Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6077a1-cec6-437c-bc90-d120da3e8e92/1/KLZSVRFlz3LrTDQbHIkMmmwkLDE.roa
File: KLZSVRFlz3LrTDQbHIkMmmwkLDE.roa (raw, json)
Hash identifier: crRYRWiJJjQYPr2zNLYNOecJSFPtGCjizkx7o/UzcL8=
Subject key identifier: 28:B6:52:55:11:65:CF:72:EB:4C:34:1B:1C:89:0C:9A:6C:24:2C:31
Certificate issuer: /CN=12aa2c1ee4349a086c769013a42e8b4ac2ba19bf
Certificate serial: 018573B1971D6E94EE3E2991029F0277A812
Authority key identifier: 12:AA:2C:1E:E4:34:9A:08:6C:76:90:13:A4:2E:8B:4A:C2:BA:19:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EqosHuQ0mghsdpATpC6LSsK6Gb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6077a1-cec6-437c-bc90-d120da3e8e92/1/KLZSVRFlz3LrTDQbHIkMmmwkLDE.roa
Signing time: Mon 02 Jan 2023 18:14:56 +0000
ROA not before: Mon 02 Jan 2023 18:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59943
IP address blocks: 193.200.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:97:1d:6e:94:ee:3e:29:91:02:9f:02:77:a8:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12aa2c1ee4349a086c769013a42e8b4ac2ba19bf
Validity
Not Before: Jan 2 18:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28b652551165cf72eb4c341b1c890c9a6c242c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:18:b5:81:42:fa:16:0f:a5:e6:48:8f:04:5c:
b8:0a:d2:a5:5e:cd:e2:39:d2:ac:fd:ba:21:52:d2:
c4:e5:fe:d8:30:46:e1:73:bd:37:a7:f0:b7:fe:3c:
7e:53:a6:27:cd:29:3d:a0:74:4d:5c:6e:54:c1:8e:
e6:ff:b4:55:ed:2d:ac:29:1e:cb:54:d4:a5:2b:b3:
60:7c:6a:18:7e:64:23:ca:16:a8:71:ea:90:46:4e:
83:8e:39:92:2c:60:3e:3a:af:c8:b8:cd:34:dd:97:
04:be:26:8e:2e:83:bb:59:1e:40:29:25:cc:62:bd:
49:dc:c8:c1:90:38:4f:a9:0d:bf:5a:0b:ff:61:10:
0f:bd:ba:9a:8a:b3:16:08:a8:0a:9b:83:f3:8e:61:
9a:78:17:5d:b9:18:83:76:6e:a6:0b:f6:bd:e8:2e:
48:e6:e8:9b:e3:db:8c:51:67:17:7d:9f:6d:70:6e:
9f:96:76:c5:a2:95:2c:0f:b7:eb:d6:84:74:3b:8e:
17:bf:40:66:5a:b3:ea:ce:19:0c:3f:c4:ee:b3:8a:
75:c7:79:b1:ae:0d:33:5a:97:d6:f2:22:58:8a:cc:
77:6d:74:f4:16:46:c0:e3:88:6d:d6:8c:58:db:a5:
cf:96:25:ce:5a:6e:14:ba:f2:1e:8c:09:82:5c:a5:
68:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B6:52:55:11:65:CF:72:EB:4C:34:1B:1C:89:0C:9A:6C:24:2C:31
X509v3 Authority Key Identifier:
keyid:12:AA:2C:1E:E4:34:9A:08:6C:76:90:13:A4:2E:8B:4A:C2:BA:19:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EqosHuQ0mghsdpATpC6LSsK6Gb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6077a1-cec6-437c-bc90-d120da3e8e92/1/KLZSVRFlz3LrTDQbHIkMmmwkLDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6077a1-cec6-437c-bc90-d120da3e8e92/1/EqosHuQ0mghsdpATpC6LSsK6Gb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.29.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b3:87:ae:4e:f9:40:5f:15:b0:2a:9a:c7:4f:7e:e4:63:f1:
d5:56:fa:5d:bd:68:05:8a:3e:43:a0:45:cf:04:f0:a2:ba:f3:
8e:6b:87:9c:a6:53:ab:52:7c:f9:cf:88:12:23:61:0a:f4:c0:
ad:a5:3e:25:33:71:fe:be:72:e5:e2:ca:db:70:5a:a1:ec:5e:
54:47:bb:f3:43:47:c1:54:7a:4a:c6:d8:f9:0a:f0:34:e7:47:
3d:3a:c2:fd:3b:44:82:3b:e2:93:dc:61:ed:ee:8a:bd:dd:0d:
c8:1b:30:08:4a:1d:29:66:5d:48:2e:1a:ec:35:05:26:69:c2:
5d:ea:a4:43:fd:9d:56:a6:d4:91:5c:6f:27:0b:70:23:10:fa:
9a:f7:8c:e9:24:49:41:7f:a4:61:81:47:0b:02:fb:b7:3e:eb:
2b:dc:47:32:6a:20:43:7a:cc:db:66:25:88:57:4c:98:6a:ef:
25:1c:a6:9e:8e:75:e3:83:cc:e2:8c:f7:e2:bf:d1:a3:b8:52:
38:5a:0b:53:52:1b:be:ec:83:3f:b2:aa:59:60:ca:d7:83:76:
01:65:79:43:73:2a:09:08:55:14:a7:cf:c9:df:06:9d:71:f9:
e6:77:59:68:97:4e:41:6e:9f:34:4e:aa:a3:04:89:7d:a9:54:
b9:de:62:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:54 2024 by rpki-client on console-fra.rpki-client.org