Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/KSDm6C-Kj2t_Mp8Nj4N4AUjs1Lg.roa
File: KSDm6C-Kj2t_Mp8Nj4N4AUjs1Lg.roa (raw, json)
Hash identifier: bk5xAC2wsm5SgZfTj17aAE3Z1iQE1Wp+92BcH3Lyj9o=
Subject key identifier: 29:20:E6:E8:2F:8A:8F:6B:7F:32:9F:0D:8F:83:78:01:48:EC:D4:B8
Certificate issuer: /CN=de3d3687fe7df48c3be8398aad7bd20106545382
Certificate serial: 01857169B4F723A891953E448574E251F7C2
Authority key identifier: DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/KSDm6C-Kj2t_Mp8Nj4N4AUjs1Lg.roa
Signing time: Mon 02 Jan 2023 07:37:11 +0000
ROA not before: Mon 02 Jan 2023 07:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60662
IP address blocks: 185.27.168.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:b4:f7:23:a8:91:95:3e:44:85:74:e2:51:f7:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3d3687fe7df48c3be8398aad7bd20106545382
Validity
Not Before: Jan 2 07:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2920e6e82f8a8f6b7f329f0d8f83780148ecd4b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6c:4a:4e:64:fa:cf:54:91:63:f5:c0:13:65:
01:88:da:29:39:01:ea:e2:83:00:fd:e7:43:0d:d4:
55:ed:ab:45:05:d2:1d:c6:1c:06:b1:4f:f8:d4:1d:
ac:a8:3d:98:46:6e:c3:02:2a:c1:13:4c:83:d4:ed:
24:fd:b6:b0:61:65:aa:1f:2d:3c:b7:e7:1f:ce:07:
d1:bb:50:dc:d6:62:b4:df:42:a5:78:c4:2f:ce:bd:
b4:fa:74:2d:c0:d4:be:f2:e0:2e:27:4a:00:17:ed:
09:78:04:b4:6e:3e:ea:e5:3a:31:9b:37:08:bc:78:
f3:04:34:72:29:d8:ae:48:e2:d5:fa:43:67:6e:f0:
7c:20:cc:c5:e7:33:df:b9:d3:ac:37:85:aa:59:4c:
d1:47:aa:f9:90:59:dc:a8:10:1e:78:7f:e5:8e:d8:
fa:ee:43:07:2e:59:f6:e2:0a:85:4b:ca:64:c9:11:
bd:19:a6:a3:7a:93:7e:2b:27:59:a6:0f:9a:14:7f:
46:c0:0f:e2:98:7d:dd:40:bc:f3:94:f9:76:05:d0:
03:4a:69:1b:f3:25:03:7e:57:b9:42:0f:f8:6d:ad:
f5:6f:95:68:a9:0b:3d:89:57:8d:a3:43:63:43:02:
0b:d7:e9:10:91:03:0c:a6:d7:dc:46:f4:6f:0b:4f:
94:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:20:E6:E8:2F:8A:8F:6B:7F:32:9F:0D:8F:83:78:01:48:EC:D4:B8
X509v3 Authority Key Identifier:
keyid:DE:3D:36:87:FE:7D:F4:8C:3B:E8:39:8A:AD:7B:D2:01:06:54:53:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j02h_599Iw76DmKrXvSAQZUU4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/KSDm6C-Kj2t_Mp8Nj4N4AUjs1Lg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/400b4f-3688-497c-9785-234cbafac86a/1/3j02h_599Iw76DmKrXvSAQZUU4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.168.0/22
Signature Algorithm: sha256WithRSAEncryption
71:27:d1:b9:2b:44:73:5d:4b:32:ae:74:d7:41:4d:10:21:06:
53:a6:5d:12:fb:9d:9b:78:0b:e9:7e:0d:94:a0:a3:94:6f:53:
4a:eb:10:1e:5b:31:7f:78:10:87:cb:48:6b:0b:b3:41:c9:b0:
96:62:96:4f:81:06:c5:4c:03:90:3c:84:b0:ef:a8:bb:0f:8d:
f4:e0:83:62:03:b6:e2:ae:d4:7c:ab:c6:5c:60:67:d2:3e:63:
d7:ef:cd:34:e8:12:b2:54:fb:29:8e:ec:61:7c:90:1e:0d:78:
5c:9b:27:1a:7e:50:c6:d0:b3:4a:a4:98:de:ba:df:97:8b:80:
c9:96:b8:72:cd:33:90:6e:04:c5:87:86:46:88:ed:e3:67:15:
dd:ec:4e:c5:76:f7:49:38:68:45:bb:a4:cf:77:44:23:a9:bf:
f8:37:eb:a0:a1:de:ec:9b:9d:21:f9:ff:b8:d8:db:88:39:c4:
34:ab:80:d4:33:a3:40:02:ef:61:70:e9:23:e0:60:f8:66:6f:
e8:02:06:6b:77:00:91:bc:74:f2:44:02:78:49:73:d1:62:02:
4e:88:2d:f9:d8:f8:c0:92:75:77:e9:97:56:74:9f:07:31:3c:
12:45:e6:1d:8d:92:91:4c:97:f7:32:84:71:81:72:b4:da:00:
74:7d:e1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:26 2024 by rpki-client on console-ams.rpki-client.org