Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/KdKKRw8A1yynXGizQOoGiQQTbRk.roa
File: KdKKRw8A1yynXGizQOoGiQQTbRk.roa (raw, json)
Hash identifier: j+O4YIcMO1X0X3itX5EMCyDHpXmhG9RQmZPZW9i4Pls=
Subject key identifier: 29:D2:8A:47:0F:00:D7:2C:A7:5C:68:B3:40:EA:06:89:04:13:6D:19
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 018570FBA1E037402EE5C94EAA7B96851E69
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/KdKKRw8A1yynXGizQOoGiQQTbRk.roa
Signing time: Mon 02 Jan 2023 05:36:57 +0000
ROA not before: Mon 02 Jan 2023 05:36:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 89.104.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:a1:e0:37:40:2e:e5:c9:4e:aa:7b:96:85:1e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 2 05:36:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29d28a470f00d72ca75c68b340ea068904136d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:af:4c:45:14:34:88:25:25:76:9a:de:4a:df:
11:de:a0:77:5b:bd:13:71:7d:e4:81:f6:18:8a:2d:
bb:2a:14:a4:f6:b3:93:10:6f:b6:d2:29:d1:9a:54:
37:70:e9:f6:ff:78:9f:c7:c9:93:83:e5:bd:ac:94:
d0:b1:6d:61:50:0c:ed:57:b4:80:67:ce:2e:49:ee:
11:0d:62:8a:93:79:36:f6:75:4e:26:6b:e7:c2:12:
07:5d:25:d3:e3:11:3c:46:f6:0c:a0:53:fc:b7:b8:
54:37:66:96:a2:83:a4:cf:09:8a:d4:d0:3e:24:dd:
52:01:1f:f0:58:66:0b:8b:59:55:80:aa:eb:dc:36:
92:c0:d9:db:c8:2c:bb:32:3c:cc:db:82:39:7c:1f:
f9:65:f4:9b:a8:99:01:da:5a:bc:d1:8d:9f:52:b1:
11:49:e7:b8:d3:0e:15:e3:34:15:df:70:11:4f:44:
4f:49:b9:b6:b6:25:4b:47:c8:f9:91:9f:1f:6e:47:
ed:c1:76:06:5b:42:ab:a1:b4:07:ac:e7:f7:33:06:
ab:12:1e:ab:8c:68:a6:7f:38:81:c3:a3:09:7c:11:
a3:24:9e:4f:ca:b8:7b:d0:02:0f:10:74:21:c2:ac:
f4:df:4b:b4:8d:52:f2:35:b4:6c:da:e6:7e:a3:9b:
b3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D2:8A:47:0F:00:D7:2C:A7:5C:68:B3:40:EA:06:89:04:13:6D:19
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/KdKKRw8A1yynXGizQOoGiQQTbRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.104.221.0/24
Signature Algorithm: sha256WithRSAEncryption
74:54:80:d4:28:5d:f6:de:fe:1a:fe:38:88:43:f1:35:81:83:
9a:be:07:af:af:68:0d:5a:56:31:5a:34:1e:01:fa:bc:93:5e:
89:37:50:e7:6e:af:a3:1b:60:02:d9:08:5c:b7:1a:d3:1f:ea:
7f:91:20:c3:b1:3f:b3:6c:2b:b4:3a:77:1f:ee:b3:07:cb:19:
a4:9d:c1:42:5d:43:14:39:0c:41:a1:b3:d2:03:f3:a3:37:2d:
df:8e:04:2b:60:1e:3b:eb:62:9c:b2:3c:b3:91:92:23:3f:ab:
64:d3:b0:93:02:46:60:20:b6:87:32:bc:83:99:56:dd:4b:97:
74:41:89:f2:a5:cf:50:95:83:69:86:3c:45:c2:8a:a8:b3:26:
3d:55:11:3c:87:d4:39:8b:9d:e9:b3:aa:91:6d:0a:ef:c9:94:
b3:3c:95:cf:fc:62:05:df:ae:cc:92:af:d2:ed:e6:e4:ae:a6:
41:1f:dc:0f:bf:3d:79:7e:f9:22:ed:10:70:85:98:27:71:9e:
d5:b5:28:99:dc:e9:7c:9b:0f:32:16:54:54:3e:7a:8b:0f:50:
98:ed:9a:d6:f9:5c:e7:2f:57:b7:06:71:84:50:a2:58:cd:4d:
e9:2c:44:17:a5:9c:b4:7f:85:de:ca:d3:75:7a:9c:1b:74:1a:
06:1b:c5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:44 2024 by rpki-client on console-ams.rpki-client.org