Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KwkAAIzHxVvKVoAOdW8pzXwNvgY.roa
File: KwkAAIzHxVvKVoAOdW8pzXwNvgY.roa (raw, json)
Hash identifier: cWZgZGUD0vbz1Unea48Qprbpjr0vk28S8WJnOGQ/1QQ=
Subject key identifier: 2B:09:00:00:8C:C7:C5:5B:CA:56:80:0E:75:6F:29:CD:7C:0D:BE:06
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018E75809634977F38F7819FF27745DDC081
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KwkAAIzHxVvKVoAOdW8pzXwNvgY.roa
Signing time: Mon 25 Mar 2024 12:05:45 +0000
ROA not before: Mon 25 Mar 2024 12:05:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 08:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:80:96:34:97:7f:38:f7:81:9f:f2:77:45:dd:c0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Mar 25 12:05:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b0900008cc7c55bca56800e756f29cd7c0dbe06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:82:27:f8:e0:2f:fb:a9:25:53:13:c9:1b:a8:
60:06:62:0c:d0:b0:78:3e:9b:9d:63:2f:76:4d:c9:
c8:33:e5:34:9d:32:88:b2:74:be:dc:35:f1:cf:f3:
fb:a4:3c:d4:67:52:33:2e:d6:2d:65:ca:9a:8a:de:
53:4e:c7:c3:60:10:35:2f:47:a1:84:6f:47:11:1a:
da:b4:66:df:83:f1:41:93:a6:9a:5b:e1:bb:54:e3:
5f:13:ad:b3:3a:0d:dc:d1:06:d4:04:68:61:12:52:
ed:18:57:a9:61:a6:88:18:21:c6:b4:eb:df:4d:7b:
b1:f2:ce:c4:1b:b9:89:c2:99:4d:ff:a6:2b:b7:41:
6f:ff:f6:fe:d2:84:33:c1:80:87:27:55:bc:23:a6:
37:84:68:ce:29:91:92:81:dc:c2:63:a0:ac:ab:29:
14:fe:a6:e3:e8:1f:6c:57:55:4c:52:28:bd:57:5b:
b5:d2:c0:c1:19:09:f7:28:0f:20:db:c8:6c:85:77:
d7:59:36:e5:8f:ec:65:e4:b2:ff:5d:c8:f3:04:c1:
e2:39:e2:1b:db:73:83:1c:b8:5d:ce:6e:c4:75:99:
81:bc:14:9e:ce:21:7e:ae:98:ce:58:51:cb:3b:ba:
44:65:67:91:1b:7f:24:54:71:62:ec:81:25:14:a6:
dd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:09:00:00:8C:C7:C5:5B:CA:56:80:0E:75:6F:29:CD:7C:0D:BE:06
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/KwkAAIzHxVvKVoAOdW8pzXwNvgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.6.0/24
Signature Algorithm: sha256WithRSAEncryption
50:16:d6:1e:ef:c5:ab:0d:c1:88:03:e6:a0:b2:e1:73:4f:ed:
a6:03:66:4b:b0:3e:ca:c7:e6:b8:52:4a:91:bb:3a:9c:cc:d0:
5d:b8:34:65:db:c3:74:9f:aa:d8:a0:ca:00:03:75:18:3e:ae:
bf:fa:db:22:f3:bb:37:ee:65:ba:ad:cc:73:ef:13:c2:07:66:
59:a5:90:10:68:62:32:4a:20:74:63:b9:67:f9:9c:c7:f4:31:
68:da:5d:b8:2f:83:11:a9:94:59:42:5f:07:b2:a9:b7:05:e8:
fd:d9:e0:66:17:7e:33:57:17:9c:51:95:b4:ea:45:22:e7:1d:
56:a6:ea:df:b2:e3:ca:82:0d:8b:e6:f9:bb:21:30:e0:2e:05:
a8:50:80:1d:31:cf:48:2b:91:0e:41:b7:c8:9e:a5:ec:bc:29:
0d:fe:8f:5b:cb:17:48:24:3c:5f:4a:98:2d:d2:87:5e:6d:7a:
11:aa:1f:de:5b:78:76:fb:c5:89:98:15:20:d7:8b:b8:a8:2f:
98:c4:c8:df:ca:c4:ae:02:a8:f6:cc:ed:2b:c6:c6:40:ae:75:
7b:ee:65:d7:85:89:fe:9a:7d:cb:19:79:79:15:a3:cf:d3:55:
24:9c:bf:5f:ad:23:44:2a:20:69:5c:6a:d5:b7:3a:d5:00:db:
80:00:6a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org