Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kZKubLCvV60yGu8MW7n7V7ukel8.roa
File: kZKubLCvV60yGu8MW7n7V7ukel8.roa (raw, json)
Hash identifier: oog/lVq6puhWcPemrAPK6raE8UD43KNhYDSJXuDtlM4=
Subject key identifier: 91:92:AE:6C:B0:AF:57:AD:32:1A:EF:0C:5B:B9:FB:57:BB:A4:7A:5F
Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Certificate serial: 01856B4A37FBABF8457B5E9E7F4B5AEC664E
Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kZKubLCvV60yGu8MW7n7V7ukel8.roa
Signing time: Sun 01 Jan 2023 03:05:04 +0000
ROA not before: Sun 01 Jan 2023 03:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62010
IP address blocks: 46.243.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:37:fb:ab:f8:45:7b:5e:9e:7f:4b:5a:ec:66:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e
Validity
Not Before: Jan 1 03:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9192ae6cb0af57ad321aef0c5bb9fb57bba47a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4d:ba:83:be:23:1d:bc:f7:d8:11:58:03:4a:
f1:d3:5d:66:ca:e2:53:2f:b2:34:36:a1:e2:9d:de:
7f:03:13:fb:29:ca:1b:c2:ec:4a:6f:a2:15:a2:71:
46:32:17:9e:a2:47:c7:f1:dc:6f:c8:f0:d1:8c:44:
b6:a8:8f:63:ba:9e:51:24:1e:e1:da:da:b9:68:c0:
f6:fd:90:f5:bb:fd:1e:45:04:e4:b7:29:4f:79:e5:
f3:bc:40:a1:69:d9:f3:4a:55:5d:38:c6:f5:7e:4c:
18:3d:04:88:fa:09:40:37:27:66:56:bb:50:c2:50:
6d:95:26:7c:89:22:7f:a9:30:e1:ec:18:09:f3:cc:
ff:37:84:55:35:04:76:5f:73:ab:21:93:aa:5c:80:
fb:3e:6e:5b:b4:12:8a:7e:88:68:16:7d:2f:f7:dc:
e6:9b:ca:a8:5c:61:8e:7d:1b:8c:7c:17:b3:f6:23:
46:21:d8:40:ed:51:a5:0c:1d:d2:6a:a0:d7:e3:d2:
83:c8:9c:6e:ed:2c:4b:d5:33:40:cb:ab:b1:f4:b9:
ef:4e:88:78:23:2b:d2:f8:75:5a:c3:5b:81:82:92:
da:bf:9a:af:9f:af:33:6d:51:01:ea:1d:27:51:50:
d4:35:18:5f:e9:f7:dc:ad:5c:60:d5:f5:3a:6d:41:
ad:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:92:AE:6C:B0:AF:57:AD:32:1A:EF:0C:5B:B9:FB:57:BB:A4:7A:5F
X509v3 Authority Key Identifier:
keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/kZKubLCvV60yGu8MW7n7V7ukel8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.174.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:82:f4:23:af:1c:7b:4d:e7:13:1a:e8:5c:3f:84:fc:77:53:
6b:f1:50:38:63:f8:c4:e0:d3:fb:09:e2:d5:dc:96:2c:84:ec:
7f:cd:c5:4c:6c:52:cc:90:31:06:23:a8:4e:03:fb:af:1e:f8:
89:79:c7:47:77:ca:2e:da:76:5a:c3:f4:9e:fb:31:58:d2:7c:
4b:a8:a9:48:e0:f6:c6:82:34:6e:48:2c:cb:41:cc:57:c3:fe:
82:b1:b1:2f:af:bf:04:56:c2:e2:be:81:c3:6e:a9:db:87:60:
f5:7c:b0:a3:14:87:1b:a7:b4:0a:96:cd:e3:09:91:4c:a8:22:
9b:c3:80:7f:8d:13:4a:1e:cb:30:64:13:72:d7:08:72:e8:a6:
ae:31:1b:7b:ba:ad:3e:8c:1b:cd:e2:35:de:82:12:45:59:6b:
36:bc:13:c5:d2:e2:9f:31:6b:0e:3c:3a:a1:f5:d5:43:21:80:
fb:18:79:3c:75:3c:9b:f3:28:d7:0e:66:0c:4d:19:11:33:4f:
e4:6a:94:75:52:e9:81:7d:32:92:0b:bb:38:12:4b:56:f9:ba:
29:dc:4d:27:ba:a2:01:36:1b:75:29:8b:45:16:b1:ca:2b:97:
22:ae:4b:05:3d:1b:30:f2:b4:f8:ef:c2:ea:f8:b2:46:9d:a8:
7b:a0:99:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:50 2024 by rpki-client on console-fra.rpki-client.org