Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/KmJBwMqnFQ4RDncXJYdykJ6bWoY.roa
File: KmJBwMqnFQ4RDncXJYdykJ6bWoY.roa (raw, json)
Hash identifier: PfwqYp4w9RnXFS5yWlgoBW4Koju4vif+FfkBDMo3Cuw=
Subject key identifier: 2A:62:41:C0:CA:A7:15:0E:11:0E:77:17:25:87:72:90:9E:9B:5A:86
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 01856BAED8F54C66F6AD9BC06CEBA286DF8E
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/KmJBwMqnFQ4RDncXJYdykJ6bWoY.roa
Signing time: Sun 01 Jan 2023 04:54:58 +0000
ROA not before: Sun 01 Jan 2023 04:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57249
IP address blocks: 193.22.81.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:d8:f5:4c:66:f6:ad:9b:c0:6c:eb:a2:86:df:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Jan 1 04:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a6241c0caa7150e110e7717258772909e9b5a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:ed:ff:c5:af:50:00:a9:0b:5c:c9:ca:bf:
21:59:1e:18:57:26:60:70:3f:79:c5:af:5f:30:82:
85:be:5d:b2:61:3f:59:0d:85:7a:23:2c:a7:b2:e0:
8b:aa:84:bf:14:5c:4f:4f:32:67:a6:f6:2c:8f:7e:
62:b2:a6:58:6a:df:5c:92:bb:96:0a:5f:49:18:25:
94:92:3a:d1:f8:90:64:80:1b:27:34:ff:1c:50:6f:
89:a7:1b:94:51:e7:7b:7c:f5:46:ce:02:a2:4d:7a:
05:b4:56:3d:17:49:03:fc:ca:5b:b8:4c:fc:48:ef:
c8:0e:bd:d7:71:18:63:c7:b6:81:4d:78:8d:9b:23:
35:15:2f:74:39:30:86:b6:96:af:c6:ee:cf:c4:19:
a7:86:85:53:90:4c:b6:06:43:bf:f2:c7:b1:c7:dd:
5c:0f:18:96:26:f6:22:f9:20:29:79:64:3d:94:ee:
f8:c4:02:20:99:20:c1:86:ce:b4:47:7d:ad:1a:36:
ea:b0:be:fe:e9:b4:6c:65:e0:47:5f:c6:72:b8:86:
2f:02:e5:e7:85:ac:25:6e:76:ad:a8:d3:36:a7:3a:
fd:09:22:c2:5c:a7:9a:00:d6:ca:26:5d:4d:a7:c5:
40:9b:2b:1d:8d:2d:44:21:8f:3f:7d:50:ca:e8:80:
a1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:62:41:C0:CA:A7:15:0E:11:0E:77:17:25:87:72:90:9E:9B:5A:86
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/KmJBwMqnFQ4RDncXJYdykJ6bWoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.81.0/24
Signature Algorithm: sha256WithRSAEncryption
60:36:e0:e5:89:7d:2a:2b:d0:42:2a:72:c4:75:d1:72:6e:34:
9f:50:f8:40:33:bc:be:61:00:b0:8a:ff:67:90:8b:10:a7:84:
69:1f:39:35:c7:f4:2e:2f:99:75:50:51:08:43:6c:3f:98:86:
97:70:f4:33:43:6c:12:95:82:5a:65:ec:21:41:3f:c8:fb:18:
f8:0b:f5:f0:25:ab:ab:7c:39:10:bd:1c:69:53:cd:4f:01:c3:
18:37:d9:c7:1e:f8:ee:9d:be:66:42:46:da:15:26:31:dd:11:
7d:12:93:c7:4c:ca:4e:c0:b5:40:4e:ee:26:93:11:38:ec:7b:
0c:8f:82:30:de:79:6b:4b:8d:16:a8:6e:bf:6e:6a:1f:45:a8:
8e:d0:5d:05:7b:1c:4c:45:8f:3f:c8:fa:b2:8e:4e:03:4f:eb:
3f:0c:17:0a:92:9b:c6:8d:5c:5e:80:52:ed:be:55:48:32:c5:
34:26:f0:c9:86:15:28:ce:bf:36:90:8c:04:16:30:e7:2e:cf:
e3:11:d5:ca:8c:ee:07:22:6f:ef:2c:df:9e:33:b2:9b:59:fb:
5f:fc:3f:af:3b:4f:dc:63:ea:a9:e0:af:99:2b:cb:a7:a0:3c:
54:e3:e1:a1:65:31:68:2c:e1:aa:b6:b7:50:16:0b:6d:7f:93:
1b:2c:70:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:26:32 2024 by rpki-client on console-fra.rpki-client.org