Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/KgyZwd6T6XUNOgUKs8nRW7wVOgM.roa
File: KgyZwd6T6XUNOgUKs8nRW7wVOgM.roa (raw, json)
Hash identifier: +tUwEiwxYs+8SafL6PR8QcGAPTSA0ZA9MN8iHBuik0Y=
Subject key identifier: 2A:0C:99:C1:DE:93:E9:75:0D:3A:05:0A:B3:C9:D1:5B:BC:15:3A:03
Certificate issuer: /CN=98db3dcf25d2c22c5b997d157a7cefac4d45f762
Certificate serial: 0186C26E4AF1E088DE9BCD2BAC3A6441B87A
Authority key identifier: 98:DB:3D:CF:25:D2:C2:2C:5B:99:7D:15:7A:7C:EF:AC:4D:45:F7:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mNs9zyXSwixbmX0VenzvrE1F92I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/KgyZwd6T6XUNOgUKs8nRW7wVOgM.roa
Signing time: Wed 08 Mar 2023 18:14:13 +0000
ROA not before: Wed 08 Mar 2023 18:14:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 185.188.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 08:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c2:6e:4a:f1:e0:88:de:9b:cd:2b:ac:3a:64:41:b8:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98db3dcf25d2c22c5b997d157a7cefac4d45f762
Validity
Not Before: Mar 8 18:14:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a0c99c1de93e9750d3a050ab3c9d15bbc153a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:cf:b1:57:e6:c3:c4:4e:74:de:25:e1:ca:
2b:c0:93:e4:04:5f:38:28:14:e6:a8:e7:11:33:54:
b3:f4:9c:0e:fb:36:3e:e9:97:7c:fd:47:34:a9:3b:
12:d6:5c:8c:06:1e:a3:e0:e2:f9:b1:85:70:e0:3b:
a8:50:4c:34:ab:2c:c1:48:20:05:70:29:59:d0:3f:
8d:34:58:77:92:ff:2b:a7:c8:87:8a:df:32:26:36:
f9:5d:44:19:50:fe:21:0f:01:63:81:ba:9b:45:c9:
0e:72:60:4b:07:d0:ad:57:b7:e3:69:34:64:be:7b:
cc:8c:28:1f:ba:74:a7:8b:58:08:89:27:84:a6:ad:
c4:20:42:20:aa:d3:ec:bb:21:df:89:c7:40:07:73:
ef:22:43:9c:e3:51:1b:e6:57:7f:3f:b9:00:c6:e1:
2c:f6:fb:ca:a7:b7:1d:2c:8f:e3:3c:69:2c:0c:a0:
47:6e:a6:92:35:36:d9:d7:48:89:7c:1f:af:ea:72:
e4:c5:28:5b:36:91:1e:f0:ef:61:7d:1a:a4:5c:c0:
bb:0d:2a:eb:ea:5b:ce:41:4f:86:83:c0:8e:c2:51:
30:84:bc:46:bf:c5:11:24:98:ce:75:47:73:4b:bb:
95:29:b0:14:26:6f:f5:76:6f:81:ff:54:c9:d9:2f:
f9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0C:99:C1:DE:93:E9:75:0D:3A:05:0A:B3:C9:D1:5B:BC:15:3A:03
X509v3 Authority Key Identifier:
keyid:98:DB:3D:CF:25:D2:C2:2C:5B:99:7D:15:7A:7C:EF:AC:4D:45:F7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNs9zyXSwixbmX0VenzvrE1F92I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/KgyZwd6T6XUNOgUKs8nRW7wVOgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/mNs9zyXSwixbmX0VenzvrE1F92I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.29.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:04:3f:64:eb:46:a5:0e:82:a6:e4:a7:35:df:c8:3b:49:cf:
f2:b0:93:cc:b4:3e:e2:28:3b:bd:3d:17:43:67:e2:47:d2:a2:
42:d6:12:76:16:e1:c4:94:78:85:cc:d8:b1:5a:03:8e:2a:ac:
ce:0c:4e:3e:18:14:6d:28:1e:7f:92:ea:eb:63:e3:53:18:98:
b0:8d:18:51:6d:b9:b6:30:b8:c8:5d:3f:ec:44:af:83:08:57:
5f:71:59:74:c1:ae:03:08:8b:60:c7:c4:b1:40:60:cd:10:ba:
29:4f:59:5c:60:53:c7:32:87:29:fb:d6:87:eb:6c:e2:3c:ad:
f2:26:d1:fd:c8:6c:7b:50:91:66:64:e1:95:32:7d:7e:ab:2e:
ef:9b:af:9c:e5:3a:da:f7:34:4c:86:17:dd:3f:6a:c0:b7:5d:
28:75:45:3a:71:e3:37:16:fe:9f:53:e9:5d:2a:25:69:9e:a1:
f6:9d:9d:0c:0a:4c:25:59:01:77:71:d6:d4:1d:4d:ef:c3:88:
25:b4:f3:63:0e:2b:2f:c4:6c:6c:fb:6a:d1:73:c7:a8:f2:08:
6e:7e:74:e3:b5:32:0f:59:0a:47:27:34:14:6a:53:99:37:18:
e0:74:99:71:e7:81:12:74:37:b7:31:05:91:ed:c1:60:3a:17:
c6:21:e7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:27 2024 by rpki-client on console-fra.rpki-client.org