Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/KJn1dFqJSebT1_Dsu1lWPdKvdDs.roa
File: KJn1dFqJSebT1_Dsu1lWPdKvdDs.roa (raw, json)
Hash identifier: U4E6WYh1K3sRiCfSyLuMingiNXyZhRHUksZFASfeP6c=
Subject key identifier: 28:99:F5:74:5A:89:49:E6:D3:D7:F0:EC:BB:59:56:3D:D2:AF:74:3B
Certificate issuer: /CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Certificate serial: 018573313D63778F6533843ECC30B521FF4C
Authority key identifier: 72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/KJn1dFqJSebT1_Dsu1lWPdKvdDs.roa
Signing time: Mon 02 Jan 2023 15:54:44 +0000
ROA not before: Mon 02 Jan 2023 15:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41008
IP address blocks: 195.14.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:3d:63:77:8f:65:33:84:3e:cc:30:b5:21:ff:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72481dd90d100bd5bc23c04b10c0a8431cc9a5b5
Validity
Not Before: Jan 2 15:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2899f5745a8949e6d3d7f0ecbb59563dd2af743b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c5:0d:5c:df:dd:bb:26:31:54:cf:14:1a:f4:
69:df:c8:41:69:1b:a9:1e:b9:b5:58:8c:f5:86:cf:
62:00:54:16:11:01:18:cb:d0:8c:c6:85:ee:89:23:
51:41:ed:6a:0e:c4:91:8d:a4:d2:c6:30:74:e5:20:
01:07:83:6c:ce:7d:f1:14:46:f4:01:1b:fd:5e:65:
e4:be:41:e1:d8:3b:4f:c7:2f:d9:38:5d:82:ec:2c:
28:f6:3e:77:42:0a:10:2e:2e:b6:5a:96:61:a8:68:
bf:55:9e:11:3d:53:3b:ae:08:e4:ae:f7:5b:32:26:
4d:a3:65:b3:1a:26:08:42:7f:d5:9a:fb:ad:c7:67:
e1:6d:91:4b:d7:76:5b:bd:ad:f6:5d:0e:69:16:46:
b8:39:09:52:39:7a:86:ee:ad:e4:3f:35:29:70:31:
c6:bb:1f:6f:f8:e8:f4:b8:61:a8:71:b6:d6:f0:06:
75:e5:dd:f6:dc:7f:39:f0:5c:57:38:61:0b:87:2e:
ae:cd:58:33:21:2b:a8:1c:c9:16:a5:92:b3:47:20:
61:cf:7f:4a:d4:ea:4e:34:0f:39:c9:2d:25:e3:bc:
84:6f:4e:6e:fd:7a:77:0a:ce:66:8c:00:b1:e7:94:
fc:bd:19:28:b3:43:60:21:e0:7b:29:06:98:f9:a0:
ad:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:99:F5:74:5A:89:49:E6:D3:D7:F0:EC:BB:59:56:3D:D2:AF:74:3B
X509v3 Authority Key Identifier:
keyid:72:48:1D:D9:0D:10:0B:D5:BC:23:C0:4B:10:C0:A8:43:1C:C9:A5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/KJn1dFqJSebT1_Dsu1lWPdKvdDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8300f8-9ece-47cd-837d-f1990b0c705a/1/ckgd2Q0QC9W8I8BLEMCoQxzJpbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.29.0/24
Signature Algorithm: sha256WithRSAEncryption
61:6d:b8:7d:9b:e1:8b:af:1e:5e:71:5d:71:03:11:51:f6:8d:
f1:ea:2c:74:59:ab:35:d5:00:49:09:54:b5:f7:ed:50:8f:9b:
8a:c5:35:1a:b3:a3:22:32:8d:22:31:d0:45:17:9c:30:72:10:
00:6a:95:e4:f0:7f:70:96:05:28:b2:60:da:c7:f3:e5:a8:3e:
c1:66:f6:c8:96:77:f6:72:b7:2a:7a:a4:9e:da:a5:01:29:93:
92:11:4b:9b:a1:fc:de:0f:fc:f6:f1:78:89:ee:e7:05:22:7d:
80:e5:83:11:41:57:2c:de:cc:e4:92:f6:90:a5:38:37:7b:ce:
f7:c8:c0:9d:1b:63:58:98:e0:93:29:eb:ee:89:7e:cf:54:84:
76:ec:34:dc:3c:91:7b:f8:b9:0a:b8:a9:0a:02:1d:c1:f3:e2:
35:5a:75:96:b1:70:44:72:8e:fe:aa:23:45:8f:f4:3b:e3:23:
93:38:73:e1:45:aa:e3:81:cb:0f:5e:3b:c8:b9:ab:eb:54:f2:
d2:df:13:7a:b0:18:32:1f:86:c6:53:16:e9:0e:ae:43:c4:29:
a6:84:ac:d8:24:fe:07:87:63:f1:dd:67:8f:d6:45:93:4b:c8:
32:be:2f:45:20:87:89:8c:d7:2b:fa:68:46:23:1a:da:4d:14:
50:a9:37:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:11 2024 by rpki-client on console-fra.rpki-client.org