Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/klNV3pgqzlre75fM1ebnsUI-K94.roa
File: klNV3pgqzlre75fM1ebnsUI-K94.roa (raw, json)
Hash identifier: Y+yxDn8NcRcyk0OitaTYOvbBHaSBsTPgGEZoziAI710=
Subject key identifier: 92:53:55:DE:98:2A:CE:5A:DE:EF:97:CC:D5:E6:E7:B1:42:3E:2B:DE
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 0185704BD083C63CAA9FADD2C056E2107675
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/klNV3pgqzlre75fM1ebnsUI-K94.roa
Signing time: Mon 02 Jan 2023 02:24:54 +0000
ROA not before: Mon 02 Jan 2023 02:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202949
IP address blocks: 185.174.58.0/24 maxlen: 24
185.174.57.0/24 maxlen: 24
185.174.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Jan 2023 10:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:d0:83:c6:3c:aa:9f:ad:d2:c0:56:e2:10:76:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Jan 2 02:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=925355de982ace5adeef97ccd5e6e7b1423e2bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ed:ed:6d:7c:51:73:7e:91:98:3a:7e:1b:92:
5c:02:7c:75:4b:5b:31:7b:48:ce:9d:8a:5a:4e:42:
7c:56:fd:75:03:10:e1:8b:24:21:34:00:a6:a5:de:
ab:62:23:ab:46:e1:68:f7:25:12:44:ea:a3:c3:2e:
91:af:5a:ab:07:77:ca:b0:87:55:d2:b7:86:82:32:
50:6f:ad:8a:e0:ea:2c:d3:bf:5a:ff:82:f1:d2:fa:
23:bc:3c:3e:f6:1d:97:a0:80:80:2d:ea:7f:b2:b3:
1d:c5:35:65:9e:cf:56:05:55:2b:39:16:e6:3c:55:
d1:e2:c6:1a:94:47:45:1d:97:99:d0:80:76:2a:8a:
ab:64:3b:48:5d:24:b1:d1:6d:3e:3f:a8:18:72:98:
f6:3a:8d:03:54:44:1e:ab:6b:2a:ce:07:10:e2:87:
a5:7c:73:01:21:a9:45:5d:76:21:7d:e2:74:0b:e9:
67:34:61:e0:da:de:b6:0e:22:76:8a:ea:70:a9:87:
87:83:31:85:61:8f:bc:da:a7:03:62:3e:a3:1a:8d:
74:26:46:69:b8:b7:23:f1:dc:00:93:4c:b6:88:e2:
93:e8:c3:61:fd:66:db:e4:0b:26:b3:95:4f:fc:60:
9b:ca:35:db:86:d9:72:ef:8b:03:b1:a8:b8:23:7f:
c9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:53:55:DE:98:2A:CE:5A:DE:EF:97:CC:D5:E6:E7:B1:42:3E:2B:DE
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/klNV3pgqzlre75fM1ebnsUI-K94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.57.0-185.174.59.255
Signature Algorithm: sha256WithRSAEncryption
77:da:f3:7b:6d:19:2b:42:48:ad:ed:42:32:ea:40:3d:cb:34:
b8:50:f6:ea:45:8a:ef:a2:54:29:bd:79:ed:14:ef:83:ed:d1:
ef:ea:23:2e:64:4b:ff:a9:83:ac:eb:2c:91:68:80:d1:7f:1e:
a6:8b:50:7d:3c:30:26:3a:19:42:aa:13:c4:1d:82:0f:8b:4b:
a2:f5:f3:74:4f:0a:07:3b:20:ea:c9:d7:c6:67:17:01:c3:25:
13:22:75:4f:20:57:6e:c0:a7:9a:c7:11:16:b6:05:87:01:ec:
b9:55:b7:65:63:fc:63:30:ac:5e:f4:15:22:2e:e4:7c:e2:7c:
f5:a6:ed:bb:ec:8b:66:2b:72:ff:73:dc:0a:de:e6:f2:f0:f2:
36:1a:5f:78:9c:53:42:f9:dc:9e:42:57:79:1f:54:80:dc:05:
2a:b4:a3:03:46:92:f8:89:c9:67:b6:f0:1e:fd:58:74:5b:d8:
ba:13:83:09:f0:7b:2d:8c:81:e5:aa:a7:99:50:39:1b:e1:29:
e5:3c:75:ac:2c:78:ee:de:8d:dc:f0:f3:f6:b5:06:75:52:ec:
9e:bf:84:f9:88:23:30:31:72:bf:71:f9:d3:63:18:14:28:70:
14:e8:c4:d7:39:ef:80:74:24:d6:54:5f:0f:9c:a0:4f:88:5d:
97:fe:e6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:42 2024 by rpki-client on console-ams.rpki-client.org