Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/kgpA6niYKT5rvOUcaj6JDDqVSZk.roa
File: kgpA6niYKT5rvOUcaj6JDDqVSZk.roa (raw, json)
Hash identifier: CFekq1GeXdgVBDjY/UqIIAnsZlYVWk+m+9QKxkHtnX4=
Subject key identifier: 92:0A:40:EA:78:98:29:3E:6B:BC:E5:1C:6A:3E:89:0C:3A:95:49:99
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 018964C051A42BE2610340FBA58B1EFB3A1F
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/kgpA6niYKT5rvOUcaj6JDDqVSZk.roa
Signing time: Mon 17 Jul 2023 16:47:52 +0000
ROA not before: Mon 17 Jul 2023 16:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.128.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:51:a4:2b:e2:61:03:40:fb:a5:8b:1e:fb:3a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Jul 17 16:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=920a40ea7898293e6bbce51c6a3e890c3a954999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:0b:ac:cd:be:d5:c1:23:6b:f7:2f:8a:25:
63:68:41:31:55:6e:49:8e:d3:57:71:2b:75:52:1b:
82:06:be:e4:3d:90:36:3e:0a:5a:e9:e1:bd:59:cf:
52:8a:52:31:49:ac:01:48:aa:9e:4e:83:65:90:d3:
ef:22:c7:e6:94:fd:82:b8:90:67:1c:c1:c8:2a:6a:
19:2c:5a:ab:a7:a5:88:47:ee:87:f7:63:14:71:bc:
7d:4d:21:49:d7:a5:b1:c7:83:62:63:4b:60:71:7b:
77:b2:c9:36:a5:f2:59:84:74:7d:4e:6a:30:dc:b7:
83:b8:04:d2:1c:5a:2a:45:fc:3c:78:2e:d1:5c:2a:
44:c9:9b:5e:59:7c:13:5f:a1:d9:cb:e0:c7:c8:9b:
29:31:25:d4:ac:33:73:68:48:9d:69:4e:50:2b:f2:
5d:11:a9:ca:86:23:88:c4:8a:79:71:2a:19:0f:fe:
b1:e6:4c:16:f9:d0:1a:79:f7:00:8c:a6:37:65:df:
c4:0c:aa:ec:6b:50:d4:f4:5c:d1:58:a6:11:6b:1a:
a9:ca:5f:dc:18:7c:83:80:2b:ad:21:ac:7e:4d:8b:
58:61:51:df:30:26:0b:5a:a7:39:55:04:68:7a:8e:
57:86:21:1f:d3:b3:73:eb:a6:c0:63:28:37:6d:66:
d3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0A:40:EA:78:98:29:3E:6B:BC:E5:1C:6A:3E:89:0C:3A:95:49:99
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/kgpA6niYKT5rvOUcaj6JDDqVSZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:c7:e0:45:64:04:d8:af:90:be:f7:38:0a:1f:b8:03:41:c5:
d2:d2:fc:9e:13:8c:90:9d:c2:32:26:50:2f:90:68:36:79:38:
71:0f:50:e8:c8:47:23:1c:ee:30:98:0e:04:f6:61:df:db:f1:
75:f6:ac:d8:17:a5:90:2e:99:ae:49:e7:5a:c5:70:9f:7f:55:
f9:5c:d0:45:2d:db:b4:c8:85:72:9b:8f:d8:8f:6c:c8:34:4f:
a5:6c:d3:a1:51:1d:bf:cc:04:e2:2f:6c:31:19:a0:b4:b8:69:
00:ae:88:1f:94:a6:bc:af:fb:b4:6f:2d:45:b9:ac:11:db:f7:
c3:55:d2:72:dd:0d:0d:ad:3b:0d:4e:41:cf:69:62:de:36:54:
66:2f:28:89:60:93:e7:54:89:ff:77:2a:55:12:b1:62:ef:df:
99:bb:be:ff:38:4b:46:e6:d6:63:9b:a6:5d:d5:92:74:76:0d:
25:bc:c8:32:d3:7e:3c:9d:0d:27:ca:65:a7:a8:f4:82:04:be:
5c:f6:c8:a6:98:5a:ce:e0:04:38:87:c6:fa:27:53:d2:da:bf:
d7:00:ea:d5:50:59:d6:bc:fd:c5:5e:81:9c:0a:c2:6b:07:f7:
59:96:9d:c3:74:05:a4:ee:ec:e5:0e:c5:a5:26:24:5e:71:27:
ef:aa:cc:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org