Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kW3zUMUZ8HFcSI7455xyknuViUM.roa
File: kW3zUMUZ8HFcSI7455xyknuViUM.roa (raw, json)
Hash identifier: /CPiJdfZn48YFohNUOk75/VDB/17ziOkMsvJqWD50Ak=
Subject key identifier: 91:6D:F3:50:C5:19:F0:71:5C:48:8E:F8:E7:9C:72:92:7B:95:89:43
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0186B71D65B41ABA1A47B5982A855D029951
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kW3zUMUZ8HFcSI7455xyknuViUM.roa
Signing time: Mon 06 Mar 2023 13:30:02 +0000
ROA not before: Mon 06 Mar 2023 13:30:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48668
IP address blocks: 193.32.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:1d:65:b4:1a:ba:1a:47:b5:98:2a:85:5d:02:99:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Mar 6 13:30:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=916df350c519f0715c488ef8e79c72927b958943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:76:0d:1d:b7:ef:ed:74:40:ed:e5:fc:ec:be:
19:da:38:8a:40:17:20:28:eb:a3:77:66:e6:e3:5b:
7a:ce:a6:a0:67:fe:94:d2:9c:94:01:1c:73:f7:67:
67:f7:95:66:d4:f8:19:35:21:fe:52:74:be:d7:37:
55:5f:88:8d:4a:a3:ed:4a:7b:cb:4f:2f:02:e8:80:
d4:fc:b4:50:27:9a:42:d5:c3:2d:09:dd:da:e0:15:
ff:c0:53:0b:58:36:25:b2:4e:f6:fc:1a:f9:5f:e1:
96:5a:cb:25:f4:d0:32:8e:48:b9:71:1a:bc:bd:5d:
88:1d:ed:5d:30:35:10:a5:27:d5:db:e3:e1:ba:68:
d0:1d:bb:1e:f5:32:96:ae:54:6f:d8:7f:76:e8:f7:
4b:42:44:7b:3e:a9:2e:dd:50:7e:50:e3:df:f8:44:
b7:ad:97:ec:90:4e:ce:67:12:61:6a:53:6a:76:09:
a0:b3:50:da:5d:28:16:75:25:16:aa:95:30:93:d4:
e8:e7:97:cb:24:44:cd:a9:02:03:a8:1f:cc:54:9f:
a5:66:d0:ee:70:c4:4b:13:53:3d:cd:76:67:46:62:
43:d3:7d:42:9e:52:cd:bb:94:76:7e:ed:e0:6b:da:
d0:c1:78:d2:10:ac:82:4b:f0:de:3b:80:96:17:4e:
50:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6D:F3:50:C5:19:F0:71:5C:48:8E:F8:E7:9C:72:92:7B:95:89:43
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/kW3zUMUZ8HFcSI7455xyknuViUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.191.0/24
Signature Algorithm: sha256WithRSAEncryption
72:4e:21:12:60:63:c0:4c:1c:b6:67:bd:82:ae:94:87:9b:4a:
dc:63:33:fd:6d:63:db:da:eb:a2:73:0d:21:0f:93:97:e7:2c:
38:57:88:f6:3d:98:40:4c:4e:9e:4d:b2:bc:01:53:ac:df:87:
bd:61:23:2d:2a:59:ed:8f:32:dd:95:78:d6:ea:59:28:92:d8:
6f:01:56:4b:06:45:6c:19:49:c6:97:30:09:bf:f4:ff:82:f1:
0a:83:86:6a:a4:93:ff:88:76:01:34:46:c0:65:32:f9:ce:b9:
ad:4d:63:dd:31:94:8f:0c:8f:83:ce:1a:90:55:17:9d:d6:b8:
ba:b4:37:0e:fe:09:27:dd:45:46:b0:52:3f:6d:8b:f9:86:40:
72:25:6c:0b:57:78:52:73:18:b2:2d:01:65:df:a2:6a:cf:cf:
9a:50:3a:67:5c:7a:d7:1a:4e:58:28:ca:34:e6:3e:9d:6b:98:
79:17:b3:b9:8b:31:db:9c:3b:17:78:f2:a1:52:78:fd:da:2e:
8e:b1:0d:04:0d:92:68:f0:1a:39:a0:cf:e5:bb:ba:1c:47:cb:
36:9c:06:98:0a:c0:88:41:9c:ae:d5:fc:14:14:b0:84:f6:01:
0a:ad:2a:9e:83:d2:c2:d6:c5:5e:44:45:57:a7:a8:66:a5:9a:
a4:f5:30:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org