Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/kt_SRH2h_Ll9XqKksl7LXfHRzng.roa
File: kt_SRH2h_Ll9XqKksl7LXfHRzng.roa (raw, json)
Hash identifier: SS85IW/1D1xVYGca7Onm0iDNABKeFiACPiU8b2WYC3s=
Subject key identifier: 92:DF:D2:44:7D:A1:FC:B9:7D:5E:A2:A4:B2:5E:CB:5D:F1:D1:CE:78
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 01856EAFC1F0351D474EBF43957F289E3AD2
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/kt_SRH2h_Ll9XqKksl7LXfHRzng.roa
Signing time: Sun 01 Jan 2023 18:54:50 +0000
ROA not before: Sun 01 Jan 2023 18:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21700
IP address blocks: 85.153.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 31 Mar 2023 11:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c1:f0:35:1d:47:4e:bf:43:95:7f:28:9e:3a:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Jan 1 18:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92dfd2447da1fcb97d5ea2a4b25ecb5df1d1ce78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:77:49:60:cb:4b:b9:e8:73:a4:51:59:a5:34:
a9:8a:b0:b2:5b:f6:a0:45:b8:d6:20:df:14:61:b7:
a5:35:15:6d:69:1a:a4:f4:48:72:61:61:79:2e:d7:
80:57:ff:63:ec:b4:c0:8e:c1:bf:99:27:6a:f6:af:
9d:ad:e0:86:a2:1d:04:71:28:15:c2:7c:91:5f:77:
d6:0d:18:73:5c:45:77:10:ec:1b:44:44:cb:bc:84:
cd:4f:3b:44:61:76:8f:a8:20:3e:30:80:16:88:12:
d0:bd:20:3a:ed:e2:dd:b2:c3:00:08:83:9a:a5:9f:
37:a1:3a:76:84:32:c1:ac:e7:df:68:2f:6b:22:96:
a4:cf:2e:c8:92:1e:5d:c8:fe:df:92:76:da:b6:04:
d8:e4:e3:9b:58:24:c0:c0:83:f1:26:9f:1c:e8:8a:
8a:81:cc:49:42:4f:a5:74:82:27:a6:93:18:33:c8:
13:b4:d4:9c:d4:49:0c:b2:f6:2e:25:94:18:5e:8f:
3d:e0:df:9b:c0:0e:dc:8b:ec:b4:fd:dd:e7:54:d3:
79:07:bc:b8:2e:ca:9a:e2:54:d7:dd:0a:41:63:f9:
a9:b2:9a:ff:4a:f4:28:69:f1:59:28:7d:eb:53:47:
3d:34:81:8f:22:7f:94:70:bb:50:3e:66:3f:66:11:
98:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DF:D2:44:7D:A1:FC:B9:7D:5E:A2:A4:B2:5E:CB:5D:F1:D1:CE:78
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/kt_SRH2h_Ll9XqKksl7LXfHRzng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.100.0/22
Signature Algorithm: sha256WithRSAEncryption
41:8a:df:cd:59:5a:e4:75:bf:28:63:3e:70:80:62:c3:72:3c:
14:76:8a:3f:5e:88:59:0c:7d:85:db:9b:f3:77:cc:16:a7:9f:
b6:22:69:8e:7b:0a:d9:02:bc:b1:a0:c3:87:fa:02:40:aa:e7:
14:96:97:f4:6c:74:2e:5e:b0:9d:08:2f:0e:ba:8b:26:d7:70:
52:74:e9:be:b6:3f:ef:bc:47:2a:c4:94:d5:ad:bd:c9:16:ee:
94:72:de:83:d0:69:2a:d5:ee:e9:27:10:15:03:92:95:e8:88:
f6:29:e3:3c:77:0c:1a:17:28:aa:71:43:4d:2f:8c:b5:fb:a9:
36:06:39:a1:a8:c9:b4:ee:61:b7:5e:ea:67:db:98:e5:17:bf:
8e:36:74:a3:11:f1:81:69:31:19:d0:a7:a2:37:aa:ba:71:f1:
03:9f:ad:26:9a:28:ca:f4:a3:a8:7b:af:28:1b:dd:9f:ac:0b:
10:09:28:e4:60:16:23:9b:51:71:a2:6e:ed:a8:92:21:4e:e0:
bc:0d:ca:c5:ed:7c:a2:d1:ac:30:07:8f:c8:f9:3f:15:e3:4e:
0e:9b:f0:1f:c1:8b:12:cf:e5:ab:85:1b:68:81:76:1d:45:fc:
e9:28:d7:0f:82:d7:60:16:0a:f9:95:cf:1b:cb:b3:f2:cb:ed:
6d:cd:60:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:40 2024 by rpki-client on console-ams.rpki-client.org