Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KWEW8ehZFXSWHrCYC8uSWmGGRoM.roa
File: KWEW8ehZFXSWHrCYC8uSWmGGRoM.roa (raw, json)
Hash identifier: GsGOuib9nM1upurDkbXSG3Lixv3ppp8VANHnUbyxWXg=
Subject key identifier: 29:61:16:F1:E8:59:15:74:96:1E:B0:98:0B:CB:92:5A:61:86:46:83
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018BAAB2FAE0F007F17EE884B9A9CE332220
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KWEW8ehZFXSWHrCYC8uSWmGGRoM.roa
Signing time: Tue 07 Nov 2023 16:52:18 +0000
ROA not before: Tue 07 Nov 2023 16:52:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47516
IP address blocks: 212.192.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 18:16:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:b2:fa:e0:f0:07:f1:7e:e8:84:b9:a9:ce:33:22:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 7 16:52:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=296116f1e8591574961eb0980bcb925a61864683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4a:b5:1b:bd:ee:7d:11:c1:d0:9a:4e:22:5e:
43:aa:22:cb:2c:0f:83:47:32:b5:b4:e5:31:3d:58:
7a:d9:a1:e0:73:ae:07:6b:82:4a:e6:95:f0:b3:a8:
6c:e6:f1:9f:10:6c:d5:c2:a3:1b:06:8a:dc:df:e4:
8d:f4:77:6b:f0:71:d0:5c:0e:23:76:99:1f:e0:84:
63:6e:20:d9:9f:25:af:9b:80:ed:85:49:a1:29:a5:
ee:83:f2:09:3b:ab:0d:f6:a7:ea:29:e4:7f:60:a3:
34:f2:d9:06:dc:e1:71:21:5c:ba:51:b8:b0:a6:db:
52:e2:bb:6d:32:35:3a:7b:c3:c1:fd:07:53:3d:21:
8b:ab:93:b6:a6:be:8e:67:c4:aa:a8:43:f9:8a:ea:
48:5a:94:17:03:f4:ad:1d:c5:bc:f1:24:63:73:d5:
82:73:e8:a5:40:98:b3:00:96:5c:fc:fa:b3:61:54:
7b:2c:ff:a9:9e:68:21:e5:2b:47:11:4c:82:5e:f2:
0a:75:c4:9f:6d:b4:2d:b6:33:b8:bb:27:27:a4:d1:
7c:11:1a:42:fa:7c:f1:df:56:6d:85:04:1a:7c:b5:
dc:a2:fd:d5:09:b1:fa:07:29:cd:4e:59:2f:34:4a:
1c:55:b2:ff:d8:1b:dc:e0:e7:7a:93:d1:65:14:65:
6e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:61:16:F1:E8:59:15:74:96:1E:B0:98:0B:CB:92:5A:61:86:46:83
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/KWEW8ehZFXSWHrCYC8uSWmGGRoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b0:98:b0:09:77:c5:43:ee:27:df:37:8d:df:d4:5c:49:d5:
46:0e:55:9a:d9:3d:72:7e:48:bf:8e:62:63:10:76:55:bd:df:
3e:a0:30:a3:75:ce:4c:d3:0d:9d:f8:4c:bf:51:07:85:55:6c:
da:5c:b4:ec:89:e7:fe:60:65:06:ab:88:5a:55:f9:95:58:67:
4a:d3:57:89:b0:5d:b3:c9:42:6c:8a:a5:d4:c1:ef:c8:a1:4c:
6a:68:1a:39:0d:4f:77:2e:d3:1f:3f:92:30:88:3a:65:ec:37:
09:5b:75:70:64:ef:b7:0b:fe:8f:96:88:57:9c:5f:b4:d0:89:
0e:73:3f:bb:91:07:bb:a8:c3:0d:9c:98:b7:a6:ba:b0:cb:7e:
29:43:0d:fa:4b:05:48:cf:87:d7:b8:32:67:47:e1:ce:5e:13:
ff:02:20:db:3f:c7:54:c3:69:36:38:52:3f:a5:b4:b4:70:7b:
d5:e4:6c:23:d8:92:8f:94:8f:5d:99:43:5d:33:1e:56:3e:19:
53:22:b7:b6:37:b4:24:c5:39:60:c5:dc:c5:8f:66:81:97:83:
a4:89:7a:5b:7d:34:09:18:d2:aa:93:ee:b9:34:27:71:dc:8e:
c7:73:95:d4:cc:eb:aa:32:91:19:5b:ae:23:e6:89:5d:53:73:
a3:a4:95:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:13 2024 by rpki-client on console-fra.rpki-client.org