Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/KjEpQQBPpLKNHzroKz642csj6S0.roa
File: KjEpQQBPpLKNHzroKz642csj6S0.roa (raw, json)
Hash identifier: yS6QaxFQ+L6VuQI7LDiz2ev23nYYGuiG/0C2qyTS3yo=
Subject key identifier: 2A:31:29:41:00:4F:A4:B2:8D:1F:3A:E8:2B:3E:B8:D9:CB:23:E9:2D
Certificate issuer: /CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Certificate serial: 01856FF0338B028D65B66442F649E106239F
Authority key identifier: AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/KjEpQQBPpLKNHzroKz642csj6S0.roa
Signing time: Mon 02 Jan 2023 00:44:50 +0000
ROA not before: Mon 02 Jan 2023 00:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58075
IP address blocks: 185.187.100.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 06:49:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:33:8b:02:8d:65:b6:64:42:f6:49:e1:06:23:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9f84c6a48d5c6dfe64149873b148d1120b009b
Validity
Not Before: Jan 2 00:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a312941004fa4b28d1f3ae82b3eb8d9cb23e92d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b5:f9:2a:48:56:86:a7:89:71:a1:f9:89:ee:
80:9c:ef:3b:20:33:97:9e:17:1b:2d:81:fd:bf:9a:
cd:6b:5a:01:95:1b:76:49:fe:43:59:48:ab:83:cf:
75:a5:7a:5a:1c:10:ef:dd:2f:69:07:6e:76:44:a2:
59:a3:ce:35:b0:62:25:00:c8:44:da:35:d0:57:5b:
da:6c:cc:f7:17:49:7c:da:70:e4:7d:40:24:6d:57:
74:97:6b:52:2e:2e:13:00:8c:c8:87:70:ce:f5:f3:
4b:be:b0:93:c0:3d:1f:db:b7:4a:5e:4c:8f:8f:1a:
49:fd:60:c5:a8:aa:cf:9e:35:f6:41:cf:a2:68:6e:
46:31:d7:2f:52:0e:36:f8:14:00:03:87:df:80:fb:
6e:d7:aa:a4:aa:5d:1b:96:94:6e:79:6d:a3:9f:e7:
60:a2:aa:e9:22:60:3e:70:d9:35:b7:ce:dc:f7:97:
f2:cd:62:64:f8:08:b7:b4:d6:9d:eb:ed:63:f9:8f:
f2:ee:c6:73:3f:3a:27:5b:05:c7:0f:46:91:93:c5:
29:a0:cd:21:ed:3d:55:78:37:9d:f1:f3:89:cb:8d:
d8:b6:37:99:95:f9:e5:3a:98:1e:68:5c:77:2a:a8:
e9:da:0d:ec:a5:fa:2a:a9:da:3f:76:39:e1:bd:37:
4c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:31:29:41:00:4F:A4:B2:8D:1F:3A:E8:2B:3E:B8:D9:CB:23:E9:2D
X509v3 Authority Key Identifier:
keyid:AB:9F:84:C6:A4:8D:5C:6D:FE:64:14:98:73:B1:48:D1:12:0B:00:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5-ExqSNXG3-ZBSYc7FI0RILAJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/KjEpQQBPpLKNHzroKz642csj6S0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/36177f-7cd8-4bd3-8689-213d64beff71/1/q5-ExqSNXG3-ZBSYc7FI0RILAJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.100.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:e9:04:48:00:ae:32:7e:b2:ec:3f:0e:fe:7c:f0:8e:62:15:
c7:b7:9f:6e:cd:05:9e:17:17:42:60:81:f3:f2:96:e4:67:2d:
0a:9c:1a:cc:eb:d6:ba:0f:cc:d4:56:63:f2:c6:fe:e4:32:22:
e5:cf:98:1b:56:f7:5e:39:9b:c0:22:b2:b2:5a:dd:8d:56:23:
65:e1:ac:10:10:97:e1:d1:99:72:68:19:f5:8d:cf:23:91:5d:
55:7d:3b:4d:ea:5c:06:86:35:72:81:64:34:7b:0d:14:3b:9e:
2d:cf:d1:e4:e5:f1:5b:90:01:f2:ac:2c:30:0a:a7:d1:46:27:
e1:93:43:1b:66:a9:a2:00:bd:50:f4:a2:9f:58:b1:32:cc:89:
06:ea:05:88:55:2a:14:b9:f9:2f:83:8d:40:6a:7d:8d:7b:71:
be:a7:6c:4c:cb:b6:8a:eb:79:36:ac:f3:c6:a1:85:b6:fc:cb:
79:4d:e6:d6:bc:b3:98:4d:5f:7f:ec:55:96:71:72:6e:24:69:
0a:e5:9d:36:3c:80:fe:9f:b2:ee:a2:ae:d6:ba:2c:1b:63:a7:
bb:d4:f7:41:86:36:aa:83:59:29:f0:25:be:90:05:03:12:88:
a3:20:56:1d:20:22:55:dc:65:a8:89:ad:c3:18:82:7a:2b:f4:
10:c6:d0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:00 2024 by rpki-client on console-ams.rpki-client.org