Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/NCeWLJUTgobexc_kz_5cK1YfZpo.roa
File: NCeWLJUTgobexc_kz_5cK1YfZpo.roa (raw, json)
Hash identifier: /R/VXxhFqwpAT8ghBPT/pLFM0z0DJfA+T1paXZWIyrA=
Subject key identifier: 34:27:96:2C:95:13:82:86:DE:C5:CF:E4:CF:FE:5C:2B:56:1F:66:9A
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 018AA9DDF491CF930F251F171914DFFBF4D7
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/NCeWLJUTgobexc_kz_5cK1YfZpo.roa
Signing time: Mon 18 Sep 2023 19:56:50 +0000
ROA not before: Mon 18 Sep 2023 19:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 91.227.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a9:dd:f4:91:cf:93:0f:25:1f:17:19:14:df:fb:f4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Sep 18 19:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3427962c95138286dec5cfe4cffe5c2b561f669a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:00:89:d4:1d:f3:eb:44:eb:cd:ac:84:23:18:
ea:93:7e:94:a5:72:34:fc:b1:7b:97:94:59:8d:14:
3d:b0:09:23:09:1f:08:81:1d:bd:cf:10:77:ed:71:
ea:b3:42:fc:13:39:2f:e2:20:89:57:88:bc:0f:76:
11:96:13:e7:75:eb:d6:48:a3:4b:d1:b4:48:dd:06:
6e:59:4a:b8:25:e7:7f:a2:60:c1:6d:aa:2a:ed:57:
53:d4:a4:e6:e5:45:9a:14:f3:0d:d8:aa:fd:14:f4:
c3:0b:3e:69:1d:2c:f5:2d:54:45:4b:73:b6:9c:a0:
6e:6f:42:72:aa:27:a6:dd:3e:71:80:c4:5b:88:d8:
89:f6:ee:28:e0:76:44:39:9d:88:6d:c8:3f:54:38:
e7:0b:34:34:8c:70:99:61:f7:ad:29:ef:01:e5:c8:
ac:af:f1:ad:a4:35:73:d8:42:80:b9:84:48:ef:bb:
7b:df:6d:24:55:2d:4c:f2:09:e0:aa:e4:fc:e4:12:
12:94:4a:4f:be:cf:31:65:c2:78:c9:e3:cc:0f:93:
7b:78:8f:62:5f:cd:e3:89:14:91:83:08:fb:68:03:
54:0d:e2:88:3b:64:89:96:fe:84:50:64:42:ae:62:
99:b9:2d:3c:a9:fd:e4:68:5b:32:15:6a:1e:c4:16:
4c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:27:96:2C:95:13:82:86:DE:C5:CF:E4:CF:FE:5C:2B:56:1F:66:9A
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/NCeWLJUTgobexc_kz_5cK1YfZpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.193.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:70:44:d9:2e:33:08:53:6a:68:c2:a3:c8:35:5d:f7:42:93:
b9:08:f3:ad:82:8b:72:c9:90:bb:74:c8:d6:5d:a3:91:1f:0b:
37:c1:1c:e0:2a:14:85:fc:4b:0b:50:7e:82:3a:d5:42:59:2b:
c3:e2:2d:09:fa:4d:88:ea:cc:ca:4a:50:40:1b:e0:d9:59:88:
83:b1:75:75:41:27:e3:e4:17:3c:14:54:00:f6:76:9a:d3:e0:
45:5b:70:b4:b8:1c:f3:48:7a:3d:96:7c:b4:ef:49:17:b4:9d:
80:a5:cb:7e:2d:c0:99:e3:a3:2c:bc:21:59:ea:62:d3:b5:ee:
93:71:34:b4:16:c4:96:f8:14:0d:3d:23:72:ba:ef:82:e2:07:
06:54:80:9b:34:0d:d3:99:8a:0d:0b:93:f6:0c:77:3d:c0:0c:
7b:fb:b8:a3:43:02:b9:35:51:50:5a:9e:5c:a3:ba:93:f0:e7:
eb:58:b5:f9:89:e2:bb:4f:bf:f8:28:9c:0d:62:b7:73:65:91:
b7:8c:e1:2e:75:9f:35:d1:c7:74:3e:58:b8:82:2e:89:d0:7f:
ac:3a:88:05:e6:b1:8a:64:01:a5:da:ae:14:ad:fc:b4:7a:55:
4a:03:17:1b:14:da:2a:aa:e7:c0:55:6a:9f:fa:ea:40:cd:f6:
dd:56:40:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:52 2024 by rpki-client on console-ams.rpki-client.org