Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3b2c00-94b6-434d-b362-96a34b022f89/1/KV-McQJORsrKWwaRqRNXrCIl7lY.roa
File: KV-McQJORsrKWwaRqRNXrCIl7lY.roa (raw, json)
Hash identifier: zGEpdKHfxvTuVAbRc8lf3/k7K81LFLeKkDZHvVF1Sm0=
Subject key identifier: 29:5F:8C:71:02:4E:46:CA:CA:5B:06:91:A9:13:57:AC:22:25:EE:56
Certificate issuer: /CN=d79f925e1738bc352bc6b5cf5ff951b3d813ae39
Certificate serial: 018E3DA40C79619FC3A742978ECA4B0A3D69
Authority key identifier: D7:9F:92:5E:17:38:BC:35:2B:C6:B5:CF:5F:F9:51:B3:D8:13:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15-SXhc4vDUrxrXPX_lRs9gTrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3b2c00-94b6-434d-b362-96a34b022f89/1/KV-McQJORsrKWwaRqRNXrCIl7lY.roa
Signing time: Thu 14 Mar 2024 15:45:44 +0000
ROA not before: Thu 14 Mar 2024 15:45:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213296
IP address blocks: 194.50.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 13:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:a4:0c:79:61:9f:c3:a7:42:97:8e:ca:4b:0a:3d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d79f925e1738bc352bc6b5cf5ff951b3d813ae39
Validity
Not Before: Mar 14 15:45:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=295f8c71024e46caca5b0691a91357ac2225ee56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:04:23:eb:08:67:89:50:2e:fb:9a:b9:21:bb:
52:78:35:08:5a:b7:47:e7:9a:2e:b1:26:ac:9d:3a:
3b:76:69:07:ad:b8:b7:b9:71:47:a3:c9:ae:8d:82:
0e:03:d8:25:5c:b5:28:ec:9e:b7:14:a0:43:f6:dc:
bb:6d:13:68:de:04:52:46:cb:13:8e:b5:d3:12:c6:
8d:3d:5b:1f:d7:bc:a1:aa:e9:f9:d3:ce:86:b1:6b:
86:a2:02:eb:83:38:23:26:25:15:0b:ee:3e:fd:bc:
be:38:0a:0c:50:48:be:2e:07:9b:51:4a:84:36:65:
de:c2:09:27:2d:63:65:17:6f:0f:ed:ea:b7:3b:66:
ee:81:5b:53:f2:ef:e1:b5:8b:bb:5c:2a:68:a9:c9:
69:97:af:f3:7e:a5:fe:69:92:82:f6:8a:b9:cf:bb:
80:5a:f1:a6:8c:fa:37:f4:cb:e1:3e:18:8f:da:b2:
8c:12:df:ba:bf:85:7c:6d:a0:fc:27:00:68:e3:24:
3e:f6:da:9c:17:bb:26:52:c3:67:34:c2:8f:3f:74:
b7:bc:e0:8d:33:2d:41:e1:62:a8:16:98:99:32:57:
1f:81:74:52:e4:8b:93:0a:46:2a:4b:4d:ce:ca:99:
c3:fc:aa:fb:58:37:59:da:2a:38:fd:89:23:5f:a7:
5e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:5F:8C:71:02:4E:46:CA:CA:5B:06:91:A9:13:57:AC:22:25:EE:56
X509v3 Authority Key Identifier:
keyid:D7:9F:92:5E:17:38:BC:35:2B:C6:B5:CF:5F:F9:51:B3:D8:13:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15-SXhc4vDUrxrXPX_lRs9gTrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3b2c00-94b6-434d-b362-96a34b022f89/1/KV-McQJORsrKWwaRqRNXrCIl7lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3b2c00-94b6-434d-b362-96a34b022f89/1/15-SXhc4vDUrxrXPX_lRs9gTrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.169.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:ad:e0:7e:74:d3:b7:bf:c3:1c:6c:51:83:df:e4:f0:65:3c:
68:3b:2c:8c:72:d7:14:ce:cd:bf:11:fb:d9:98:3e:e3:b6:80:
a8:cd:1e:93:a3:4b:c5:0a:dd:4a:85:23:88:7b:36:fb:8f:48:
d7:54:74:db:85:e6:47:f1:07:14:bf:51:05:96:46:ae:88:a1:
5a:97:23:c3:b2:dd:b0:5a:99:ca:3f:96:33:a2:b5:ec:50:6f:
58:13:39:bf:9e:cc:3b:a3:b0:7d:5d:ec:05:3c:9f:3b:fe:bf:
e0:a9:5e:f9:57:20:37:6d:18:a9:c8:0d:da:ab:2b:cb:7c:77:
ef:d3:9c:eb:18:03:ef:fe:97:c7:34:ed:4e:fe:5d:ba:e9:0e:
50:2d:db:c0:d9:df:3d:87:ac:d0:77:61:09:e7:aa:52:6d:99:
d4:0b:ff:0c:9f:ed:00:00:73:9c:7a:97:48:4e:6a:31:e1:96:
73:57:6e:db:1d:7b:8c:b9:a1:8a:1e:5c:29:91:8b:49:b1:7f:
73:a4:33:f4:b6:0a:48:dd:11:1f:6c:8d:ad:25:ae:b2:89:cb:
b3:e2:30:90:2c:d9:bf:25:6c:46:26:86:83:82:05:f4:f4:b3:
55:f7:b2:69:1f:ba:ce:2b:d6:a9:08:6c:3a:ff:f7:ed:cb:37:
a2:58:4a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:15 2024 by rpki-client on console-fra.rpki-client.org