Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/KYHophZaA2akXBWFZGLNSNAcuNM.roa
File: KYHophZaA2akXBWFZGLNSNAcuNM.roa (raw, json)
Hash identifier: F6rr0+MpK9wtSqTz1XTUCX6ufFRAVNWsyfg56bNLV30=
Subject key identifier: 29:81:E8:A6:16:5A:03:66:A4:5C:15:85:64:62:CD:48:D0:1C:B8:D3
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 018E2DC6C4CF938FC5D7A8D0023EFA928984
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/KYHophZaA2akXBWFZGLNSNAcuNM.roa
Signing time: Mon 11 Mar 2024 13:49:44 +0000
ROA not before: Mon 11 Mar 2024 13:49:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.193.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 18:23:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2d:c6:c4:cf:93:8f:c5:d7:a8:d0:02:3e:fa:92:89:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: Mar 11 13:49:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2981e8a6165a0366a45c15856462cd48d01cb8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:2d:fa:a3:41:ab:4d:c5:89:da:cf:e8:34:6a:
98:c8:ae:78:1a:30:54:a1:ce:47:98:53:a0:b3:3f:
cf:e9:3a:6b:a5:37:52:51:db:6f:09:77:72:eb:ed:
fb:f7:94:9f:99:19:51:83:4c:ed:4b:55:2e:35:bc:
45:77:6c:0a:b4:fc:79:ed:90:72:32:fb:16:c6:9b:
60:f8:24:5f:30:01:ea:0d:f5:ee:fb:58:a9:fa:f4:
23:91:f8:a6:1f:9a:06:d2:b9:70:a2:3d:18:4d:c6:
b6:07:d6:d5:81:25:d2:22:61:68:ec:21:db:79:c6:
8e:be:58:a4:96:e3:de:d9:ab:a0:75:32:96:64:e6:
9a:a4:21:de:18:24:90:70:3b:33:3c:87:c8:81:fa:
be:2d:2e:8d:62:07:15:dd:e5:1b:dd:03:f6:47:cb:
d6:27:bc:34:c6:22:0e:f1:db:81:d4:9e:4f:a3:5d:
7d:d8:2e:3d:1d:d7:db:dd:d3:3e:b6:a2:a4:d4:06:
40:98:4e:7b:67:99:ab:66:30:05:22:08:08:23:cf:
e8:e7:39:c8:8b:c2:6a:12:3a:96:45:74:52:4e:7a:
77:4d:65:5e:5b:4b:51:7d:52:15:fa:87:fa:ed:51:
cd:1d:d6:0e:9c:f6:4a:a9:ef:4b:f8:88:b0:71:23:
0a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:81:E8:A6:16:5A:03:66:A4:5C:15:85:64:62:CD:48:D0:1C:B8:D3
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/KYHophZaA2akXBWFZGLNSNAcuNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:8e:c0:b1:a1:5e:57:a7:db:58:19:c0:68:a9:71:99:a0:22:
af:0b:cb:56:d0:c4:ae:c4:d2:13:e9:4a:a3:63:12:60:55:4a:
ef:5b:28:0e:aa:59:69:ac:d1:96:8f:1c:04:14:c1:4a:21:51:
20:c0:9c:17:a1:24:cb:a0:a7:8a:de:d6:07:07:e8:7c:79:d7:
f2:d6:8f:c8:e3:09:29:fc:cb:cc:43:00:67:bc:88:9f:1c:ff:
22:5e:20:28:7a:8c:60:1a:c2:a6:0d:f9:7f:86:4e:cb:e1:c4:
d7:b0:9d:08:34:ab:e4:36:30:c8:84:97:18:3a:a8:6f:da:0a:
f8:cd:c4:8d:fd:b3:fe:42:ba:f0:b5:9e:60:e6:4b:a6:0d:5d:
1c:31:a0:64:31:e0:27:f9:f6:8e:16:01:0a:94:7e:3e:46:55:
e0:b8:dd:41:04:46:c6:a4:1a:73:0d:40:4a:bb:cc:a0:e2:2f:
22:1e:cf:1f:b5:ff:d6:c0:38:9d:19:5b:7e:49:41:ce:7b:ea:
07:bb:0d:85:51:19:89:10:4d:8f:3f:67:a2:a9:98:b1:65:b0:
59:1b:eb:d3:15:78:4f:11:b7:d9:e4:e6:0c:ac:49:7c:58:08:
c2:79:2f:3c:69:70:e1:fc:66:fd:e6:6b:59:5f:5b:65:6c:9d:
fa:ca:b6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:41 2024 by rpki-client on console-ams.rpki-client.org