Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/KWuDxLfQV0Vp0OOFXstnMwYsVaw.roa
File: KWuDxLfQV0Vp0OOFXstnMwYsVaw.roa (raw, json)
Hash identifier: pJnrfn+VRvjM4jGNEKOZnTFR4xsBf7bIq+uMry4GRJM=
Subject key identifier: 29:6B:83:C4:B7:D0:57:45:69:D0:E3:85:5E:CB:67:33:06:2C:55:AC
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 018CC348CAA25C3F09579B9D7E630A50F431
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/KWuDxLfQV0Vp0OOFXstnMwYsVaw.roa
Signing time: Mon 01 Jan 2024 04:29:36 +0000
ROA not before: Mon 01 Jan 2024 04:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 185.90.220.0/22 maxlen: 22
83.229.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jan 2024 23:48:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ca:a2:5c:3f:09:57:9b:9d:7e:63:0a:50:f4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Jan 1 04:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=296b83c4b7d0574569d0e3855ecb6733062c55ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:26:ad:32:a2:67:1e:2d:8f:62:91:72:17:53:
00:a9:37:fa:f0:7c:9d:d8:88:0d:6d:80:f7:5b:05:
1b:5e:5b:ee:f8:e7:47:84:5f:6c:ef:49:e6:dd:64:
e4:2b:73:48:86:85:9e:80:8b:95:84:82:8f:bd:12:
8d:37:01:e9:03:e2:77:fa:f2:f5:b1:58:62:19:11:
60:4b:45:b2:d1:0e:6a:60:7d:c0:dd:6a:18:26:cd:
71:17:8e:88:06:69:7a:69:67:89:49:51:69:7e:33:
a9:40:b0:6e:40:b4:08:3c:d2:71:99:97:d2:e9:41:
1b:7c:a3:63:6c:93:d1:78:fc:2d:af:9a:9d:3c:49:
1c:f8:8c:12:26:93:3c:ca:df:14:ee:53:3f:ad:75:
2c:23:91:24:7d:fe:63:42:dc:55:06:32:44:73:1b:
8d:18:5b:32:ac:cd:5f:ea:0b:73:fa:2f:62:24:2b:
2f:ca:9c:50:7b:14:f5:bf:65:10:1f:c5:5c:78:9a:
5f:37:33:75:9d:69:8d:0e:e7:0a:0a:06:ec:df:e5:
fd:4e:0f:8d:fa:0f:6b:f3:a8:2d:d0:cc:d4:b5:d9:
c1:e7:e5:49:7e:59:25:3a:84:2f:e3:31:52:c0:f9:
c5:d1:0c:b9:06:61:6e:7c:47:ea:4e:ad:38:34:88:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:6B:83:C4:B7:D0:57:45:69:D0:E3:85:5E:CB:67:33:06:2C:55:AC
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/KWuDxLfQV0Vp0OOFXstnMwYsVaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.229.113.0/24
185.90.220.0/22
Signature Algorithm: sha256WithRSAEncryption
43:12:a6:7d:c3:08:0c:6d:45:1d:82:92:e4:51:6d:2f:6a:d4:
27:66:10:d5:5b:17:de:6c:3e:d8:7d:55:6b:fb:bc:4f:9e:69:
cb:29:04:9f:51:49:eb:b3:2c:e5:f1:df:88:16:a9:a5:a2:e7:
cc:77:6c:03:34:0a:de:7b:9c:07:7e:83:c9:7a:16:7c:55:e8:
59:fb:b7:30:1c:22:6e:04:33:db:0d:e5:64:65:56:fb:6b:de:
45:bd:60:47:25:72:cb:92:40:35:6c:2c:8c:67:da:12:36:8c:
11:cf:1f:fd:42:c0:10:a2:30:93:42:b2:2e:28:6e:8b:e3:b5:
ff:69:34:bf:d3:bb:d6:be:19:9e:5a:a0:51:c7:25:ba:f2:8e:
c8:5d:86:14:92:ba:ea:d6:51:3a:f2:eb:f6:10:ff:6d:4f:f6:
1c:83:09:c1:21:fb:d8:3d:18:27:fd:64:ad:ad:54:f9:74:33:
ab:52:30:47:8a:72:b9:91:48:37:fe:3b:fe:20:2f:36:4f:04:
84:91:83:e9:7e:82:31:0e:ac:9a:aa:1d:b6:82:57:28:ff:d5:
90:18:ce:11:ee:43:82:42:bb:7b:bc:27:bb:ee:ff:31:ac:78:
94:d2:c5:94:a1:5a:f7:ba:b6:2e:f8:b0:68:e3:e0:40:85:02:
cc:cc:17:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:26 2024 by rpki-client on console-ams.rpki-client.org