Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/0015d3-1b21-4e55-850b-674328d52bd7/1/K3un_QXFIsZ5Y1m4-PeLQA88Sa8.roa
File: K3un_QXFIsZ5Y1m4-PeLQA88Sa8.roa (raw, json)
Hash identifier: B9kv2Lq/Qa9tf46wqcJBogYP3RgZpGLtyC4MZZXgILk=
Subject key identifier: 2B:7B:A7:FD:05:C5:22:C6:79:63:59:B8:F8:F7:8B:40:0F:3C:49:AF
Certificate issuer: /CN=582ac3589fc539ab852690f85d9f3f7f234ec39b
Certificate serial: 01880AD5465A2F1E6895E542E720D77BE3B3
Authority key identifier: 58:2A:C3:58:9F:C5:39:AB:85:26:90:F8:5D:9F:3F:7F:23:4E:C3:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WCrDWJ_FOauFJpD4XZ8_fyNOw5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/0015d3-1b21-4e55-850b-674328d52bd7/1/K3un_QXFIsZ5Y1m4-PeLQA88Sa8.roa
Signing time: Thu 11 May 2023 12:42:09 +0000
ROA not before: Thu 11 May 2023 12:42:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5610
IP address blocks: 91.191.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:d5:46:5a:2f:1e:68:95:e5:42:e7:20:d7:7b:e3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=582ac3589fc539ab852690f85d9f3f7f234ec39b
Validity
Not Before: May 11 12:42:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b7ba7fd05c522c6796359b8f8f78b400f3c49af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e7:d9:70:bc:c6:7d:8d:54:08:ae:55:0e:65:
bc:99:70:88:03:76:29:65:c2:90:06:bb:c6:bc:74:
78:1c:ae:de:6e:1b:e6:0f:76:7a:bc:be:ca:0f:24:
f2:c3:df:7a:c6:a8:1f:1f:40:5e:59:cb:90:03:97:
3e:bd:f2:15:21:12:ae:b8:37:31:98:9f:91:08:d1:
ef:a3:68:f6:a6:83:87:73:b0:70:7a:a4:3c:15:d0:
4e:f6:bd:51:cf:bf:1a:56:f3:38:55:55:f8:71:34:
e0:ba:a0:1c:81:b3:aa:81:36:de:9f:4d:43:e7:bc:
e2:8f:7e:c1:16:60:f3:eb:0d:55:23:d0:6b:1d:08:
49:a7:74:d8:34:b0:b9:43:7d:eb:85:8b:51:20:0f:
4f:b7:ee:9d:f7:a9:97:b5:d7:95:50:29:97:17:30:
3d:f9:37:8b:b2:f8:ce:2e:f8:65:12:c7:80:a9:71:
66:02:c4:30:85:dc:44:d5:2e:f2:f7:30:50:b1:5d:
02:4e:99:28:40:20:e0:59:4b:17:a3:dc:75:5b:4e:
6d:be:f8:49:34:c4:9b:18:dc:27:a5:32:52:36:5e:
f1:21:7f:42:1f:7c:50:42:7d:31:07:3a:79:9c:18:
5e:6a:05:94:c9:d1:e9:b4:2c:2a:b0:ad:cc:f7:1e:
c1:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:7B:A7:FD:05:C5:22:C6:79:63:59:B8:F8:F7:8B:40:0F:3C:49:AF
X509v3 Authority Key Identifier:
keyid:58:2A:C3:58:9F:C5:39:AB:85:26:90:F8:5D:9F:3F:7F:23:4E:C3:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WCrDWJ_FOauFJpD4XZ8_fyNOw5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/0015d3-1b21-4e55-850b-674328d52bd7/1/K3un_QXFIsZ5Y1m4-PeLQA88Sa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/0015d3-1b21-4e55-850b-674328d52bd7/1/WCrDWJ_FOauFJpD4XZ8_fyNOw5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.191.64.0/18
Signature Algorithm: sha256WithRSAEncryption
9a:4a:0e:ee:6c:5f:00:86:ab:42:67:0a:c7:b3:d2:dc:b4:69:
9c:f3:ab:b6:e2:2e:ff:5d:e7:6d:1a:0a:f8:f2:a3:08:db:72:
b7:ba:4e:d5:fd:8f:c4:73:b6:e9:1a:4b:bd:c4:fe:b4:65:74:
92:cc:2f:72:25:c0:7d:ac:31:9c:15:d4:1f:b3:53:de:73:0c:
65:87:c3:e8:f0:cb:ae:7b:d0:71:46:49:fe:89:96:2a:d3:62:
1a:a1:1a:93:ab:3b:8b:da:a2:ed:4f:73:a1:9d:95:99:e8:7c:
37:c3:c0:4d:81:8e:95:cf:46:09:34:86:cd:84:48:61:2d:67:
c1:59:06:ca:75:c1:e9:69:53:bd:07:c1:c2:63:5f:6b:90:e5:
99:0c:e0:03:e9:e6:b3:a5:6c:66:7d:27:04:c9:eb:0d:fa:12:
5c:c9:85:9b:2b:e5:48:7e:61:88:c1:8b:23:ab:3c:52:7a:c1:
f4:c2:a2:0c:4f:f2:82:46:92:4d:16:8a:fc:69:e8:3c:a9:93:
b6:36:b0:70:5a:81:c6:c3:de:7e:42:76:0a:30:ea:eb:2b:36:
af:c2:84:94:db:33:99:fa:fb:f5:b2:d8:45:cd:7e:14:6c:d9:
8d:be:17:cc:da:2b:53:87:95:68:f0:49:02:8d:71:40:89:07:
56:aa:f0:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:46 2024 by rpki-client on console-fra.rpki-client.org