Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/064e35-8814-43f6-b48b-a26de313b34d/1/kNaa6tfwo7c8p6uKWfvWDM_S2q4.roa
File: kNaa6tfwo7c8p6uKWfvWDM_S2q4.roa (raw, json)
Hash identifier: iwsOpQmr0hXGrcSD9KzyA52FNau9piUawF9blmxdudQ=
Subject key identifier: 90:D6:9A:EA:D7:F0:A3:B7:3C:A7:AB:8A:59:FB:D6:0C:CF:D2:DA:AE
Certificate issuer: /CN=2d86956ccd7e3abb4291dd54dbd8b4342bf957cc
Certificate serial: 018847391A87E6E29EDA3A17160EA7D51270
Authority key identifier: 2D:86:95:6C:CD:7E:3A:BB:42:91:DD:54:DB:D8:B4:34:2B:F9:57:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LYaVbM1-OrtCkd1U29i0NCv5V8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/064e35-8814-43f6-b48b-a26de313b34d/1/kNaa6tfwo7c8p6uKWfvWDM_S2q4.roa
Signing time: Tue 23 May 2023 06:08:24 +0000
ROA not before: Tue 23 May 2023 06:08:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41714
IP address blocks: 185.163.148.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 May 2023 07:23:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:47:39:1a:87:e6:e2:9e:da:3a:17:16:0e:a7:d5:12:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d86956ccd7e3abb4291dd54dbd8b4342bf957cc
Validity
Not Before: May 23 06:08:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90d69aead7f0a3b73ca7ab8a59fbd60ccfd2daae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:01:a3:11:c7:e5:8a:66:83:03:a4:60:0f:8b:
e1:65:ee:bc:2f:22:ac:b2:66:bb:94:16:58:89:5e:
f5:0a:e3:5e:cd:4b:35:7b:18:23:45:cd:43:2b:e7:
b0:cc:9a:af:96:4e:a0:91:02:8d:1f:9e:8e:bf:a5:
33:83:9b:a3:a6:00:53:e0:3d:86:8f:10:29:c4:df:
e3:2e:51:dc:e4:25:90:17:f0:33:91:19:ff:59:1d:
89:76:61:8d:f8:0d:6d:e8:4e:ea:65:4e:bb:ba:f8:
30:f0:06:32:02:12:fe:49:4b:90:dc:9b:ef:cc:97:
b3:d2:5c:9e:e5:04:e1:15:23:66:d7:5f:57:9e:38:
c9:57:a7:8d:05:0f:92:7e:6c:78:78:43:01:e8:2c:
f1:a7:e5:1f:5d:d3:10:dd:b6:58:40:cd:e1:e8:30:
b2:49:8d:f2:4a:1f:2f:95:6f:2f:67:12:ef:d6:36:
21:ce:ac:be:7a:e9:fd:b7:80:99:07:77:37:3c:e8:
a4:77:a8:f7:d2:ec:f2:a5:a5:75:f0:3f:50:50:00:
4d:af:61:0c:24:67:8b:7e:44:73:61:93:34:da:38:
2b:7c:75:31:54:77:53:7a:16:26:cb:c1:4c:b8:a6:
bf:6e:0e:bb:6d:62:de:37:26:b8:97:9d:06:ca:a6:
10:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D6:9A:EA:D7:F0:A3:B7:3C:A7:AB:8A:59:FB:D6:0C:CF:D2:DA:AE
X509v3 Authority Key Identifier:
keyid:2D:86:95:6C:CD:7E:3A:BB:42:91:DD:54:DB:D8:B4:34:2B:F9:57:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LYaVbM1-OrtCkd1U29i0NCv5V8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/064e35-8814-43f6-b48b-a26de313b34d/1/kNaa6tfwo7c8p6uKWfvWDM_S2q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/064e35-8814-43f6-b48b-a26de313b34d/1/LYaVbM1-OrtCkd1U29i0NCv5V8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.148.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:af:8c:2a:04:94:ce:90:d0:d2:3d:78:1c:2a:af:5b:6b:58:
ab:2a:e9:a7:e6:64:5c:ea:ca:60:00:c5:65:d4:c8:df:70:c9:
4d:c9:52:41:b7:d4:b8:0b:64:d3:57:02:19:9a:22:8b:fb:77:
7b:ee:0b:bd:24:23:25:ee:58:fc:fb:88:41:ec:19:4c:a7:f2:
11:bf:10:d9:ea:a8:0e:3c:18:b1:cb:44:78:b1:06:43:8e:c8:
97:14:97:ac:00:69:95:01:ea:ad:c0:52:16:56:5b:87:68:fa:
db:74:a3:3e:99:de:26:17:7c:39:54:f4:81:52:6b:dd:2f:30:
28:78:6c:09:9b:9f:fa:2e:25:e0:38:ca:98:08:43:69:71:5d:
4a:24:34:a4:1b:6b:d6:e4:ac:30:7a:e0:7f:4f:10:6b:89:75:
5f:6e:2f:de:d8:23:bb:2d:9e:da:b6:5b:e0:67:29:db:48:e5:
49:ad:ba:19:a9:04:92:6d:cd:f6:52:10:8d:8b:32:fe:26:eb:
a7:9e:c3:5b:ff:1c:93:0b:15:41:05:f3:b1:4b:02:5e:7e:32:
56:4f:a0:04:36:8c:29:2b:fe:12:c8:52:e7:af:b7:f0:96:41:
0a:a9:c1:13:d2:bf:c8:1f:82:4d:08:78:7d:98:87:6c:6d:b9:
4d:0d:de:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:02 2024 by rpki-client on console-ams.rpki-client.org