Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/Kunp2HzZYlNZ_WovFS-e108RfYE.roa
File: Kunp2HzZYlNZ_WovFS-e108RfYE.roa (raw, json)
Hash identifier: CGvukNK46TzdMyDMlR1+0NTrrcPaCHtor/OFGuoZl8Q=
Subject key identifier: 2A:E9:E9:D8:7C:D9:62:53:59:FD:6A:2F:15:2F:9E:D7:4F:11:7D:81
Certificate issuer: /CN=292c5d372319fa6175e56ca79883d12b0c6e38ec
Certificate serial: 018571153C60B337C347071573FDEA5E4F55
Authority key identifier: 29:2C:5D:37:23:19:FA:61:75:E5:6C:A7:98:83:D1:2B:0C:6E:38:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KSxdNyMZ-mF15WynmIPRKwxuOOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/Kunp2HzZYlNZ_WovFS-e108RfYE.roa
Signing time: Mon 02 Jan 2023 06:04:55 +0000
ROA not before: Mon 02 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.81.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 07:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:3c:60:b3:37:c3:47:07:15:73:fd:ea:5e:4f:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=292c5d372319fa6175e56ca79883d12b0c6e38ec
Validity
Not Before: Jan 2 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ae9e9d87cd9625359fd6a2f152f9ed74f117d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:a8:42:86:fa:62:cd:c7:ca:d7:c7:7c:27:
64:3f:3f:fe:e1:e1:89:4d:f3:65:fe:76:1f:c5:08:
62:d9:d3:db:94:28:3c:7d:8d:3d:20:7a:a7:b9:5e:
45:49:da:fc:1e:e5:cd:bb:37:0d:46:97:f4:18:90:
58:02:42:4e:08:dd:b8:44:3a:a6:ec:c4:ea:03:69:
11:16:27:51:d6:6c:b9:9f:f1:3e:4b:1b:b1:b9:41:
78:9d:3e:a1:3d:aa:8d:c1:11:0c:a4:b3:4b:fa:d4:
ad:c2:47:26:95:2f:f9:fe:b2:aa:49:36:d1:4f:bb:
92:09:ed:94:86:8b:cf:60:29:ed:70:74:ea:9b:eb:
1d:03:17:2c:61:99:f9:b3:59:d8:7d:4a:a4:a0:ad:
36:95:dd:e6:c2:ae:35:4a:05:8f:9b:74:ae:85:24:
6c:a0:e3:4c:4a:4b:92:70:8b:63:78:91:ab:03:28:
d8:67:ec:f5:db:2a:9e:cb:45:5e:b5:c5:96:43:96:
44:3c:94:bc:23:3f:25:9e:55:2c:2b:09:47:31:28:
ec:05:88:a8:9c:e0:01:ce:3a:75:ee:d1:69:e7:df:
7e:06:66:3c:3f:2b:ba:53:7a:ba:77:d8:9c:55:f1:
6d:6a:68:cf:ca:e4:92:dc:78:ca:07:6f:a0:7b:40:
c1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E9:E9:D8:7C:D9:62:53:59:FD:6A:2F:15:2F:9E:D7:4F:11:7D:81
X509v3 Authority Key Identifier:
keyid:29:2C:5D:37:23:19:FA:61:75:E5:6C:A7:98:83:D1:2B:0C:6E:38:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KSxdNyMZ-mF15WynmIPRKwxuOOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/Kunp2HzZYlNZ_WovFS-e108RfYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e3f562-5929-44ad-9cc9-d3134c66bf6c/1/KSxdNyMZ-mF15WynmIPRKwxuOOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.69.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:be:61:4e:64:af:c6:47:89:86:6e:df:08:72:c8:cd:73:c4:
7b:f9:52:c5:eb:d0:78:c4:eb:d5:9a:c2:f7:4c:1c:4a:e7:c2:
30:3c:61:ec:23:92:cb:3e:6c:58:03:05:b8:c2:96:a0:11:d2:
25:f4:61:33:44:53:0b:8f:1a:31:b6:ec:05:0c:49:18:80:92:
ad:20:b2:db:37:56:53:99:a7:f9:6f:77:e5:c2:0e:30:6b:28:
36:b3:a9:58:8b:c6:7d:e4:bf:cc:89:70:03:85:e1:94:54:e8:
53:d8:54:3f:c9:f5:4c:72:e8:6e:26:d7:c3:7a:0f:da:85:7b:
ee:bb:d3:57:10:6e:c6:aa:6e:16:20:8e:c6:d6:72:b0:aa:86:
ef:85:e8:a4:8a:f9:31:08:0f:1a:8f:d2:96:9b:8b:db:a0:f2:
bb:cb:22:5d:3a:0b:61:5c:42:d2:30:2d:94:5d:6d:b5:a4:8a:
09:55:13:d6:22:52:a8:30:5a:ba:1d:e9:a7:37:6a:ca:d8:5d:
a4:21:2d:61:18:16:1f:48:08:b0:ce:ff:4e:2e:1d:2b:2b:7d:
78:ea:d9:7c:fe:a6:d3:4e:8d:c0:79:7a:38:ef:d4:0e:42:51:
00:73:f4:06:68:c7:9c:16:42:bd:fe:75:38:50:1b:d0:12:8b:
a9:29:f9:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:17 2024 by rpki-client on console-fra.rpki-client.org