Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/KiyNhz_0JdDJ4_cQwzLudadnIKE.roa
File: KiyNhz_0JdDJ4_cQwzLudadnIKE.roa (raw, json)
Hash identifier: 2lKIuXruNd9FkJppM+uxvOCbTsaMK1FQfS6DEnBncmI=
Subject key identifier: 2A:2C:8D:87:3F:F4:25:D0:C9:E3:F7:10:C3:32:EE:75:A7:67:20:A1
Certificate issuer: /CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Certificate serial: 018964C08B098708A28F36ED4EFDD8A281C4
Authority key identifier: 00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/KiyNhz_0JdDJ4_cQwzLudadnIKE.roa
Signing time: Mon 17 Jul 2023 16:48:07 +0000
ROA not before: Mon 17 Jul 2023 16:48:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.94.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:8b:09:87:08:a2:8f:36:ed:4e:fd:d8:a2:81:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00b032f0261a0ea46fdc19a334e40e35c087f1c7
Validity
Not Before: Jul 17 16:48:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a2c8d873ff425d0c9e3f710c332ee75a76720a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e0:e2:2d:9a:d3:0a:eb:0e:cb:7f:10:2f:98:
1b:fc:14:76:07:e0:a2:8c:53:93:9d:33:26:96:fe:
01:ca:05:c2:b2:d6:87:65:e8:b0:33:85:09:06:f4:
1f:92:2e:cf:c1:bc:74:ea:cb:94:9f:e3:60:40:6d:
fa:f4:28:9b:19:e4:4c:9a:ee:23:70:e8:49:b1:33:
f8:0d:62:04:c0:9f:e9:d3:80:a9:04:ef:fc:78:e0:
43:6c:ed:d8:15:eb:39:0d:3e:95:67:1b:ea:9f:ca:
2c:bf:76:b1:ec:d2:aa:d2:dc:17:09:a9:df:23:ff:
0f:d1:44:82:be:15:ab:6d:e8:9c:33:1a:31:55:d7:
4f:7e:df:64:f7:2d:b7:58:1b:86:7d:bb:2e:36:cb:
91:de:9e:79:56:c8:07:39:72:48:c5:ab:59:1c:aa:
95:49:33:9c:f6:ff:d6:5f:01:ab:9a:c9:03:85:c8:
d1:96:d2:75:42:ea:5f:14:7b:46:c2:a4:4a:c3:44:
e0:e4:fc:81:4d:43:96:fb:73:ff:91:c4:60:87:6d:
b0:af:fc:9d:cf:c2:98:a6:5a:6c:95:75:40:6b:52:
bc:21:f1:cd:c8:9a:3e:1e:cf:be:2f:20:b8:b1:91:
1c:81:17:6e:59:88:45:b7:dd:62:77:09:0d:b9:e0:
9e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2C:8D:87:3F:F4:25:D0:C9:E3:F7:10:C3:32:EE:75:A7:67:20:A1
X509v3 Authority Key Identifier:
keyid:00:B0:32:F0:26:1A:0E:A4:6F:DC:19:A3:34:E4:0E:35:C0:87:F1:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ALAy8CYaDqRv3BmjNOQONcCH8cc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/KiyNhz_0JdDJ4_cQwzLudadnIKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/b6b167-07d4-47bb-be0e-434bc4ad390a/1/ALAy8CYaDqRv3BmjNOQONcCH8cc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.67.0/24
Signature Algorithm: sha256WithRSAEncryption
09:10:bf:79:b9:e5:fe:e8:43:69:a2:e5:94:c6:99:17:f7:3d:
df:78:d7:c3:96:aa:44:d9:4d:9b:5e:7d:5a:13:81:33:96:c4:
c1:29:2f:fa:36:c9:36:ca:1e:31:20:40:0b:97:99:6a:9e:cd:
94:82:e4:38:28:8c:d9:3a:27:4d:cf:c5:d9:a4:61:62:83:43:
d0:3d:ad:4f:ad:bc:8a:15:b6:7c:19:35:c6:cc:50:15:96:8f:
2d:15:87:b6:0c:b1:6a:eb:85:c3:1d:a6:e8:ac:23:19:1b:35:
1c:f8:81:4b:dd:14:88:f1:cc:e5:79:8c:72:d9:7a:71:31:3d:
5c:4b:15:2b:1d:48:0f:6b:8b:4c:8b:bd:10:c7:ea:81:c1:6d:
51:2b:85:bf:6a:21:23:b3:3b:ce:64:6c:94:77:11:25:35:d8:
97:4a:02:c5:a4:92:06:0f:b6:c1:6f:23:fe:96:04:2a:a3:fd:
2d:63:c7:13:b7:5c:f4:c8:b4:89:03:20:36:53:98:e3:0a:52:
1e:25:6f:39:74:01:cc:3f:5d:ce:6c:77:1f:ca:e4:7c:f3:78:
a8:d0:fe:e2:d9:65:88:0d:03:22:b3:76:07:dc:8d:29:eb:ce:
ab:3f:82:95:bc:91:13:0a:af:d2:7f:1c:7c:cc:de:57:db:9a:
95:1c:76:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:46 2024 by rpki-client on console-fra.rpki-client.org