Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kici5a74DmHjicNItIOIA9mGXPs.roa
File: kici5a74DmHjicNItIOIA9mGXPs.roa (raw, json)
Hash identifier: dJGNuE5rYdlReRsmv2zqCsK9HAqEZnpewKd+iagQh0U=
Subject key identifier: 92:27:22:E5:AE:F8:0E:61:E3:89:C3:48:B4:83:88:03:D9:86:5C:FB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018658831DAF4A1F683530D3A6230D6092D1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kici5a74DmHjicNItIOIA9mGXPs.roa
Signing time: Thu 16 Feb 2023 04:37:13 +0000
ROA not before: Thu 16 Feb 2023 04:37:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24875
IP address blocks: 194.87.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 16:53:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:58:83:1d:af:4a:1f:68:35:30:d3:a6:23:0d:60:92:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 16 04:37:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=922722e5aef80e61e389c348b4838803d9865cfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0c:4b:70:76:df:72:26:76:4d:6a:76:7d:11:
74:77:b3:aa:6b:bb:88:7b:bc:59:4b:be:e3:46:e0:
14:73:48:61:03:91:df:a4:9f:c3:7c:cd:df:e5:7a:
75:3f:55:63:75:08:67:4e:11:ba:ff:2b:ad:8e:4c:
e4:a5:bf:22:4c:db:2f:05:4d:6f:de:04:b9:8a:79:
df:e3:2c:eb:24:85:c8:99:fe:e1:c4:60:0d:74:04:
43:81:23:88:6e:a6:89:e6:9c:b1:b0:39:b3:0e:d4:
84:53:75:a2:86:6e:fa:79:59:12:66:3e:42:ea:03:
30:57:ae:b4:cb:cb:6e:1f:c2:e7:bc:f6:5c:43:ba:
73:5d:12:4b:cd:8b:51:17:65:60:5a:82:41:46:9d:
db:02:cd:56:70:80:82:9f:5d:0d:e2:9e:96:f8:b7:
b4:09:eb:64:25:2f:27:07:71:ed:36:1c:ab:b2:fe:
28:a1:70:d5:01:92:b2:86:49:7a:bd:f4:7c:bb:80:
eb:09:42:88:99:75:e5:f2:34:2b:fd:f2:d0:78:aa:
6a:55:7b:bc:7b:89:11:96:a4:b8:00:82:d5:50:bb:
50:75:8d:11:4d:fd:4a:63:ef:25:26:fd:1f:a9:92:
8e:15:42:41:7c:91:a6:d7:35:d0:c9:05:e4:c8:1e:
35:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:27:22:E5:AE:F8:0E:61:E3:89:C3:48:B4:83:88:03:D9:86:5C:FB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/kici5a74DmHjicNItIOIA9mGXPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.251.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d5:26:b1:0a:19:23:3d:54:24:8b:ca:c3:d1:4d:3f:d1:18:
4b:46:49:c7:8b:04:ee:bb:56:a6:82:92:53:95:fb:ff:49:ad:
5f:77:d2:58:72:f9:f1:46:2e:2d:0c:29:d5:02:25:52:0c:57:
19:b4:3f:b7:4a:7e:ec:21:f2:43:38:c7:c1:56:5f:36:64:81:
09:73:99:8d:f3:51:85:57:95:6d:54:1c:fe:b8:30:f5:70:59:
db:6c:3d:72:0f:ce:e6:df:a4:9a:44:ef:62:4e:06:e3:63:4f:
a1:f2:67:fc:d3:72:14:bc:14:e8:44:f6:2c:1e:ab:ac:27:bb:
11:8e:35:f8:6a:37:76:52:f1:a0:a6:e8:26:75:57:ff:f7:7a:
d8:ff:bd:c8:55:8c:84:e7:9d:3a:01:18:69:48:5c:74:a6:ed:
7a:cd:94:d3:50:d0:55:67:e9:48:e2:40:9c:a2:01:ba:ff:bb:
8c:e8:a9:59:b3:f7:8d:a3:4e:da:05:8e:95:4c:14:2b:ad:b9:
37:f7:ae:96:f6:0f:29:d7:35:97:af:c9:a2:dd:58:43:14:67:
6c:97:5d:5c:5e:a0:0b:d2:4e:55:ac:7a:08:66:3e:a1:30:8a:
c5:ab:9f:6f:b8:89:2f:c4:88:f8:89:4f:4f:f9:75:d4:d4:5d:
d3:f9:7a:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:44 2024 by rpki-client on console-ams.rpki-client.org