Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/KetnJPcly7KJEEjjIpTR7ctirt4.roa
File: KetnJPcly7KJEEjjIpTR7ctirt4.roa (raw, json)
Hash identifier: jvLXXo4gDNrRDg0pPfKBQ7ZczQjGnSJNs4aZRD9fcek=
Subject key identifier: 29:EB:67:24:F7:25:CB:B2:89:10:48:E3:22:94:D1:ED:CB:62:AE:DE
Certificate issuer: /CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Certificate serial: 018CC94CD175CD57DD53DD83BCACA127E1DA
Authority key identifier: 10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/KetnJPcly7KJEEjjIpTR7ctirt4.roa
Signing time: Tue 02 Jan 2024 08:31:43 +0000
ROA not before: Tue 02 Jan 2024 08:31:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 185.70.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 20:43:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:d1:75:cd:57:dd:53:dd:83:bc:ac:a1:27:e1:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Validity
Not Before: Jan 2 08:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29eb6724f725cbb2891048e32294d1edcb62aede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:75:a2:68:21:97:95:b2:08:b3:44:68:d5:43:
9b:72:d0:1b:18:41:1d:67:7c:f4:59:a0:b9:59:a2:
68:9d:95:30:dc:12:45:4c:3b:b3:7e:4e:e7:5a:08:
32:1d:4c:44:80:b3:f1:fe:f0:b2:4a:e4:06:57:71:
4d:13:76:87:a4:0a:78:ac:8a:e9:75:33:a9:af:62:
ae:39:ce:70:81:3c:0e:0d:f8:9f:a8:d6:f3:46:c4:
9f:43:6b:86:32:6e:5c:3f:32:a8:ae:b1:3b:3d:f2:
0c:49:42:ab:1f:23:51:e6:c6:50:90:8c:c4:5a:bf:
9e:d4:62:a7:b7:43:32:af:3e:17:c0:eb:97:38:60:
e6:01:50:f5:fc:fe:77:9f:67:4d:cd:0d:01:15:3b:
22:2e:f2:4d:1a:81:e0:39:36:f1:2d:de:2b:ec:6e:
1a:f8:20:7f:22:15:1b:71:d6:66:20:e6:7b:18:b4:
09:a2:f4:d5:62:58:0f:91:68:f1:86:91:60:eb:90:
da:27:46:ff:2f:bb:17:54:78:7a:5b:66:12:92:94:
7a:ae:b8:0e:bd:79:62:96:b2:ae:1e:51:25:6a:b5:
a6:9a:65:59:53:a1:07:34:9b:f8:48:0d:7e:e7:9b:
d0:b7:dc:0b:4e:45:d8:b0:bf:c4:77:3f:f6:f9:af:
29:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EB:67:24:F7:25:CB:B2:89:10:48:E3:22:94:D1:ED:CB:62:AE:DE
X509v3 Authority Key Identifier:
keyid:10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/KetnJPcly7KJEEjjIpTR7ctirt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.45.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:51:eb:05:9a:57:49:82:4c:08:b0:3c:c6:7c:e0:64:93:75:
48:c2:27:4a:cd:c9:57:49:a3:75:2f:3d:de:6f:8d:38:6f:8e:
d2:6a:c8:77:15:b3:7c:9f:09:4a:c4:bd:2b:c5:84:c2:5c:89:
eb:09:c1:6a:e9:54:a2:85:ab:a9:22:9b:0d:fe:5f:bb:03:ea:
1b:4b:11:38:f5:62:2e:f2:72:b8:f2:eb:96:ea:2d:d9:0d:a7:
98:5a:c5:31:10:f9:21:c8:84:07:b7:2e:c1:03:7a:c6:39:3e:
2f:21:e6:6d:54:bc:11:42:a3:0d:b0:19:75:f8:5f:be:66:e8:
f1:5b:9b:1b:09:a4:5d:4a:46:be:6c:5b:ce:91:a5:ee:8d:e8:
2b:59:32:f4:68:bf:9a:b8:90:12:41:9a:bc:91:29:3e:0f:78:
7c:20:f8:09:60:d7:0e:1b:1b:21:71:7e:1f:2d:93:d6:27:ac:
bd:a5:22:c5:cb:bd:91:28:82:20:a0:05:47:ed:9a:4d:26:47:
51:71:53:94:58:2f:52:a4:94:71:4e:f5:5d:9e:dc:26:58:10:
b7:8d:76:d8:a2:25:43:3d:02:68:ab:5f:e1:2b:4f:eb:9a:60:
1e:c7:6e:0b:cf:ce:fe:e3:d9:02:cf:c2:92:45:3c:7f:42:3f:
b8:2f:28:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 22:19:58 2024 by rpki-client on console-fra.rpki-client.org