Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/KT5EqfikgYfldYdr8CBVa3l60v0.roa
File: KT5EqfikgYfldYdr8CBVa3l60v0.roa (raw, json)
Hash identifier: GqDXxW2sE0Y5bPVMJ2YHSdDcfhw6YqnU/GpUgMQam6E=
Subject key identifier: 29:3E:44:A9:F8:A4:81:87:E5:75:87:6B:F0:20:55:6B:79:7A:D2:FD
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018AEFF0F2804B94D9B6D464A7D8CD46A0FF
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/KT5EqfikgYfldYdr8CBVa3l60v0.roa
Signing time: Mon 02 Oct 2023 10:30:59 +0000
ROA not before: Mon 02 Oct 2023 10:30:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39364
IP address blocks: 45.94.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 10:40:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:f0:f2:80:4b:94:d9:b6:d4:64:a7:d8:cd:46:a0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Oct 2 10:30:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=293e44a9f8a48187e575876bf020556b797ad2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a0:93:b0:1d:f7:20:a5:45:45:22:98:c0:e2:
48:f7:a1:07:1b:d8:b1:9d:1e:5d:a9:ee:ef:50:67:
50:04:ba:d9:71:30:89:4f:e5:e5:7d:91:a8:1b:81:
1f:1c:09:cf:90:3a:04:93:25:f9:f9:bb:e0:66:26:
21:95:27:e4:34:07:64:12:d6:1a:d5:3d:98:69:b1:
d7:bd:32:eb:32:72:b9:55:41:4d:37:e8:8a:f4:60:
7e:bf:5a:74:97:53:c6:96:95:4d:24:b9:6a:6d:73:
9b:0a:cc:1c:c7:34:74:a1:36:b1:5c:ec:59:8c:93:
a1:3c:5b:8c:68:21:34:55:ae:e5:bb:3c:d8:82:51:
e4:87:ee:92:ca:75:c4:24:b3:44:54:c3:64:9b:6b:
93:14:23:3e:c7:d5:3d:ed:9a:a2:37:e4:93:4f:3d:
e3:59:d7:11:4e:3f:cc:f2:d9:5f:47:70:cf:c3:11:
92:57:6d:46:bb:bf:f0:ad:35:54:f9:5d:9b:37:2e:
72:da:b3:e5:a5:0d:72:a6:56:21:88:23:4e:2b:29:
5e:c8:25:77:88:f2:78:05:b4:9c:ca:5d:7a:40:eb:
c2:8f:98:e5:87:87:8b:98:59:4a:dc:ad:e5:7b:1f:
5d:bd:9e:c6:2f:cf:be:2f:fd:02:fe:17:b7:59:9f:
87:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3E:44:A9:F8:A4:81:87:E5:75:87:6B:F0:20:55:6B:79:7A:D2:FD
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/KT5EqfikgYfldYdr8CBVa3l60v0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.212.0/24
Signature Algorithm: sha256WithRSAEncryption
74:54:59:00:11:1d:51:f4:68:74:12:32:9a:03:96:d6:c1:85:
bd:73:49:90:32:a4:13:96:f6:83:2a:88:88:2f:62:06:2d:d0:
5d:e1:10:1a:f9:c0:cc:14:4a:95:5b:19:b4:0d:7e:aa:22:70:
18:41:5a:7f:24:29:72:b8:2c:0b:33:2a:d2:99:d8:aa:04:58:
49:8d:86:41:31:10:ba:2d:b8:90:d2:ca:52:a3:2a:81:30:2e:
8e:1a:22:ff:c2:29:ed:d7:76:67:6d:0b:9c:20:59:ae:0a:58:
aa:dc:63:af:e6:7e:2a:86:cb:3d:1e:2a:14:7a:b6:de:5e:f8:
f9:55:44:09:81:8d:4d:4b:93:e0:05:50:a2:05:97:f0:d1:3c:
23:d4:09:ab:02:81:72:a9:a4:b9:48:93:e1:4e:aa:cf:b1:46:
7c:31:0f:db:48:b4:d4:0f:d7:bf:85:61:fb:41:9b:b8:16:8e:
64:be:90:57:dc:90:3e:e0:73:8a:79:6b:60:6f:85:fd:16:74:
68:63:83:cc:b2:ab:92:bb:86:12:ae:31:8f:24:cb:b1:d5:64:
14:b1:58:5c:3c:f1:66:3e:1c:0d:68:14:02:6a:ea:83:44:89:
50:27:d5:82:0a:82:6e:bf:7a:84:d8:47:e9:93:0a:98:83:bf:
d1:59:5d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org