Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/Kys4u7nmZ25VrcA2Y_33RGVzjsY.roa
File: Kys4u7nmZ25VrcA2Y_33RGVzjsY.roa (raw, json)
Hash identifier: amkWlyC5hAGqDxB9HGLpEIjJhzCIouiwYC/dugOgczQ=
Subject key identifier: 2B:2B:38:BB:B9:E6:67:6E:55:AD:C0:36:63:FD:F7:44:65:73:8E:C6
Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Certificate serial: 01856FB12558E3891BCA61F238BF7B9460F4
Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/Kys4u7nmZ25VrcA2Y_33RGVzjsY.roa
Signing time: Sun 01 Jan 2023 23:35:58 +0000
ROA not before: Sun 01 Jan 2023 23:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204807
IP address blocks: 185.189.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:25:58:e3:89:1b:ca:61:f2:38:bf:7b:94:60:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59
Validity
Not Before: Jan 1 23:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b2b38bbb9e6676e55adc03663fdf74465738ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:83:6f:b9:2f:a1:58:dd:f2:02:87:19:83:c0:
75:fa:58:9e:01:af:0b:3f:52:8c:68:5c:22:41:a4:
25:ec:be:44:fb:e6:b5:8a:13:3f:04:53:b2:6d:6b:
94:7c:c3:be:1b:4c:a7:d3:38:7d:0a:05:fc:e9:e8:
d9:86:1a:e7:9b:93:7e:23:c3:7f:56:5f:3d:c6:bd:
83:ec:ac:45:02:26:37:c6:5d:68:49:6d:2d:86:5c:
53:a3:0b:81:23:79:73:b0:eb:bc:9f:c9:74:d9:51:
02:ee:36:f0:8c:d6:78:fa:80:05:8f:dd:c9:63:f3:
cd:1c:bf:bd:78:5a:5f:d3:78:d6:16:e3:2c:4f:1e:
28:96:a0:9b:2f:0a:f1:e0:a0:59:5a:9e:c3:de:65:
fd:90:f0:5d:1f:00:50:23:18:da:f8:13:d4:4c:80:
f4:3c:55:a2:e3:09:96:db:92:92:c8:3a:a5:b2:90:
ee:d2:6a:80:92:d2:e0:0c:c3:af:28:aa:60:74:31:
f4:f8:99:34:09:b5:bf:db:ef:3f:b6:f4:80:2b:e9:
02:db:e1:b6:7b:df:7d:50:f1:fd:86:93:90:9e:fa:
b2:1b:d6:ea:28:b6:a4:03:5e:55:6f:f1:18:99:0b:
ed:28:ad:2a:1d:bf:4e:36:f1:6a:26:44:a2:d8:ba:
ba:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:2B:38:BB:B9:E6:67:6E:55:AD:C0:36:63:FD:F7:44:65:73:8E:C6
X509v3 Authority Key Identifier:
keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/Kys4u7nmZ25VrcA2Y_33RGVzjsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.109.0/24
Signature Algorithm: sha256WithRSAEncryption
18:18:f1:1f:57:a4:29:10:e3:dd:0e:c9:3b:d1:55:c6:26:c7:
c3:8e:d9:10:c2:3d:05:43:f8:5c:2e:32:44:a1:47:35:e9:4b:
39:57:d8:63:9b:36:c4:c8:08:de:66:55:29:53:0e:a2:9a:2e:
42:17:06:92:75:af:8e:5b:22:51:73:1b:9f:50:df:67:22:66:
7c:e2:b9:42:88:fb:67:c4:69:5a:75:0d:cd:0a:f1:de:06:a6:
8c:7f:88:58:e8:4a:f4:5d:fb:94:2e:e6:1d:97:ef:9e:83:a1:
21:d0:2c:d0:b8:54:db:c7:86:df:b6:91:a2:7b:ae:b6:f7:9e:
f3:f8:66:6c:97:bc:c1:22:eb:14:24:aa:dd:c8:a3:bf:b0:76:
28:b5:18:17:d6:32:d9:cc:ab:0d:1f:7f:62:cd:bb:39:4f:ee:
f6:5c:ed:c2:f5:26:ce:a2:27:e4:8a:b6:09:02:96:4d:cf:cd:
cf:18:12:18:6e:4f:93:b7:21:49:26:40:72:0b:f1:7f:c9:e1:
e2:97:0e:77:17:f4:89:04:81:86:dc:c6:5b:0b:dc:bd:d3:c1:
5a:04:fd:b0:26:54:66:a1:d9:02:0a:28:ee:6f:44:f0:4c:f3:
33:a6:fb:22:61:ed:e6:dc:c2:e9:ea:5b:b8:f2:3b:4b:33:50:
e2:79:93:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:43 2024 by rpki-client on console-fra.rpki-client.org