Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/KO_fP5vx7l9G2KJ_Yh-E0yAB98g.roa
File: KO_fP5vx7l9G2KJ_Yh-E0yAB98g.roa (raw, json)
Hash identifier: dWi3GRe7LKkptBGXRlU3Og4Yn+BgsDALH0wUL5a0VLQ=
Subject key identifier: 28:EF:DF:3F:9B:F1:EE:5F:46:D8:A2:7F:62:1F:84:D3:20:01:F7:C8
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 018DF3B73BF626C0F8946528083CD4BE4701
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/KO_fP5vx7l9G2KJ_Yh-E0yAB98g.roa
Signing time: Thu 29 Feb 2024 07:14:48 +0000
ROA not before: Thu 29 Feb 2024 07:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198949
IP address blocks: 185.34.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 12:03:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:b7:3b:f6:26:c0:f8:94:65:28:08:3c:d4:be:47:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Feb 29 07:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28efdf3f9bf1ee5f46d8a27f621f84d32001f7c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ff:b8:1b:de:e7:97:4c:a2:a1:bd:27:4c:61:
0f:3a:50:40:94:b7:c8:45:c5:78:58:a6:79:41:6f:
cb:dc:77:d0:a6:70:84:c4:f5:89:a1:f7:c3:a4:5d:
72:f7:c9:c9:89:f4:0e:ed:62:73:9a:7c:d8:09:80:
31:f0:76:af:38:bb:49:50:3d:08:eb:e5:02:e8:98:
49:03:cc:4e:a9:63:1c:f8:2b:eb:d8:38:7d:32:88:
c2:50:26:d9:64:32:5a:68:84:c9:33:ea:ce:2b:7d:
f9:27:5c:83:76:c1:0f:33:a0:28:c4:7b:29:f8:a7:
e9:d4:65:5d:20:f2:4c:7c:5c:c5:f6:3e:5b:32:f5:
9e:60:7a:b1:ec:b2:19:1f:8c:1b:3f:f2:54:f9:8e:
fb:92:6f:2b:19:cf:47:f8:e9:b4:a9:f7:11:0e:60:
8a:77:0a:f5:a0:db:34:89:19:2f:c1:ba:85:9a:d0:
52:f8:49:a8:42:9a:58:fe:7e:84:59:bb:c5:91:9b:
76:7c:61:28:38:65:c6:e3:2f:33:16:9b:37:1d:a8:
06:a8:f2:c2:42:ad:99:70:8d:3b:c9:8c:03:1c:a5:
df:68:a7:7e:a3:0f:82:e6:f6:7a:f3:c3:87:91:76:
57:de:2f:1b:0b:95:d4:82:71:46:30:2d:3e:f1:0a:
bd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:EF:DF:3F:9B:F1:EE:5F:46:D8:A2:7F:62:1F:84:D3:20:01:F7:C8
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/KO_fP5vx7l9G2KJ_Yh-E0yAB98g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.226.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fa:9d:f6:22:80:2e:84:64:8c:a0:72:28:ff:db:ed:a6:d9:
8b:cf:ef:6c:0b:7b:e6:75:34:7a:f0:d7:6b:61:d9:d7:e8:78:
d9:27:25:8d:80:8b:0d:c5:e2:b0:45:8b:a9:2f:89:dc:90:6d:
ec:df:50:00:1c:85:88:68:2c:e0:bb:17:2c:71:fc:0a:8b:49:
57:a7:a6:41:0e:20:b4:92:91:72:cc:dd:13:66:aa:7e:8c:00:
2a:a6:91:6b:26:8e:f0:26:66:02:91:cf:9c:68:13:d3:f8:ce:
62:ed:6f:c6:e5:9f:ee:30:81:fc:bf:1a:74:f8:3f:5e:00:2d:
56:23:7b:07:70:f3:6a:9a:a3:8f:fb:d3:7b:49:9c:1d:b5:0a:
c8:bd:7c:73:8c:ec:32:53:79:3d:d0:ea:5e:92:b2:04:5d:1d:
02:b2:dd:0e:43:78:2e:d6:62:83:42:0f:cf:7f:28:71:c8:5e:
dc:68:6d:ab:bc:38:0c:50:bd:7c:45:45:24:44:a0:63:76:80:
69:f8:40:94:f3:08:7c:84:24:e4:e8:00:89:d1:3a:6d:1a:34:
80:a1:b3:41:60:6c:a7:03:a4:96:bd:4b:c0:ec:3a:bd:30:bc:
a4:09:d1:12:50:2f:bf:18:e2:14:82:3b:4f:07:dd:f1:56:b9:
35:a7:8f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:34 2024 by rpki-client on console-fra.rpki-client.org