Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/083198-49a7-4864-a46d-6375e1645604/1/KR32Mz0CHTjLYjXYDbfW6I1WiEc.roa
File: KR32Mz0CHTjLYjXYDbfW6I1WiEc.roa (raw, json)
Hash identifier: /+Qbq3kKlyc0iNTB8ds9X8dnYkyNk+VPso+I0wmyQZE=
Subject key identifier: 29:1D:F6:33:3D:02:1D:38:CB:62:35:D8:0D:B7:D6:E8:8D:56:88:47
Certificate issuer: /CN=57b89f5cc78219ea1273f9f53c5b9e33bc5dbeb5
Certificate serial: 018D3089C485D9C087AD87CD76EAC012FE47
Authority key identifier: 57:B8:9F:5C:C7:82:19:EA:12:73:F9:F5:3C:5B:9E:33:BC:5D:BE:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7ifXMeCGeoSc_n1PFueM7xdvrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/083198-49a7-4864-a46d-6375e1645604/1/KR32Mz0CHTjLYjXYDbfW6I1WiEc.roa
Signing time: Mon 22 Jan 2024 09:39:11 +0000
ROA not before: Mon 22 Jan 2024 09:39:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213296
IP address blocks: 80.75.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 16:34:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:89:c4:85:d9:c0:87:ad:87:cd:76:ea:c0:12:fe:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b89f5cc78219ea1273f9f53c5b9e33bc5dbeb5
Validity
Not Before: Jan 22 09:39:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=291df6333d021d38cb6235d80db7d6e88d568847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e8:f2:ba:ec:b6:90:e1:65:e2:4d:a9:68:66:
9b:0e:84:8f:f2:7e:b7:e7:78:aa:5e:fb:c2:5f:18:
d7:56:d2:91:61:1a:35:2a:11:9c:f5:6a:4e:2d:b5:
67:76:23:a9:2a:d8:9a:b3:5d:78:3b:b1:c3:b7:2b:
c2:1c:bb:9b:30:18:df:35:71:d2:cb:70:4f:33:11:
84:4d:63:3e:ad:a3:06:e3:cb:dd:8f:23:82:ea:5a:
f8:6f:b5:9c:54:09:7e:60:c4:09:07:a3:38:d3:1c:
ae:6c:f7:7f:5e:3a:f6:6b:2e:b5:06:56:c6:84:de:
1f:a0:02:32:ff:da:e3:bc:61:20:ae:5a:68:6b:4d:
ee:93:6e:4b:d2:1e:76:6c:89:4f:e5:72:31:90:cf:
59:aa:47:33:a4:01:8a:a2:04:94:48:74:5d:92:76:
ef:29:0a:ef:a6:82:0a:85:8c:ec:0a:e7:e7:ce:17:
e2:8e:0b:eb:09:fd:64:6e:e5:9a:26:77:9d:bf:94:
dc:dc:45:a4:27:10:0e:49:7f:17:25:2e:32:35:e8:
81:c8:6f:9c:a5:3b:73:9c:a0:c1:f3:08:47:37:3f:
01:0d:14:7b:e6:a3:b9:5e:23:46:94:a7:e5:0c:c4:
0a:40:69:98:35:06:a6:52:7b:9d:fb:f1:8d:fa:93:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1D:F6:33:3D:02:1D:38:CB:62:35:D8:0D:B7:D6:E8:8D:56:88:47
X509v3 Authority Key Identifier:
keyid:57:B8:9F:5C:C7:82:19:EA:12:73:F9:F5:3C:5B:9E:33:BC:5D:BE:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7ifXMeCGeoSc_n1PFueM7xdvrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/083198-49a7-4864-a46d-6375e1645604/1/KR32Mz0CHTjLYjXYDbfW6I1WiEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/083198-49a7-4864-a46d-6375e1645604/1/V7ifXMeCGeoSc_n1PFueM7xdvrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.215.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:4e:eb:d6:e8:d4:b6:6d:ac:e6:ce:ae:a3:00:e4:41:9b:5f:
4c:c7:16:bc:9f:dc:a3:f3:83:5d:56:36:85:bc:f4:bf:0a:b2:
6a:11:ee:79:09:d6:80:42:7f:5c:45:9e:89:52:01:85:31:b8:
b9:10:6b:73:6f:54:0b:f6:9b:3c:66:d0:29:4c:7b:17:32:63:
03:53:33:63:cf:c5:61:64:54:17:cc:5a:48:36:d8:1c:00:8d:
d3:30:7a:b2:18:c9:37:ab:ee:59:1b:87:86:3f:52:0e:43:3e:
51:70:62:7d:0a:36:85:c9:90:6d:52:7d:af:2f:85:bb:52:8b:
0c:a0:7b:91:c1:00:d4:bc:12:b0:2b:db:6f:13:99:4f:33:92:
9b:af:5d:c2:0e:a3:66:b2:1d:a8:9a:ec:28:db:ce:a7:d5:fb:
ee:be:5d:cb:c5:f5:59:2e:aa:40:c0:c9:65:4c:c3:8a:36:33:
ab:2c:4c:8f:4d:c0:02:e8:8c:47:20:95:c0:55:88:91:d9:98:
f4:a7:a8:01:fe:de:f8:77:db:3b:7f:03:26:f7:f0:3c:49:c6:
7e:fa:20:b7:a5:c2:42:59:9d:5f:f5:e7:b3:d9:94:70:08:fc:
f9:19:8f:8f:a2:f2:25:39:e9:d3:4e:3a:eb:aa:af:89:c1:da:
8f:92:65:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 21:43:20 2024 by rpki-client on console-fra.rpki-client.org