HjLsUeKJqbwQsrTC4ijnP/oUXsb9Bq+63jEha59e
s8H+LFHXEyL0nS73nlUsoSCeeRbSccZtKbT5EqdM9GvimQpzB9ouH2Z7AHhNr+3n
WPlZS8c7ZmGFpv2U02W/P2u0BVS2BxU68BP9T8Dv4kNWb2wCn4H2tK2VnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJK37dvK0Qt4gqZN3UAGob5B4e+aMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEva3JmdDI4clJDM2lDcGszZFFBYWh2a0hoNzVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1ZFKMA0G
CSqGSIb3DQEBCwUAA4IBAQAjdZ4cUoO0X3QKzOzLTFpjs0MmzhDfM7ybM0N4z0nF
Ga8XsYnUcvdpol9DebNn7zCrGOEsndy33y7CZzeRlYEPi2m4rUBv8MqVW6bfIJTw
UhhWYa4euLD+NUpkdrmyZpBIhiE3KDmwjTmhd0hkn3LBZixGr5ixdvkw8nVcIOYS
cjYWl+ED257vl5LQKCi+tNysA4h2896uBKxU+B0IWojiFLSdcDQIyK03Iu2/MW8I
wKXQfJrRinJjUOso18HMNkx1fKzCaeCeAvECc5RsClwRcdcpRgIIi2gA7ODDsPYq
0QoBycI32t0AWF7N/lvEXFU1r6yskN74kZqpgqG1qUbi
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org