Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/kg-gwVW3a4K3fFNG9DwuICUj1Oo.roa
File: kg-gwVW3a4K3fFNG9DwuICUj1Oo.roa (raw, json)
Hash identifier: FvOf4NIg47P0vAqjOsYQzUN/Q1ib72Ul189Xa4473qg=
Subject key identifier: 92:0F:A0:C1:55:B7:6B:82:B7:7C:53:46:F4:3C:2E:20:25:23:D4:EA
Certificate issuer: /CN=b4c41e59834da612d83ca24194f02ca6d7602448
Certificate serial: 0191E57D21AA5F21DA861777ED53DAE74569
Authority key identifier: B4:C4:1E:59:83:4D:A6:12:D8:3C:A2:41:94:F0:2C:A6:D7:60:24:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tMQeWYNNphLYPKJBlPAsptdgJEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/kg-gwVW3a4K3fFNG9DwuICUj1Oo.roa
Signing time: Thu 12 Sep 2024 09:07:48 +0000
ROA not before: Thu 12 Sep 2024 09:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214666
IP address blocks: 185.133.160.0/22 maxlen: 22
185.133.160.0/23 maxlen: 23
185.133.162.0/23 maxlen: 23
2a12:ff40::/33 maxlen: 33
2a12:ff40:8000::/33 maxlen: 33
Validation: Failed, certificate revoked on Mon 16 Sep 2024 07:23:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:7d:21:aa:5f:21:da:86:17:77:ed:53:da:e7:45:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4c41e59834da612d83ca24194f02ca6d7602448
Validity
Not Before: Sep 12 09:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=920fa0c155b76b82b77c5346f43c2e202523d4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2a:0c:e4:25:94:89:07:c5:79:7c:cc:ef:a3:
5e:f2:4c:ae:c4:e4:46:7f:21:3a:98:b0:13:8c:97:
55:45:9e:98:42:50:ff:3a:04:89:dc:b9:bb:4a:77:
98:8f:31:f4:0a:75:d0:16:31:31:1a:66:f8:d4:17:
74:61:0c:f0:57:2f:ad:ac:06:ab:6e:db:2c:5d:12:
aa:f8:23:6e:df:3a:c2:98:73:6c:4e:80:b8:b7:69:
e7:e2:a9:47:dc:10:b6:6a:7d:ee:ca:e4:dc:15:81:
13:cc:7d:a1:e3:c4:dc:08:51:77:42:0f:98:e0:9c:
6b:dc:db:06:d4:7a:52:e4:54:17:79:8d:bf:f7:bc:
48:e0:e6:21:05:40:94:a6:bb:57:04:8c:37:24:10:
9e:79:7e:bb:18:4a:d6:66:c0:b5:27:7a:cd:a7:8b:
84:42:ad:a6:9c:3c:6e:af:44:84:51:06:76:82:ac:
b9:05:09:a4:0a:37:8d:68:c5:ba:43:d0:d8:cf:b2:
01:a8:c0:50:f1:e6:9d:2e:44:6c:a1:71:f2:07:b8:
14:da:5d:cb:e9:59:11:e4:52:72:b9:41:52:bd:16:
4a:05:c0:c5:ca:cc:a1:b0:6d:b0:1d:bf:49:35:46:
3b:92:87:c4:9d:87:4a:c6:e4:89:29:c2:cf:5e:3c:
08:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0F:A0:C1:55:B7:6B:82:B7:7C:53:46:F4:3C:2E:20:25:23:D4:EA
X509v3 Authority Key Identifier:
keyid:B4:C4:1E:59:83:4D:A6:12:D8:3C:A2:41:94:F0:2C:A6:D7:60:24:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tMQeWYNNphLYPKJBlPAsptdgJEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/kg-gwVW3a4K3fFNG9DwuICUj1Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a3baca-437d-4607-9c1a-557a4c31e02e/1/tMQeWYNNphLYPKJBlPAsptdgJEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.160.0/22
IPv6:
2a12:ff40::/32
Signature Algorithm: sha256WithRSAEncryption
5f:58:a7:c2:f5:5d:c7:0c:78:55:fc:6e:0d:65:46:d4:88:19:
ae:30:15:c3:2a:ed:50:c3:f5:05:3d:b3:e8:05:86:c9:11:7f:
98:15:49:55:82:68:a5:b0:ac:8b:48:ba:80:2d:0c:0e:06:d2:
49:09:24:bf:9e:01:de:14:90:c5:58:ce:95:25:bd:31:4b:22:
5d:ae:c6:f2:86:cc:35:15:ca:bb:f0:73:f3:27:df:05:09:58:
c0:04:94:b8:cb:d0:bf:5d:66:7e:51:1e:6e:df:29:d9:9e:ff:
63:73:a6:84:25:44:44:f4:49:d6:f2:9f:5f:48:5b:09:ff:0a:
0e:bb:f7:da:14:7a:9b:54:c3:dd:2e:a6:db:31:a3:09:09:b1:
d9:9d:b3:97:0d:de:9e:d5:d7:1b:5b:e3:23:09:25:cc:bd:90:
74:d5:64:c3:28:74:6f:a1:39:0b:58:9f:64:4f:fc:24:5b:d3:
88:49:28:25:cc:e7:1a:be:d6:84:15:a1:f3:b4:69:26:2e:72:
f9:89:39:99:96:28:0f:a0:65:d6:09:4b:9a:8e:34:73:1f:8e:
e0:28:a2:a5:4c:23:1a:f8:04:9a:50:a3:c9:32:44:0d:4d:fe:
78:98:c1:67:fb:d8:56:e6:dd:3e:4b:d5:87:40:cb:c0:9f:d2:
e1:29:57:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 11:17:36 2024 by rpki-client on console-ams.rpki-client.org