Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/KMjrVhPS70LuikPN3_q_KcMVNak.roa
File: KMjrVhPS70LuikPN3_q_KcMVNak.roa (raw, json)
Hash identifier: 0XCOkEa89RmGtwRa3eagGv4j350r+OoPkO4aeFPTypM=
Subject key identifier: 28:C8:EB:56:13:D2:EF:42:EE:8A:43:CD:DF:FA:BF:29:C3:15:35:A9
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 0188F782AF506FC2AF1AE0005E4649435F74
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/KMjrVhPS70LuikPN3_q_KcMVNak.roa
Signing time: Mon 26 Jun 2023 11:41:56 +0000
ROA not before: Mon 26 Jun 2023 11:41:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198121
IP address blocks: 193.224.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:82:af:50:6f:c2:af:1a:e0:00:5e:46:49:43:5f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jun 26 11:41:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28c8eb5613d2ef42ee8a43cddffabf29c31535a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:05:d0:9d:be:6f:26:87:f4:4d:93:a7:ac:
3e:5a:2f:15:51:92:ac:38:cb:49:05:b9:74:0a:b1:
29:4b:bc:22:24:61:5f:b0:c0:49:7b:aa:6e:0c:79:
57:4c:4a:a2:b2:e4:cd:a8:8d:37:f6:48:33:6f:3f:
dd:58:dc:98:04:67:b9:63:dd:aa:63:7a:77:aa:ac:
78:7e:ca:0c:25:2b:19:cc:f1:af:42:47:a8:dd:a9:
bf:b6:b0:09:c0:92:f5:fd:c9:96:1f:68:12:0b:55:
47:4f:c0:3f:8f:b9:86:2a:e0:be:32:a0:66:5c:6b:
90:0a:68:cd:1c:08:7e:1d:e7:45:25:a4:52:c1:8a:
a0:37:8b:9d:b7:f7:ec:8c:50:4e:42:73:bd:c0:e5:
7b:b0:99:88:62:5c:8d:89:33:8d:90:69:7d:99:12:
bd:6e:ce:c3:89:ed:ae:6e:04:56:11:90:f4:52:48:
bc:57:44:08:1a:78:3a:ca:0b:4b:ef:48:89:53:c9:
c1:0d:59:0f:5d:29:b0:4b:a8:e0:2a:ad:b5:0a:88:
31:17:79:4a:29:af:12:f4:a0:8f:ae:ca:c8:ea:11:
78:a9:4e:88:97:53:0c:0e:0f:48:a6:10:cb:1f:e1:
c6:d0:65:f4:35:84:ab:57:1c:b9:90:23:99:2d:c0:
73:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C8:EB:56:13:D2:EF:42:EE:8A:43:CD:DF:FA:BF:29:C3:15:35:A9
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/KMjrVhPS70LuikPN3_q_KcMVNak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.224.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:26:41:2c:90:c9:03:91:4e:8c:ef:50:c9:17:f5:cd:0f:53:
1b:8f:07:03:78:56:dd:a3:11:77:98:55:2d:55:cd:aa:1f:71:
c4:7b:40:0f:01:a5:bc:70:ce:1b:35:44:71:09:37:49:97:8b:
49:81:6d:d2:55:fe:da:f4:fe:a9:1d:3a:5d:ab:25:99:4a:f2:
4d:d7:49:90:a3:2f:b6:ab:a1:b4:a3:2f:90:fd:87:8e:6f:76:
8c:84:a6:15:7e:1b:12:c5:2c:a3:97:b6:d0:87:c6:b6:20:e9:
a8:1b:69:58:11:6e:a7:1c:48:ee:1b:9e:28:32:15:1d:09:5f:
dd:b0:50:4e:ab:fd:f7:18:5b:79:3f:8a:95:7b:b0:9d:e2:b7:
be:bd:c2:1c:a1:3e:e0:f6:1e:68:b3:16:0d:ec:9c:86:6a:00:
2e:58:9a:79:d3:8b:69:82:06:b3:6b:9b:2c:d0:a0:7d:00:8f:
de:c6:bf:59:5b:df:6f:1b:83:64:92:92:0f:ed:63:80:5d:2d:
5c:2b:4f:24:1e:89:0a:5c:f9:8a:89:63:1f:da:3a:93:f1:75:
d0:01:dc:59:41:ea:a2:bf:9a:38:d7:5d:50:2e:b6:5b:9a:18:
19:54:09:08:f7:7a:62:c7:50:5d:0d:b1:8c:7b:81:11:6d:ad:
7c:65:6e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org