Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/kwYrrMuVSY-s36Ctxa7rrHABanY.roa
File: kwYrrMuVSY-s36Ctxa7rrHABanY.roa (raw, json)
Hash identifier: q0hXKPWd7GHTGzG2RrmQNwhEJ45gIdGgGYB8iYSqKhA=
Subject key identifier: 93:06:2B:AC:CB:95:49:8F:AC:DF:A0:AD:C5:AE:EB:AC:70:01:6A:76
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 01875303DAD1A1966AF848F587D1EE5F31E6
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/kwYrrMuVSY-s36Ctxa7rrHABanY.roa
Signing time: Wed 05 Apr 2023 20:02:54 +0000
ROA not before: Wed 05 Apr 2023 20:02:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34465
IP address blocks: 185.188.28.0/24 maxlen: 24
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:bdee::/48 maxlen: 48
2a12:8fc6:efdf::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6:ae44::/48 maxlen: 48
2a12:8fc6:bab0::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:ee01::/48 maxlen: 48
2a12:8fc6:be01::/48 maxlen: 48
2a12:8fc6:ace3::/48 maxlen: 48
2a12:8fc6:eaca::/48 maxlen: 48
2a12:8fc6:dbaa::/48 maxlen: 48
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:aa00::/48 maxlen: 48
2a12:8fc6:fae0::/48 maxlen: 48
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:daa0::/48 maxlen: 48
2a12:8fc6:ca00::/48 maxlen: 48
2a12:8fc6:ae00::/48 maxlen: 48
2a12:8fc6:dae0::/48 maxlen: 48
2a12:8fc6:caa0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Aug 2023 09:08:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:53:03:da:d1:a1:96:6a:f8:48:f5:87:d1:ee:5f:31:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Apr 5 20:02:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93062baccb95498facdfa0adc5aeebac70016a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a7:f4:ae:89:d6:20:c4:62:c6:cd:ca:34:17:
63:be:75:22:af:b7:29:d3:9a:23:ce:e7:f3:aa:c3:
ca:93:66:4e:c1:ff:bb:5b:6f:cc:13:43:84:f1:f6:
4c:ad:89:86:ed:0b:91:9a:2e:5d:1a:96:94:49:fc:
6e:68:af:b3:10:7e:3e:27:d7:5f:ad:90:00:94:05:
ab:9a:9a:6f:41:b9:88:73:a1:50:e4:59:62:48:9b:
b4:89:12:31:94:26:ee:6b:b9:0c:c7:52:00:67:88:
f9:ed:9c:5c:12:fd:00:4e:8a:b4:d8:cc:10:6d:34:
d3:31:e2:5b:4b:74:62:47:05:48:8f:08:86:73:6d:
93:3b:57:7d:59:f9:b3:1a:a9:63:86:8c:59:0d:66:
23:11:06:35:0d:f0:e4:40:32:31:f4:8c:cb:cb:ea:
59:66:88:72:fa:ea:ad:ff:63:38:a6:dd:51:4a:f9:
ec:60:29:7e:86:46:ef:9f:77:7c:5d:04:14:c0:95:
07:1f:02:69:e3:f5:68:12:45:51:7b:b5:fb:56:4a:
74:25:90:ae:05:3c:fb:7f:97:e1:b8:e4:b6:17:e1:
eb:7f:f7:2b:26:ee:6d:d0:79:d8:28:0c:8e:8d:a4:
18:4d:07:83:70:e0:09:c7:a1:0e:0e:e5:68:ce:a2:
89:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:06:2B:AC:CB:95:49:8F:AC:DF:A0:AD:C5:AE:EB:AC:70:01:6A:76
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/kwYrrMuVSY-s36Ctxa7rrHABanY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.28.0/24
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
78:33:68:47:33:b3:e2:b2:6a:6b:84:39:69:e4:ed:cb:f8:53:
3f:dc:27:d5:37:65:9e:34:bd:8a:e5:1f:ac:11:54:18:0c:76:
6c:97:be:b2:9b:e4:66:3d:7c:64:1f:2d:a6:5a:d6:4f:c4:49:
2b:33:6e:9d:8c:8a:78:61:0f:01:ea:6d:aa:48:69:12:80:52:
ec:2e:53:74:1f:88:99:58:56:d5:83:a1:75:9b:86:9f:8e:2e:
26:46:e6:b0:fb:e3:d7:33:7a:9e:9f:7b:70:3b:9f:6c:5b:42:
e0:f4:8f:ab:5f:78:2d:99:f8:2b:12:7b:92:8f:1b:c8:18:b2:
d7:95:38:1f:07:96:57:e5:b0:c8:37:31:f9:8d:aa:30:d4:34:
3d:79:ee:e1:86:a1:c0:06:14:d5:cb:34:de:69:e2:b2:78:d3:
17:91:13:f2:d2:af:bc:de:8a:ae:54:92:aa:d9:db:00:01:ac:
eb:41:74:d2:d1:7f:c7:1e:1b:67:5e:a8:12:18:20:ba:8c:c6:
06:81:ab:09:13:39:75:1d:c2:e6:a9:6b:ef:db:9d:7c:96:5f:
ec:b7:ac:4b:53:9f:7b:a1:68:f8:09:09:91:41:7a:55:f6:af:
f0:58:56:8d:33:c3:10:c4:3a:8a:94:90:81:cb:9c:1b:0f:ff:
f2:1a:f3:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:04 2024 by rpki-client on console-ams.rpki-client.org