Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/kNPssFkehdhsWAHTw2T3gRVCe5U.roa
File: kNPssFkehdhsWAHTw2T3gRVCe5U.roa (raw, json)
Hash identifier: S4JwR0GQNTE+lndb765bK9tUZ88lofmpaVbq3b15SpY=
Subject key identifier: 90:D3:EC:B0:59:1E:85:D8:6C:58:01:D3:C3:64:F7:81:15:42:7B:95
Certificate issuer: /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial: 0185C14010CDFFF73457B84135E841E2495D
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/kNPssFkehdhsWAHTw2T3gRVCe5U.roa
Signing time: Tue 17 Jan 2023 19:41:19 +0000
ROA not before: Tue 17 Jan 2023 19:41:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212885
IP address blocks: 193.163.122.0/24 maxlen: 24
193.163.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c1:40:10:cd:ff:f7:34:57:b8:41:35:e8:41:e2:49:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b8801543812040477d4744229466c8537d45171
Validity
Not Before: Jan 17 19:41:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90d3ecb0591e85d86c5801d3c364f78115427b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:03:b3:76:68:af:9b:ca:a2:1c:13:c9:2c:
59:33:b9:bd:26:10:5f:d4:b1:99:de:c0:b5:13:7b:
dd:cf:52:03:8b:0e:16:a3:4e:cd:a8:75:61:2a:84:
67:ab:f4:ad:78:c2:eb:b1:be:1e:dc:fc:4b:33:3d:
6e:bc:73:4f:58:17:60:dd:f1:20:c8:77:d2:1d:72:
d9:6c:a0:9d:b0:0e:e4:37:29:73:d2:a2:53:ba:86:
c7:40:2a:02:bb:20:33:24:76:1a:77:d9:fa:36:5a:
09:47:41:1d:fd:d7:eb:a4:0d:4e:72:4c:38:2a:46:
26:b8:cb:86:de:e9:81:ff:9b:08:a8:55:96:59:e3:
2d:5c:0b:0d:02:f0:b2:a3:2d:24:df:79:9c:cc:47:
16:9c:92:e9:0e:5e:a8:ca:54:c5:08:fb:ac:9c:0d:
d5:37:2f:ec:6c:9e:5f:00:c0:34:dd:c1:1b:32:48:
08:2d:42:be:38:05:13:d1:fe:8c:d2:42:d0:5a:32:
7f:16:91:77:f7:fd:56:c0:bb:ca:2f:fe:8c:67:d9:
a4:de:e1:38:bf:28:6b:4d:17:a6:9b:00:f9:fc:d7:
ca:6c:f4:e8:cd:67:f2:45:53:f7:ef:f8:7b:73:b5:
00:71:0e:9b:8a:dd:9f:e3:aa:f6:e6:45:ae:88:3b:
ac:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D3:EC:B0:59:1E:85:D8:6C:58:01:D3:C3:64:F7:81:15:42:7B:95
X509v3 Authority Key Identifier:
keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/kNPssFkehdhsWAHTw2T3gRVCe5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.122.0/23
Signature Algorithm: sha256WithRSAEncryption
99:76:97:60:8c:2c:d6:93:de:cf:64:1e:e7:86:7d:13:f1:8d:
d3:14:42:37:70:b8:20:9a:62:85:18:e1:ec:97:67:2d:9f:c2:
bd:71:a3:04:a4:f6:6b:10:31:0c:76:59:de:02:bb:90:6d:07:
9c:42:cb:f3:c1:43:d3:2d:1e:0c:14:3a:a9:51:4c:c5:eb:9f:
f6:f0:00:04:df:55:92:3e:2b:6c:96:b7:29:ec:cf:be:c0:c6:
13:c5:77:6f:f0:6a:fe:06:51:09:19:c1:ee:08:49:ca:c3:9e:
78:49:a1:6c:b7:98:39:e4:92:c2:00:9f:5b:93:b5:01:ec:a9:
bb:9d:8b:d9:79:c4:51:46:97:ee:c1:58:11:4b:0d:e4:a6:0b:
28:f4:ac:b1:46:0c:29:91:d9:04:7e:c0:d1:a4:88:ae:a3:65:
d1:24:d0:0d:d9:36:f8:ec:ad:3b:4c:b1:e0:19:30:ed:f1:f8:
f5:5f:78:39:ba:21:19:df:c3:b0:aa:94:94:49:80:40:3c:86:
4f:40:41:ed:d6:ca:99:97:51:35:70:f9:b7:45:b9:a4:ba:78:
61:23:41:f9:d8:63:96:9f:b2:9f:ce:4d:7d:dd:ad:34:bd:85:
b5:7d:b7:27:98:8a:e6:0e:d4:3c:21:98:e4:48:f1:8e:b0:ca:
9b:c6:4a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:33 2024 by rpki-client on console-fra.rpki-client.org