Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/KH_TvhzlAFF_ScZpCbcdF19JlcM.roa
File: KH_TvhzlAFF_ScZpCbcdF19JlcM.roa (raw, json)
Hash identifier: 2eKymsyiWCJ1ov3KS6RnHsccfvKDJy5ECXw36DI0u+4=
Subject key identifier: 28:7F:D3:BE:1C:E5:00:51:7F:49:C6:69:09:B7:1D:17:5F:49:95:C3
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 01906E8AF4CA90FB6C9764FA02AA2549101D
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/KH_TvhzlAFF_ScZpCbcdF19JlcM.roa
Signing time: Mon 01 Jul 2024 13:45:18 +0000
ROA not before: Mon 01 Jul 2024 13:45:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49392
IP address blocks: 193.163.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 11:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:8a:f4:ca:90:fb:6c:97:64:fa:02:aa:25:49:10:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Jul 1 13:45:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=287fd3be1ce500517f49c66909b71d175f4995c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:67:1c:6b:ad:03:30:f7:64:73:69:68:53:b1:
9f:40:00:d0:4c:0a:69:26:45:56:3f:c1:7e:cb:e1:
56:d8:bf:7b:6b:30:8b:72:9d:e0:1c:25:df:b0:f6:
cc:22:e5:21:ac:d2:e4:4a:d4:8e:d4:23:56:0e:a0:
f3:7d:f3:d7:a6:29:44:61:b2:b6:21:2f:de:b1:21:
26:40:d8:88:3c:71:bb:d1:79:26:e1:e4:2b:75:bb:
36:83:9c:bd:97:11:e7:3c:e3:6e:14:0c:c5:f9:26:
cb:0d:97:b2:8b:d7:42:6b:11:3e:85:f0:3c:c9:54:
91:89:a1:7b:d3:56:51:2b:0d:be:83:58:5b:a9:ee:
dc:7f:47:d6:b3:44:ba:b9:81:65:2b:68:a7:b7:1b:
9d:be:0e:ed:3e:c9:cf:94:b8:13:e1:cb:39:37:b0:
55:c8:10:51:b3:16:02:f9:a1:f2:15:1a:18:f7:45:
e4:76:26:bb:7b:ae:be:05:08:fa:fa:94:4a:81:c5:
d9:0b:d8:ad:d5:ba:f2:16:f4:de:7b:c2:be:9b:22:
7b:47:0a:07:11:fe:e2:1c:aa:9b:1b:4a:62:5d:25:
9f:92:9c:88:15:57:fd:40:55:d0:a0:1f:07:67:bd:
83:e0:b5:df:79:98:4c:a8:ac:7a:5e:b7:f4:ab:89:
d6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7F:D3:BE:1C:E5:00:51:7F:49:C6:69:09:B7:1D:17:5F:49:95:C3
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/KH_TvhzlAFF_ScZpCbcdF19JlcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.199.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c3:49:5f:99:c5:fe:30:31:3c:e6:67:6d:83:a6:f7:86:1d:
4b:8f:2d:f6:be:e7:1a:92:09:12:c0:8c:ec:78:e9:da:86:77:
b5:35:78:78:c1:05:7a:22:92:dd:cf:17:fa:7f:ec:a9:c2:01:
4c:b4:e6:fd:ab:b8:c6:06:86:1e:4c:36:ad:7b:c5:dc:45:48:
3c:78:09:31:b7:8f:2a:ff:51:77:47:22:58:01:26:c2:5f:c7:
ac:59:8a:99:58:49:8a:76:b8:65:58:27:ea:9f:44:c1:e2:fa:
17:7b:08:d5:60:3e:3f:c8:83:a0:41:92:84:8d:23:bb:67:2d:
da:dd:97:f5:66:2b:34:9d:89:49:2a:a8:e0:b7:57:43:cf:8f:
86:e1:ea:7d:33:aa:03:ec:a2:d1:d6:77:85:fa:b5:55:69:b1:
bf:ed:7b:ee:bc:ad:e8:85:e7:b3:67:b5:83:1f:17:e7:47:d8:
dd:9e:83:2e:4e:0b:51:de:c0:89:bd:89:d7:6b:8c:01:88:21:
3b:28:5f:ba:4f:72:cb:4d:dd:5b:25:87:4e:f7:f8:0f:da:aa:
08:aa:3e:52:1c:63:ce:ae:a1:f8:ec:42:4a:7e:d8:eb:4a:97:
fa:82:ec:93:ce:3c:9e:9d:0a:2a:95:47:71:5b:74:8f:44:d6:
ae:3c:76:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 17:00:12 2024 by rpki-client on console-ams.rpki-client.org