Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/KrlBEkV1OzoKRdONRuc9TjHJr2I.roa
File: KrlBEkV1OzoKRdONRuc9TjHJr2I.roa (raw, json)
Hash identifier: /cuQ5vj4QdX7Bo6h4xMuE1FsOHui/qv8wR86idSOrJE=
Subject key identifier: 2A:B9:41:12:45:75:3B:3A:0A:45:D3:8D:46:E7:3D:4E:31:C9:AF:62
Certificate issuer: /CN=807709e7b0efba127025c83e5d3194c71ba428c3
Certificate serial: 0192FAFA02F79BE3B5D201145C8A59EAE576
Authority key identifier: 80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/KrlBEkV1OzoKRdONRuc9TjHJr2I.roa
Signing time: Tue 05 Nov 2024 06:19:01 +0000
ROA not before: Tue 05 Nov 2024 06:19:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 38195
IP address blocks: 195.238.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 06:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fa:fa:02:f7:9b:e3:b5:d2:01:14:5c:8a:59:ea:e5:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807709e7b0efba127025c83e5d3194c71ba428c3
Validity
Not Before: Nov 5 06:19:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ab9411245753b3a0a45d38d46e73d4e31c9af62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:64:8c:52:45:63:16:30:cb:73:4d:1b:29:e3:
22:bd:6f:66:d7:39:f4:cc:1d:d4:c4:05:08:fd:53:
39:5a:36:d5:2b:84:81:61:4d:18:fc:5b:47:9d:f8:
5d:5f:50:9b:5d:f6:cf:08:38:22:7b:a1:e2:cc:b4:
8b:27:76:a7:72:5c:a1:e6:3b:f1:c5:f3:82:17:e9:
5c:91:31:fb:96:b5:9d:0f:b8:c9:a5:ca:86:96:54:
db:fd:50:47:8b:2a:17:0e:7c:42:e8:1d:d1:5c:1e:
7f:01:d3:af:fa:97:c0:85:0d:58:02:52:0b:24:d4:
a8:9c:69:7e:42:6a:32:bd:7d:db:1b:62:ae:23:e2:
8a:82:ea:9b:3a:c6:d8:26:d6:19:ea:2a:63:6e:ab:
59:91:05:22:0c:66:e3:b0:38:8c:b9:4c:dd:e9:c1:
73:95:b3:ec:3d:23:86:ea:53:d5:4e:e4:40:d1:c4:
ab:4b:68:58:5d:0f:44:3f:13:08:51:01:58:71:d2:
f2:5b:74:a3:0f:6c:c4:75:93:4c:88:b9:5f:20:21:
51:3c:a7:0e:34:8d:a5:c0:5d:cd:18:2b:61:1f:17:
b1:05:da:3f:31:a0:84:52:bb:31:92:29:59:ee:49:
9c:18:28:2c:61:db:f0:30:06:67:64:80:7a:89:80:
51:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B9:41:12:45:75:3B:3A:0A:45:D3:8D:46:E7:3D:4E:31:C9:AF:62
X509v3 Authority Key Identifier:
keyid:80:77:09:E7:B0:EF:BA:12:70:25:C8:3E:5D:31:94:C7:1B:A4:28:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHcJ57DvuhJwJcg-XTGUxxukKMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/KrlBEkV1OzoKRdONRuc9TjHJr2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c426c3-4f03-46bb-8008-be9ad2bf725f/1/gHcJ57DvuhJwJcg-XTGUxxukKMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.94.0/24
Signature Algorithm: sha256WithRSAEncryption
97:0c:ef:3f:50:67:c2:61:f2:60:31:10:36:15:22:ee:f5:de:
de:a9:47:74:93:81:cd:fa:7b:1a:f7:d7:88:64:f0:83:42:a8:
1a:ba:8a:a7:fe:b5:66:c0:a1:c9:bc:f9:d4:81:a2:1d:3d:dc:
26:0d:2d:7c:ce:84:b4:bf:20:c8:cd:65:57:07:e9:84:6d:76:
a2:d7:d8:74:d6:f9:80:c8:4c:4e:52:ea:6c:5c:46:b3:00:18:
63:b9:a4:03:73:33:f6:9e:6e:9f:cd:e4:6f:20:1e:b9:f8:00:
b3:30:a1:23:0f:d1:48:56:4a:69:ef:04:5a:e5:cf:f4:90:5e:
4f:7d:56:0f:6d:34:72:53:64:1f:e0:92:f2:3c:d9:78:04:b4:
cd:fe:5d:ba:ba:d3:59:a4:3a:08:da:e4:bb:21:ba:2a:85:f2:
68:92:45:18:93:1f:ff:fd:ea:08:36:d4:89:9d:e0:88:53:64:
34:ea:13:11:49:6e:1b:0d:e2:d7:c5:64:8e:cd:a6:a0:51:1d:
10:9f:9b:d9:23:45:bd:23:91:34:43:37:e1:96:16:3b:06:cb:
93:82:1b:89:cd:8f:9d:73:79:f5:90:0b:44:50:fb:d1:cd:12:
4a:ec:fb:89:90:3b:a9:0a:e4:c6:ef:f9:5a:1f:32:96:74:c6:
5a:69:67:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 08:31:08 2024 by rpki-client on console-fra.rpki-client.org