Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/KugzIOfl2QNr8xf-c8l2mHHiPUw.roa
File: KugzIOfl2QNr8xf-c8l2mHHiPUw.roa (raw, json)
Hash identifier: AsomhNZ9fM1RU0WHwAdLj3/chH0qmXdy4Tk2gC6he6I=
Subject key identifier: 2A:E8:33:20:E7:E5:D9:03:6B:F3:17:FE:73:C9:76:98:71:E2:3D:4C
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 018BEE775C3FA77CE5BA260A31D7AA9D5526
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/KugzIOfl2QNr8xf-c8l2mHHiPUw.roa
Signing time: Mon 20 Nov 2023 20:41:21 +0000
ROA not before: Mon 20 Nov 2023 20:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 159.197.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ee:77:5c:3f:a7:7c:e5:ba:26:0a:31:d7:aa:9d:55:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Nov 20 20:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ae83320e7e5d9036bf317fe73c9769871e23d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ec:f3:7e:55:c8:40:8e:1e:12:6c:fe:68:03:
ae:db:46:73:8d:89:1a:0e:56:d5:39:f2:49:81:1e:
0c:24:d5:44:6c:7e:fe:e4:29:a8:38:7d:0d:3a:a3:
d8:a3:77:8a:f5:61:b4:30:20:d5:ef:7e:f8:64:dd:
da:48:ef:65:0e:ab:6f:78:d6:78:cb:c3:dc:93:77:
24:70:9a:e6:63:dc:c2:1b:de:53:38:a0:9c:9c:15:
c2:be:61:06:89:39:ac:6a:86:60:14:68:49:ce:7b:
f8:d4:7d:b9:bb:b2:e8:71:7c:06:6f:b4:93:61:12:
90:4a:0c:bf:91:d7:2f:2c:04:51:3d:4a:25:96:0d:
33:3f:a7:b1:03:c1:a0:70:c3:95:ab:83:f5:6c:c6:
43:5f:f5:37:66:2d:2f:1e:ce:fd:f9:f9:9d:e2:b6:
bf:ef:93:6a:c5:9f:db:bb:a8:7d:59:52:66:d7:3c:
55:f9:0f:f4:69:e7:6d:9b:6f:38:c3:c6:05:3a:b0:
17:cd:5b:a2:7d:f0:f4:e4:9b:7d:dc:de:93:12:aa:
94:48:bc:5f:82:21:da:ed:f8:32:be:17:1a:8b:05:
d1:c9:c0:7b:1a:3f:c5:78:ca:a2:63:a7:73:0b:8f:
9b:04:3c:62:75:d5:87:a1:94:bb:c9:e2:b8:80:6e:
38:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E8:33:20:E7:E5:D9:03:6B:F3:17:FE:73:C9:76:98:71:E2:3D:4C
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/KugzIOfl2QNr8xf-c8l2mHHiPUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.197.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:b6:a6:08:53:8b:3e:ab:a5:8e:4b:e5:2a:c4:e6:32:a6:75:
46:3f:3a:9b:48:1c:fd:0f:06:f5:57:40:c8:ea:b4:4a:ec:29:
27:0e:40:15:3e:f3:60:ea:24:a1:aa:c5:91:93:57:6e:6d:e9:
ef:87:d1:b0:cb:a0:bf:ce:44:76:a8:77:66:4b:79:c3:9b:1b:
43:23:af:a6:62:82:36:d7:23:40:ea:2f:1a:eb:9d:e3:3d:3c:
6d:fe:94:f3:a3:d1:4e:93:76:87:97:95:f2:15:c1:b2:af:01:
e8:e2:91:f1:05:96:e4:4f:e1:45:c7:99:e3:9d:2a:9d:eb:bb:
2a:1b:9c:10:7f:ce:9d:73:ab:e8:1d:30:44:5d:31:c9:56:68:
70:82:c3:56:8b:1d:26:9b:cf:66:ec:c4:45:d5:bb:ff:f4:a1:
4c:ac:a7:27:6d:bb:68:0b:7a:4c:34:e5:ca:62:41:97:92:c6:
23:3a:c7:fb:d8:4d:bc:7d:6e:f1:d7:f6:e8:ba:28:f8:3b:e2:
89:b0:98:17:f8:99:91:a2:a9:9b:ec:59:87:c6:d6:bf:b8:40:
bb:0e:59:6d:ac:b0:5f:4a:e6:c2:8b:db:51:00:c1:de:f4:05:
2d:87:9c:3a:13:2f:f4:a6:25:28:65:02:f7:f3:67:6b:c6:22:
98:14:db:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org