Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/kaV-16FbE_Z0XOHn-E7kip_TBXM.roa
File: kaV-16FbE_Z0XOHn-E7kip_TBXM.roa (raw, json)
Hash identifier: 6Hw/5iQ39zgpo8BlygsVX+Phf0YidCsU7L4nhDVdkxY=
Subject key identifier: 91:A5:7E:D7:A1:5B:13:F6:74:5C:E1:E7:F8:4E:E4:8A:9F:D3:05:73
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 018571B0F9906C7ABC06D5F1B5FCE613E9C5
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/kaV-16FbE_Z0XOHn-E7kip_TBXM.roa
Signing time: Mon 02 Jan 2023 08:55:01 +0000
ROA not before: Mon 02 Jan 2023 08:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44740
IP address blocks: 89.46.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:f9:90:6c:7a:bc:06:d5:f1:b5:fc:e6:13:e9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Jan 2 08:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91a57ed7a15b13f6745ce1e7f84ee48a9fd30573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8e:3f:fd:6b:02:49:f1:ca:eb:86:bc:c8:10:
b7:63:f6:8b:f7:99:0d:d5:46:ab:af:de:62:f8:06:
4e:c0:12:ef:1f:20:e2:35:2f:17:cb:3e:c0:44:c2:
08:75:53:c7:74:fc:0b:2c:dc:ed:30:a5:d3:83:6d:
e5:21:a5:c7:1c:c4:ca:46:55:82:99:6e:8d:22:e1:
2e:f3:63:8f:9c:77:36:62:04:d7:da:52:42:96:86:
ab:bd:3a:a5:34:81:41:d7:2d:cb:cf:50:28:0d:0a:
47:03:fc:ba:ab:47:71:4f:07:28:be:1e:92:f1:ac:
e8:ec:f9:e8:cf:c1:ea:f3:b3:8e:09:ee:d9:30:71:
6e:0a:d3:4f:e1:85:37:9c:59:69:a5:66:50:be:2f:
cb:92:df:a3:2e:a3:a6:87:c0:3d:3d:16:de:65:c9:
69:75:14:5f:c8:4f:c0:d3:df:a7:69:83:1a:2c:e8:
b1:ac:23:08:8f:6a:45:8d:6e:3e:d2:8c:6f:2d:48:
b4:7c:0a:d2:fb:da:b0:d4:ca:fd:51:7c:58:d8:a2:
05:73:00:8b:81:fd:8b:7e:3c:b9:2e:c4:2d:3b:7d:
0e:51:76:ad:20:92:59:83:22:34:db:68:1b:b5:fd:
6a:e6:2b:d5:ad:cf:49:ba:79:83:58:46:c9:6a:5c:
6a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A5:7E:D7:A1:5B:13:F6:74:5C:E1:E7:F8:4E:E4:8A:9F:D3:05:73
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/kaV-16FbE_Z0XOHn-E7kip_TBXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.46.245.0/24
Signature Algorithm: sha256WithRSAEncryption
51:b9:d0:9c:da:af:1e:cc:7a:74:9c:24:50:87:87:bb:d8:f5:
46:6f:92:59:7b:0f:34:b5:fc:c6:d9:ee:1e:8f:4e:4d:02:15:
ef:78:45:a5:cd:4a:71:ac:c3:de:28:d7:31:9e:a3:1b:e6:09:
83:8b:c5:9a:28:1a:8e:e3:21:26:48:50:83:eb:69:96:22:de:
4f:79:f3:c9:fd:b6:00:82:73:6f:39:7a:2a:b6:7a:53:74:68:
ca:36:7d:7a:55:b5:8e:2b:8f:1e:e1:c0:c3:9b:41:87:f8:88:
68:14:88:12:fe:7a:f4:e0:ba:ac:cb:c7:fc:15:c2:ed:06:59:
0d:2b:7a:bc:39:36:4e:74:74:b8:3d:91:b4:be:78:5b:af:55:
3c:26:95:db:e4:e0:b9:46:78:65:64:90:79:ac:58:4c:9e:b4:
e4:e8:76:b7:69:21:6d:50:0c:85:16:e0:db:94:b9:2f:b5:59:
49:3d:50:e2:8a:e2:00:64:38:44:4d:b5:a6:0f:a6:9a:cd:d1:
1b:8b:77:8e:c8:f1:16:77:3a:29:0c:0f:cb:aa:e5:7b:9c:e8:
c9:c8:73:d2:13:c4:e5:c5:16:6c:32:d3:14:40:a6:c8:0a:c5:
96:51:9e:f1:3b:24:ce:1f:ec:e3:d0:23:01:ec:9d:df:e0:16:
38:f3:0a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:54 2024 by rpki-client on console-ams.rpki-client.org