Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/ko4G1Z3mn-fpgpPJMTHIa-wUnR4.roa
File: ko4G1Z3mn-fpgpPJMTHIa-wUnR4.roa (raw, json)
Hash identifier: JzT2MAOJQBcAKKGMzMo0pvO01JaWWxL2Lib7Xu6PLlA=
Subject key identifier: 92:8E:06:D5:9D:E6:9F:E7:E9:82:93:C9:31:31:C8:6B:EC:14:9D:1E
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 0189F45747EB506032CEDBB94B0F8EBA603F
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/ko4G1Z3mn-fpgpPJMTHIa-wUnR4.roa
Signing time: Mon 14 Aug 2023 13:58:27 +0000
ROA not before: Mon 14 Aug 2023 13:58:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 94.136.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 13 Oct 2023 07:53:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:57:47:eb:50:60:32:ce:db:b9:4b:0f:8e:ba:60:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Aug 14 13:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=928e06d59de69fe7e98293c93131c86bec149d1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:be:37:bd:41:d2:75:d5:7a:ba:0e:78:35:a5:
0e:ff:92:9d:65:78:b6:c3:f1:e6:e9:74:64:95:47:
25:e9:d7:57:0e:65:a0:5a:f3:51:5c:4a:52:cb:52:
01:41:17:6b:92:19:40:ec:ef:b1:04:77:78:9c:fd:
98:e9:b8:7c:a2:f5:84:3b:32:03:48:45:84:db:6b:
5e:85:55:4f:b1:d2:68:e0:2c:fe:cf:4e:7d:98:d1:
c1:bc:21:f1:de:f5:d8:ad:41:60:a9:21:6b:22:3a:
cb:06:98:0f:fa:95:4a:26:da:2b:a8:ce:db:28:e4:
e5:ae:bf:81:01:46:f8:d4:f4:4b:54:a6:8b:45:d7:
2c:66:a4:77:23:14:29:3a:42:34:b3:24:5a:2c:1c:
b4:8e:49:27:0f:8d:fe:aa:50:3a:3e:4c:02:37:58:
d7:af:b3:76:b2:08:a3:1a:2a:f9:62:f4:79:3a:3f:
02:75:36:7f:96:da:11:09:c1:b4:a0:26:74:85:a6:
f2:5b:00:84:42:91:22:6c:79:e8:b1:68:c5:0b:e9:
c3:f7:75:b3:47:c9:ac:f8:c7:13:b4:7a:83:1f:0c:
3b:52:64:5d:7a:d7:90:59:68:8a:a3:d6:2f:1a:d9:
17:b2:34:aa:e8:90:3d:38:0d:ee:b2:87:60:a8:3d:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:8E:06:D5:9D:E6:9F:E7:E9:82:93:C9:31:31:C8:6B:EC:14:9D:1E
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/ko4G1Z3mn-fpgpPJMTHIa-wUnR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.136.168.0/22
Signature Algorithm: sha256WithRSAEncryption
20:3a:26:43:17:5a:32:03:2a:1f:07:04:42:90:5c:53:0f:61:
66:3e:72:13:bd:62:53:b6:d7:0c:9f:8a:8c:fa:13:fe:63:cb:
31:06:ac:52:54:06:33:fa:70:42:5e:7a:0f:93:2a:68:68:d5:
5b:9e:f3:7b:ad:16:c2:ed:2d:36:b7:80:72:97:df:f2:69:9c:
35:34:73:3f:8d:4b:df:80:b1:72:b8:6c:15:04:2a:ea:5c:91:
d4:6b:10:b0:35:3a:d5:f5:49:e1:db:54:c5:d7:9d:19:46:57:
b9:f1:d8:f6:e3:04:b9:d9:b6:19:94:1d:32:6d:9a:04:5f:82:
e0:70:8b:21:cf:94:b6:49:d9:82:ce:fd:1c:aa:2d:ea:8e:03:
e0:6e:14:24:87:7b:62:28:66:1c:3b:32:03:31:f2:7f:0c:0d:
84:45:92:eb:ba:ae:53:f7:74:ed:3d:f7:b9:25:e1:3e:87:4c:
7b:77:ec:f7:da:5d:19:ed:8c:81:f3:86:e6:41:16:9d:a6:00:
81:a1:5d:bb:f1:e7:14:0a:b8:e0:62:63:8d:6d:95:2a:48:1d:
63:c4:b3:69:0d:c5:31:2b:ef:3e:5b:18:d9:da:f7:30:e9:dd:
f4:c2:f4:b9:8f:99:41:38:9e:62:36:09:f2:b9:8a:99:5e:26:
55:41:b3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org