Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/KvPWipZJfaIHm0zOsEONRBEN47I.roa
File: KvPWipZJfaIHm0zOsEONRBEN47I.roa (raw, json)
Hash identifier: y9UItxcujdo4bz6gs2pu0eeDyqIh+U/PWvqMcNNiH/U=
Subject key identifier: 2A:F3:D6:8A:96:49:7D:A2:07:9B:4C:CE:B0:43:8D:44:11:0D:E3:B2
Certificate issuer: /CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Certificate serial: 018572F12B2C1F65BA4469A2FD877DA795A2
Authority key identifier: 7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/KvPWipZJfaIHm0zOsEONRBEN47I.roa
Signing time: Mon 02 Jan 2023 14:44:45 +0000
ROA not before: Mon 02 Jan 2023 14:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43023
IP address blocks: 185.187.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:2b:2c:1f:65:ba:44:69:a2:fd:87:7d:a7:95:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d2a01224b1da86480cfecbcb6c52df9812968e8
Validity
Not Before: Jan 2 14:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2af3d68a96497da2079b4cceb0438d44110de3b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7c:d4:cf:76:83:ff:f5:48:4a:52:58:87:ea:
4c:a1:25:b0:82:16:19:74:65:c2:2c:d0:cf:9a:e3:
7b:01:8d:8e:6a:90:f6:28:dc:2f:69:18:a7:6a:8a:
9f:4c:fc:4f:b9:36:f5:aa:d2:54:0d:e9:bc:af:00:
23:a8:79:93:21:fb:12:cc:bb:d4:28:f1:6f:cf:b0:
67:05:d7:8d:19:4c:43:88:ba:19:8c:b2:c5:0a:6f:
ed:db:62:4a:a5:87:f6:1c:f4:a3:4a:c5:cf:dd:92:
f6:d3:e8:d5:27:69:1a:7b:2c:7a:dc:b9:b7:bb:18:
aa:8a:c3:1d:67:5d:df:d7:4b:cc:b6:d7:08:ea:97:
a6:61:50:42:8b:2b:fc:73:c9:ce:51:29:72:e8:6c:
17:89:70:f2:85:35:db:09:05:30:19:c3:d2:d3:a1:
37:63:0f:43:f7:c7:65:27:22:f6:d1:8a:e2:4f:02:
4b:80:83:8c:72:3a:18:01:ee:d5:a4:4c:e3:42:64:
ee:fa:c7:08:c3:3b:4e:f5:02:52:cd:d4:5e:c1:ac:
42:0b:dd:cf:d9:a0:b1:1e:1f:24:6f:3c:9d:02:34:
da:59:5b:5f:45:5d:ed:41:91:cf:67:55:4d:fe:68:
e3:a0:a9:11:e1:cc:c3:9d:4b:f7:c2:f1:8e:5c:8e:
2a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F3:D6:8A:96:49:7D:A2:07:9B:4C:CE:B0:43:8D:44:11:0D:E3:B2
X509v3 Authority Key Identifier:
keyid:7D:2A:01:22:4B:1D:A8:64:80:CF:EC:BC:B6:C5:2D:F9:81:29:68:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fSoBIksdqGSAz-y8tsUt-YEpaOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/KvPWipZJfaIHm0zOsEONRBEN47I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/c41f77-b6a2-4494-a074-4fae84fa158e/1/fSoBIksdqGSAz-y8tsUt-YEpaOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.138.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:30:40:c8:8a:c0:b9:cc:94:ca:08:77:10:aa:b3:f4:a1:a6:
4f:18:ed:db:2d:f0:63:4b:12:cf:9f:2b:13:3f:5d:6c:d7:3e:
07:36:1d:0c:d2:ff:ac:4d:8b:76:d3:14:c7:0a:e5:8f:09:fb:
1a:b1:cf:64:fc:33:a2:40:32:71:e5:73:3e:51:e1:85:3f:3d:
2a:4d:4e:9d:1f:9b:cc:d5:89:17:cf:b0:bc:b4:52:49:6e:c0:
c8:78:18:ce:2a:a6:36:b5:1b:fd:44:e6:33:9f:e0:3e:c9:27:
c6:71:aa:77:d2:4a:42:0c:6e:30:aa:70:b2:0b:c9:f5:54:d4:
fd:e7:da:0d:6d:61:8b:80:92:e1:bc:58:72:cb:37:31:0e:2a:
89:84:e2:b9:7c:4a:98:ee:bc:c8:b5:73:9c:e1:d7:4d:79:e3:
37:15:c3:0c:27:20:35:dd:6c:2e:f4:d5:66:4a:85:97:e4:80:
d0:38:28:ee:d9:8f:b3:82:d6:71:a2:8b:80:8a:65:8f:2e:05:
a4:db:8c:7a:a6:f0:22:1d:8c:4a:79:f7:3e:91:26:8d:d4:76:
6f:86:00:28:87:b5:4d:e2:c8:ec:aa:3d:3e:f8:2b:22:d9:8a:
e8:84:eb:85:24:16:91:09:32:64:40:34:d8:bc:b9:fa:af:61:
3d:9e:f4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:37 2024 by rpki-client on console-fra.rpki-client.org