Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/KE1xJXj6FRXgxYtc7H7puRl2Ahc.roa
File: KE1xJXj6FRXgxYtc7H7puRl2Ahc.roa (raw, json)
Hash identifier: Kfu2NpzWEHTIKqceVGi1W/sdi+tMRRRuxBW6wCvnwko=
Subject key identifier: 28:4D:71:25:78:FA:15:15:E0:C5:8B:5C:EC:7E:E9:B9:19:76:02:17
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 018AA041EEE347BA69B1F6B2B3500F65FB6D
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/KE1xJXj6FRXgxYtc7H7puRl2Ahc.roa
Signing time: Sat 16 Sep 2023 23:09:50 +0000
ROA not before: Sat 16 Sep 2023 23:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 45.85.13.0/24 maxlen: 24
45.85.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a0:41:ee:e3:47:ba:69:b1:f6:b2:b3:50:0f:65:fb:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Sep 16 23:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=284d712578fa1515e0c58b5cec7ee9b919760217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:67:67:50:f4:13:47:b4:89:40:d4:03:18:
af:d9:3c:0a:76:9e:08:d3:df:03:c8:51:db:f1:0d:
32:cf:dc:9d:ba:7f:55:f5:3f:86:58:d0:03:5e:c5:
a0:48:04:a4:bd:f4:4c:31:3d:dc:bf:16:02:4d:7e:
7e:78:07:57:7c:01:e0:63:2b:50:64:96:17:3c:9c:
bf:d5:35:43:d2:74:de:82:6d:c8:c3:84:d5:4c:7c:
79:db:65:fa:4b:89:4d:39:f5:94:53:f1:c8:80:f8:
bd:d1:48:11:6a:9b:66:b1:1b:80:2e:44:95:df:0d:
3f:5b:77:fe:c9:5e:e3:dd:36:17:05:1e:68:fb:7c:
3c:78:43:2c:bb:16:b0:a3:67:5f:c9:55:02:68:50:
11:9c:31:c5:d3:c4:4e:96:7d:8a:d8:80:05:45:d0:
66:c9:e7:53:fa:a1:34:5c:8b:a3:d1:2c:24:9f:96:
5a:74:4f:45:34:06:9f:a6:58:0f:97:7d:ed:2b:5d:
89:f7:81:69:fd:4d:86:6f:80:3e:d2:ae:46:15:99:
4d:17:c2:8a:c1:cc:2d:28:aa:4a:d0:76:d3:0f:00:
6c:1f:b7:e5:4c:8f:76:14:0a:38:9e:e2:cc:cf:9a:
83:b8:6b:80:fe:8e:97:0d:9b:5e:47:c5:2e:09:2c:
7d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4D:71:25:78:FA:15:15:E0:C5:8B:5C:EC:7E:E9:B9:19:76:02:17
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/KE1xJXj6FRXgxYtc7H7puRl2Ahc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.12.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:a6:73:fe:fe:82:70:6c:81:92:37:dd:7a:43:02:ce:d0:57:
75:ab:81:62:a0:26:61:b9:23:ce:c4:03:40:1f:12:66:b9:8a:
7f:f1:5c:b5:92:7e:5d:0e:45:2b:b6:87:c5:f6:1a:dd:21:2a:
8e:79:94:51:9f:e9:5d:94:5b:8b:60:7e:4a:6e:99:be:60:6c:
bd:2f:e3:85:c0:10:b5:63:a9:81:89:18:ba:c7:95:ce:20:56:
d0:ad:3b:08:f8:37:e3:e0:fd:9a:a0:32:1d:44:1f:cd:5e:55:
ca:5b:7a:42:48:2b:c3:f2:6c:19:fc:58:f9:a7:b9:3b:55:ff:
9f:fe:cc:3a:2c:2d:e9:b3:cd:e0:86:b7:d5:e5:54:85:3d:70:
62:e1:f8:f0:5c:b6:6b:4d:dd:18:d8:d3:b5:0a:43:ca:99:6a:
98:99:4a:9a:fb:55:8b:38:55:3a:d2:a6:7e:c9:ed:10:8c:8d:
42:40:35:79:71:fd:bc:be:14:72:e5:6d:c4:c7:aa:dd:cf:7d:
7d:1d:c3:2f:e1:ba:15:f4:fe:88:2f:e9:b1:dd:3f:8a:27:42:
fa:4b:fb:3b:a7:09:65:c7:10:92:6a:96:77:d8:2b:75:05:e2:
7d:54:3a:f8:a2:41:37:82:24:06:be:57:3d:a4:98:8f:25:a6:
17:cd:3b:77
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqgQe7jR7ppsfays1APZfttMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZmM4ODdjOTc3MzkzNTc1ZGU2MjU3ZTc1ZmE5OWNkZTIw
MzdjNmMwHhcNMjMwOTE2MjMwOTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODRkNzEyNTc4ZmExNTE1ZTBjNThiNWNlYzdlZTliOTE5NzYwMjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowlnZ1D0E0e0iUDUAxiv2TwKdp4I
098DyFHb8Q0yz9ydun9V9T+GWNADXsWgSASkvfRMMT3cvxYCTX5+eAdXfAHgYytQ
ZJYXPJy/1TVD0nTegm3Iw4TVTHx522X6S4lNOfWUU/HIgPi90UgRaptmsRuALkSV
3w0/W3f+yV7j3TYXBR5o+3w8eEMsuxawo2dfyVUCaFARnDHF08ROln2K2IAFRdBm
yedT+qE0XIuj0Swkn5ZadE9FNAafplgPl33tK12J94Fp/U2Gb4A+0q5GFZlNF8KK
wcwtKKpK0HbTDwBsH7flTI92FAo4nuLMz5qDuGuA/o6XDZteR8UuCSx9awIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFChNcSV4+hUV4MWLXOx+6bkZdgIXMB8GA1UdIwQY
MBaAFET8iHyXc5NXXeYlfnX6mc3iA3xsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUlB5SWZKZHprMWRkNWlWLWRmcVp6ZUlEZkd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mMDdjNjYtNDczZC00MzVhLWI2OTMt
YzM2OWMxZDRjMzM3LzEvS0UxeEpYajZGUlhneFl0YzdIN3B1UmwyQWhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9mMDdjNjYtNDczZC00MzVhLWI2OTMtYzM2OWMxZDRjMzM3
LzEvUlB5SWZKZHprMWRkNWlWLWRmcVp6ZUlEZkd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLVUMMA0G
CSqGSIb3DQEBCwUAA4IBAQB/pnP+/oJwbIGSN916QwLO0Fd1q4FioCZhuSPOxANA
HxJmuYp/8Vy1kn5dDkUrtofF9hrdISqOeZRRn+ldlFuLYH5Kbpm+YGy9L+OFwBC1
Y6mBiRi6x5XOIFbQrTsI+Dfj4P2aoDIdRB/NXlXKW3pCSCvD8mwZ/Fj5p7k7Vf+f
/sw6LC3ps83ghrfV5VSFPXBi4fjwXLZrTd0Y2NO1CkPKmWqYmUqa+1WLOFU60qZ+
ye0QjI1CQDV5cf28vhRy5W3Ex6rdz319HcMv4boV9P6IL+mx3T+KJ0L6S/s7pwll
xxCSapZ32Ct1BeJ9VDr4okE3giQGvlc9pJiPJaYXzTt3
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:59 2024 by rpki-client on console-ams.rpki-client.org