Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/KgneyBGo__WyY6c_CPgmg6q516c.roa
File: KgneyBGo__WyY6c_CPgmg6q516c.roa (raw, json)
Hash identifier: b4F9kXlGUgElW3MgPVS/NwqnXqSIFoSmTYp4GJpCt/w=
Subject key identifier: 2A:09:DE:C8:11:A8:FF:F5:B2:63:A7:3F:08:F8:26:83:AA:B9:D7:A7
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018B94F2B55D98045BA90E8B032F24876680
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/KgneyBGo__WyY6c_CPgmg6q516c.roa
Signing time: Fri 03 Nov 2023 11:30:15 +0000
ROA not before: Fri 03 Nov 2023 11:30:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 93.89.216.0/24 maxlen: 24
93.89.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:f2:b5:5d:98:04:5b:a9:0e:8b:03:2f:24:87:66:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Nov 3 11:30:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a09dec811a8fff5b263a73f08f82683aab9d7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:67:2e:6a:96:9b:79:67:31:1e:91:7b:a4:8e:
b7:a5:ca:bf:6d:61:53:5d:dc:cb:a5:f9:a3:0a:e9:
01:37:20:10:ae:34:2c:3a:ac:92:f9:1c:7b:83:a2:
3a:19:da:b6:62:6c:58:44:06:31:b2:c2:1f:20:3e:
c4:cf:d4:9f:2e:c0:a8:92:e0:12:1a:0f:b7:6c:3a:
06:b0:7d:2d:96:0a:c9:15:92:37:36:3d:ce:9c:eb:
8c:3e:2c:8c:a8:68:de:a2:00:9e:56:69:70:df:8f:
5b:02:68:c8:f8:25:91:99:38:51:b0:e1:db:ca:57:
c7:a1:72:33:d1:ad:dd:25:51:c7:2b:0a:9c:98:00:
b9:31:28:4e:e8:a5:3c:be:aa:2c:d4:1f:c3:0c:41:
1b:2d:e3:b7:2f:a3:c6:b3:b2:43:a2:49:44:7a:2b:
d7:5a:ac:89:4f:8e:16:16:69:68:7c:58:35:dd:c4:
ef:72:b3:2e:98:2b:c7:9c:27:59:74:08:c9:ac:56:
bb:65:6c:d0:e0:ff:18:5b:e8:7e:33:2c:e3:fe:3b:
dc:e1:fa:1f:37:ec:21:c0:7a:26:ce:e1:4c:e5:af:
e0:22:61:d7:cc:ca:e1:6d:56:ea:60:3b:05:70:91:
c5:94:4c:54:28:a7:1a:a6:91:2a:4a:c9:52:a9:a8:
7a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:09:DE:C8:11:A8:FF:F5:B2:63:A7:3F:08:F8:26:83:AA:B9:D7:A7
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/KgneyBGo__WyY6c_CPgmg6q516c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.89.216.0/24
93.89.218.0/24
Signature Algorithm: sha256WithRSAEncryption
16:6a:5d:ca:2f:29:1c:da:43:83:e4:19:d5:f3:44:f4:6b:e1:
a3:68:cb:46:0b:26:23:0c:da:ff:90:f1:ea:8b:9d:51:7f:e7:
c7:e9:cf:66:79:d8:50:8f:f9:f9:f4:6b:03:d9:77:42:4d:ba:
91:a2:3f:89:28:25:2c:7b:cc:d8:0f:f4:ba:a8:92:ce:cb:29:
4f:3c:dc:fc:11:c0:b6:a3:43:86:c4:04:a6:8b:c8:32:47:ea:
c5:26:3d:52:f9:5a:9f:27:3c:09:4e:fc:1a:28:62:89:58:18:
4e:1a:59:e8:d2:49:d6:83:83:e0:5f:ea:97:bd:e1:cd:7b:94:
48:ed:1c:10:24:30:60:dc:08:44:0d:29:bd:9f:4f:af:85:5b:
cd:eb:b7:32:c2:8f:97:a9:f9:63:b7:6d:9d:c3:9c:0f:1d:12:
b7:33:6a:7c:f3:a7:51:9a:1c:ff:21:73:60:d6:93:88:c6:a7:
0b:67:65:13:41:ce:3b:e0:cd:d2:76:be:05:8a:a4:73:3b:87:
f5:45:a4:08:ce:ed:cc:57:e2:b0:d7:15:42:d5:19:51:7b:63:
6a:31:5a:12:e2:f9:e2:e4:af:4d:0a:36:28:52:9f:75:b6:d5:
67:ec:27:bc:57:30:9b:c4:f7:6f:23:f6:9f:99:2e:ff:fc:c5:
a2:94:d7:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:22 2024 by rpki-client on console-fra.rpki-client.org