Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/km3XETZNR6Pm9BtE4gYLyGXROpg.roa
File: km3XETZNR6Pm9BtE4gYLyGXROpg.roa (raw, json)
Hash identifier: 1nQWdwSIuh4D1jhziRFSExdogy00Mwg8+ur7pnDRfyw=
Subject key identifier: 92:6D:D7:11:36:4D:47:A3:E6:F4:1B:44:E2:06:0B:C8:65:D1:3A:98
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01884350722024D6100A0898C1CD8E61FEE4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/km3XETZNR6Pm9BtE4gYLyGXROpg.roa
Signing time: Mon 22 May 2023 11:55:25 +0000
ROA not before: Mon 22 May 2023 11:55:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46803
IP address blocks: 194.59.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 May 2023 13:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:50:72:20:24:d6:10:0a:08:98:c1:cd:8e:61:fe:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 22 11:55:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=926dd711364d47a3e6f41b44e2060bc865d13a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:67:a8:2b:7c:bd:03:0a:ed:db:1f:33:e5:21:
04:11:f9:5b:fc:19:b0:5b:2e:f0:22:96:de:af:0b:
ed:5d:a6:d8:99:1b:9d:6d:3d:ac:ab:72:94:5f:2d:
20:2e:f1:db:d3:c6:5a:75:ef:75:a0:e0:76:0d:0a:
be:94:0a:4b:97:b5:3f:01:f3:4b:b4:fd:e4:4c:be:
e0:b2:7f:f5:06:21:a4:70:53:cd:f4:87:4e:d4:41:
18:92:0b:9a:43:8d:69:e7:10:58:03:d1:09:7e:78:
f6:b0:d8:82:ea:c6:8b:44:aa:57:7e:76:90:f0:a5:
34:00:ff:e8:d4:3a:4e:82:93:9e:b2:23:5f:2e:2d:
99:c8:c7:e7:85:53:55:f2:d9:f4:9f:c3:75:6a:7e:
ba:ce:79:07:69:88:f5:8c:07:2b:91:68:27:6d:58:
41:fb:89:e8:87:6c:56:2d:21:62:0f:70:f2:0b:d6:
3f:3f:84:7b:c0:35:97:a8:6e:80:91:87:d9:1e:04:
df:10:d9:c9:95:ec:a8:3c:7e:d0:be:b1:86:a6:e4:
38:ea:ce:1a:80:2e:cb:65:a1:8d:59:b4:a0:3e:71:
61:9b:81:76:19:86:c4:9b:bb:48:65:bd:d2:6a:7e:
37:89:1b:3e:06:0b:18:d2:f2:47:24:29:02:9a:9c:
46:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:6D:D7:11:36:4D:47:A3:E6:F4:1B:44:E2:06:0B:C8:65:D1:3A:98
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/km3XETZNR6Pm9BtE4gYLyGXROpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.30.0/24
Signature Algorithm: sha256WithRSAEncryption
87:eb:a4:7e:5d:7b:d0:a0:1d:49:2e:6c:bd:84:95:11:98:e2:
b1:c7:d4:05:21:62:0e:98:14:43:68:cb:8e:dd:bd:b9:8d:be:
d0:3f:d4:2b:e8:2a:e9:66:3a:db:a1:3b:3a:55:2a:2a:57:fd:
28:d2:fa:e1:73:42:92:d3:4b:7f:75:1c:af:fe:b8:19:f0:80:
b2:e3:b9:d7:54:35:8b:fe:5f:93:7c:44:36:91:6a:f4:c3:aa:
80:0c:18:3e:8b:14:42:c5:fc:3d:28:d3:43:a9:e9:b5:44:77:
84:57:ac:35:e2:59:71:60:a7:d8:d7:a4:86:e2:63:12:5f:ca:
ac:65:77:92:f7:e5:94:a4:c4:10:a4:a2:a1:ed:2a:99:8f:31:
3b:0b:0a:e3:9c:fa:b5:19:1c:7a:65:b1:6b:3f:29:16:47:59:
c8:5b:24:03:7e:f2:1e:b4:b7:11:1f:3b:72:d3:c3:0f:c8:4f:
9a:08:4f:91:9e:d3:0c:5d:12:e6:e1:de:54:55:d8:14:2c:9f:
46:ab:2e:66:5c:c4:8d:0a:9e:a6:08:96:34:3f:80:6a:59:9d:
3b:85:4f:cc:a8:7c:92:b6:4e:29:69:a8:88:c4:a5:8a:16:e2:
44:d8:90:4e:ab:94:cf:74:c5:cd:d1:61:9c:75:a8:c3:7f:3b:
5e:f7:15:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:42 2024 by rpki-client on console-ams.rpki-client.org