Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/kclteVWudTRH6bKg_CTcQ8HEBxk.roa
File: kclteVWudTRH6bKg_CTcQ8HEBxk.roa (raw, json)
Hash identifier: El79ii7sVLALvFxqjaTt1W3ptwXcV7g1RE4T7nJIpB4=
Subject key identifier: 91:C9:6D:79:55:AE:75:34:47:E9:B2:A0:FC:24:DC:43:C1:C4:07:19
Certificate issuer: /CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Certificate serial: 0189793DE3DD4794D4A0316F777E0EF829DE
Authority key identifier: 2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/kclteVWudTRH6bKg_CTcQ8HEBxk.roa
Signing time: Fri 21 Jul 2023 16:17:26 +0000
ROA not before: Fri 21 Jul 2023 16:17:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 195.234.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 07:32:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:3d:e3:dd:47:94:d4:a0:31:6f:77:7e:0e:f8:29:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b051ef23060eb51bfd8c79795f6a4daf48a3aa0
Validity
Not Before: Jul 21 16:17:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91c96d7955ae753447e9b2a0fc24dc43c1c40719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:00:86:74:fe:66:d1:48:05:8b:9f:8b:df:1d:
85:c6:39:a9:37:b8:f9:48:7d:b1:79:41:e2:3c:f0:
ef:d8:c3:4f:8e:c4:d3:f8:c7:7e:03:a1:f4:0d:85:
02:ca:12:03:f2:83:15:12:91:5b:9f:32:2e:af:53:
ea:fc:29:d6:98:19:68:11:a1:34:ef:86:e7:8d:32:
0f:40:4b:65:49:2e:8a:37:f7:fc:3f:20:31:1b:ab:
9f:c7:18:9e:86:0a:c4:8c:62:24:11:f3:f9:01:ac:
44:ac:79:31:d0:d9:ac:4f:07:03:7b:e9:44:09:95:
35:ee:55:9b:1f:22:dd:58:7f:db:b7:d6:c5:67:ee:
6d:9f:36:cf:16:12:8c:ea:a4:8c:fb:85:f2:e1:02:
f3:2a:f0:bb:67:1a:96:12:cc:d5:6b:e1:45:5e:97:
3d:16:fe:8c:62:82:4e:93:fb:eb:59:33:88:02:23:
bb:35:c2:da:2b:89:53:da:11:01:9d:ce:91:65:f7:
a5:ae:2d:8d:41:51:46:63:02:08:d6:0a:eb:dc:40:
19:ae:da:4c:69:b7:46:e2:f9:f9:bd:f3:26:50:9e:
82:9a:02:ce:ea:17:4c:52:8c:24:c9:59:ae:d6:60:
b8:27:79:a2:2d:82:1d:cf:75:e1:79:43:b3:65:3d:
ef:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C9:6D:79:55:AE:75:34:47:E9:B2:A0:FC:24:DC:43:C1:C4:07:19
X509v3 Authority Key Identifier:
keyid:2B:05:1E:F2:30:60:EB:51:BF:D8:C7:97:95:F6:A4:DA:F4:8A:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwUe8jBg61G_2MeXlfak2vSKOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/kclteVWudTRH6bKg_CTcQ8HEBxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/38179c-25ab-4368-8cf8-57e593cf9a4e/1/KwUe8jBg61G_2MeXlfak2vSKOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.153.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:75:82:20:b1:7a:10:06:7a:c4:24:8e:c9:99:01:a2:89:82:
60:2e:a4:cf:58:c0:1e:c9:2d:43:35:8a:ef:03:8f:e5:4c:b5:
2f:d2:0a:90:74:3b:d3:d3:2c:15:7e:c1:b8:7b:35:b3:ea:d7:
d8:c6:7d:4b:3f:56:7d:ac:06:1a:26:56:8f:97:45:14:68:7f:
08:33:6a:b3:79:c9:e2:06:a2:61:04:5d:fd:66:9f:89:0b:44:
de:0b:a7:79:f0:9b:60:0a:9d:49:c5:53:0e:ee:ea:0c:95:2b:
f0:05:d5:11:ce:cb:7d:16:0d:74:bd:c6:c1:15:9e:49:cf:8c:
49:c0:50:59:68:01:5f:f8:79:a9:36:b5:36:00:2b:87:88:9e:
c2:54:29:2f:d6:d5:ff:3f:93:27:72:33:77:cd:9f:c5:19:ca:
cd:22:08:68:6a:bd:1e:c5:45:57:9e:52:55:d8:bd:f9:4d:04:
b8:10:5f:e4:a7:7e:f8:e9:9f:02:db:06:7e:b5:45:50:4f:9e:
19:aa:70:77:14:df:72:e6:45:44:63:ff:b6:ca:d2:d4:1a:ea:
ab:1f:03:45:be:29:f1:11:21:84:2d:c4:87:c2:f9:8e:90:bc:
d4:5f:f8:e3:8a:69:7c:33:30:e6:bc:34:d8:95:73:0a:ab:51:
6e:a1:d7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:42 2024 by rpki-client on console-fra.rpki-client.org