Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/68a4b2-5894-47c5-be01-66aa2a23239e/1/KIR-7c0RBR_Wo5LudcJ4HcuT9lQ.roa
File: KIR-7c0RBR_Wo5LudcJ4HcuT9lQ.roa (raw, json)
Hash identifier: wlkWjY+Nnpibrmt3HvZLsaO261nCLxgRRc9EEOMk7bU=
Subject key identifier: 28:84:7E:ED:CD:11:05:1F:D6:A3:92:EE:75:C2:78:1D:CB:93:F6:54
Certificate issuer: /CN=23e45164c572edde5df253917cc12a2dfd398b97
Certificate serial: 018B28ACCE8FBF48FC3EC2AE6CA354AE3D12
Authority key identifier: 23:E4:51:64:C5:72:ED:DE:5D:F2:53:91:7C:C1:2A:2D:FD:39:8B:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-RRZMVy7d5d8lORfMEqLf05i5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/68a4b2-5894-47c5-be01-66aa2a23239e/1/KIR-7c0RBR_Wo5LudcJ4HcuT9lQ.roa
Signing time: Fri 13 Oct 2023 10:54:55 +0000
ROA not before: Fri 13 Oct 2023 10:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35826
IP address blocks: 185.113.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 13 Oct 2023 11:07:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:ac:ce:8f:bf:48:fc:3e:c2:ae:6c:a3:54:ae:3d:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e45164c572edde5df253917cc12a2dfd398b97
Validity
Not Before: Oct 13 10:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28847eedcd11051fd6a392ee75c2781dcb93f654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:c5:c2:ea:39:70:f4:2a:b2:7c:10:b5:ef:
49:7f:92:13:f0:8a:e5:01:e5:dc:05:62:d9:5f:7e:
00:d9:f3:6d:d2:e9:23:06:87:e6:b3:55:03:3c:cd:
3b:2e:d8:0a:ad:fd:82:42:66:bc:b2:3e:b9:f7:a9:
30:c0:45:d9:22:45:4b:3f:55:2e:66:3c:18:ea:a2:
c4:aa:31:96:3d:21:4d:f1:c2:2a:66:00:04:49:6b:
94:72:9b:a5:4b:61:c1:a3:28:dc:c2:3f:a4:f7:ce:
0d:2c:9c:e2:e0:16:af:22:e2:68:b2:ff:c2:f2:b7:
38:07:49:79:1e:af:8e:25:cf:9f:49:8d:0d:04:23:
85:dd:57:3e:ab:2d:76:f1:a9:8e:c9:11:84:da:04:
3d:33:b9:a8:39:9b:33:37:a3:5e:85:f1:2d:61:03:
9b:80:b6:6d:4c:03:0d:6c:be:2c:b4:2f:38:49:ae:
15:c9:55:d4:28:87:c1:53:49:68:74:d3:0d:3f:3b:
af:9e:c2:c7:52:d4:57:f8:42:3c:12:b4:27:60:a9:
22:64:d5:6c:38:a3:ec:05:57:33:22:da:d9:4f:6f:
3c:47:90:fb:6f:58:29:cb:16:47:16:50:73:15:99:
d3:73:73:89:66:a6:98:ef:4d:2a:31:b5:3c:8e:55:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:84:7E:ED:CD:11:05:1F:D6:A3:92:EE:75:C2:78:1D:CB:93:F6:54
X509v3 Authority Key Identifier:
keyid:23:E4:51:64:C5:72:ED:DE:5D:F2:53:91:7C:C1:2A:2D:FD:39:8B:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-RRZMVy7d5d8lORfMEqLf05i5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/68a4b2-5894-47c5-be01-66aa2a23239e/1/KIR-7c0RBR_Wo5LudcJ4HcuT9lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/68a4b2-5894-47c5-be01-66aa2a23239e/1/I-RRZMVy7d5d8lORfMEqLf05i5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.204.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:ae:d8:e4:24:6e:d4:60:08:7d:73:b2:87:7e:74:6a:ae:b5:
c6:d8:0f:10:92:90:2a:04:28:40:c1:f6:92:f1:ff:17:30:44:
cf:9f:d8:02:4e:22:f7:42:dc:b9:01:9e:5d:67:19:26:4a:ed:
f6:bc:02:5f:75:2d:9e:4d:6f:97:78:3d:fb:1d:a6:6e:d3:0b:
f5:aa:71:61:5b:52:19:58:b6:89:99:5b:88:b2:76:6e:8f:1a:
32:07:27:0c:35:42:02:dc:6e:3a:2d:a1:7e:50:f7:4e:3a:8b:
75:10:ca:f2:0f:2e:0e:67:07:a9:2a:b7:28:56:21:3c:82:ac:
8f:50:af:2a:63:5d:9b:30:e4:2e:19:28:cc:2f:1d:b5:be:71:
a8:23:ca:4b:4f:ed:80:af:3e:20:61:d4:23:cc:22:6f:ce:0d:
7a:6c:c7:0a:98:a7:3d:35:28:ca:66:0b:3a:a9:4d:67:13:b1:
06:2f:19:ed:17:b6:9b:6c:fb:f1:3c:de:c4:36:2f:0d:54:d5:
ab:b3:7c:09:80:54:95:1b:86:c0:f7:5b:95:80:13:20:25:6d:
7e:1b:5d:4d:d4:d0:3e:b2:8d:e4:35:fe:b7:68:0c:4f:31:b7:
8b:8f:69:a9:06:a9:1a:71:ac:ed:dd:64:e2:48:61:86:b4:c4:
03:19:67:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:41 2024 by rpki-client on console-fra.rpki-client.org