Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Kd-nekweGanYbZPhizFYZ2BHHU0.roa
File: Kd-nekweGanYbZPhizFYZ2BHHU0.roa (raw, json)
Hash identifier: FscHVVjdRMO/GAGsgOAlkGqyt/suBimgxHhvuyGScuQ=
Subject key identifier: 29:DF:A7:7A:4C:1E:19:A9:D8:6D:93:E1:8B:31:58:67:60:47:1D:4D
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 019023C55A1EDF404E5B073C40DCF09E136A
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Kd-nekweGanYbZPhizFYZ2BHHU0.roa
Signing time: Mon 17 Jun 2024 01:17:34 +0000
ROA not before: Mon 17 Jun 2024 01:17:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 178.22.26.0/24 maxlen: 24
193.17.91.0/24 maxlen: 24
213.232.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 12:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:23:c5:5a:1e:df:40:4e:5b:07:3c:40:dc:f0:9e:13:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jun 17 01:17:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29dfa77a4c1e19a9d86d93e18b31586760471d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:c1:f9:39:48:1c:11:e9:61:c1:41:5b:20:
e3:80:0f:0f:27:f2:a0:d9:2d:4c:54:a1:cf:36:ab:
9c:3f:6e:f4:2b:b1:0f:45:1d:d1:cb:92:5e:72:8a:
6d:98:df:78:14:b3:08:79:c8:68:1e:29:fc:d1:25:
91:82:95:75:c5:f7:29:8c:23:df:3e:f1:a9:46:a8:
c7:e7:cf:5b:e5:0f:34:44:ba:ac:66:47:57:f5:28:
53:36:63:c3:9c:5e:63:1c:16:c8:78:54:a3:5d:bf:
2c:f3:76:95:1c:9c:2a:da:5f:94:83:d4:43:19:c9:
77:ee:f3:64:5d:d4:b9:ad:f9:a1:0a:b9:ec:b4:a3:
f5:b1:e5:db:fd:dc:77:ce:b9:c4:bf:e9:48:d6:97:
ef:2c:ba:25:69:22:0e:8a:1b:cf:0b:70:15:90:b9:
bb:38:e2:6a:c2:7c:0f:a8:9f:57:9a:be:5b:d6:a3:
02:2d:53:1a:6d:48:73:da:c2:7e:21:c0:8a:19:9b:
fe:c9:7c:ae:e4:63:f5:f7:a0:2e:25:a2:63:a3:8f:
be:ba:9e:96:4f:71:a0:0d:c4:a5:22:db:8f:b6:e1:
e9:7c:31:2a:89:88:55:55:76:5a:d5:8a:f4:80:3d:
bf:4c:ea:2f:89:19:e4:21:72:89:15:ad:9d:4a:93:
1f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DF:A7:7A:4C:1E:19:A9:D8:6D:93:E1:8B:31:58:67:60:47:1D:4D
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Kd-nekweGanYbZPhizFYZ2BHHU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.26.0/24
193.17.91.0/24
213.232.239.0/24
Signature Algorithm: sha256WithRSAEncryption
45:03:37:7f:68:bc:85:bb:bd:69:c1:c1:3a:03:40:19:2a:fa:
6f:98:2b:19:95:90:18:36:bd:03:f2:40:82:a8:16:46:c1:bc:
f7:0e:cd:f7:52:46:0f:aa:2c:0f:75:ce:e0:40:68:69:85:5a:
1a:68:ad:c4:0b:3a:5e:cf:01:52:49:55:4e:2d:a7:09:48:db:
94:56:13:d0:4b:14:b7:47:96:47:9a:ba:28:57:8d:2f:f4:c9:
5a:33:67:b1:cd:29:04:f1:c6:37:9a:c1:16:5e:26:2b:ee:ac:
d8:99:2f:7e:ce:28:aa:38:f2:57:fa:c5:cd:c0:9a:41:bc:3e:
dc:04:03:d3:97:b1:5f:1a:a3:ee:c2:f4:92:ac:64:11:5c:71:
53:49:c6:d5:83:d4:81:fe:d2:1d:c6:93:ca:04:64:01:63:0a:
e7:20:68:84:de:b8:da:b2:cf:f8:34:a2:8a:62:fa:53:ae:71:
95:7a:c1:15:84:8e:42:09:9c:f2:d4:04:1b:c8:67:cb:ae:82:
93:33:fe:bf:96:ef:ff:9c:b2:ad:95:43:6b:6d:53:76:5d:5d:
88:ae:4e:1a:0c:7f:f7:54:cf:22:f7:e2:8e:34:b3:0b:ef:2f:
ea:3f:81:dc:55:69:7d:2f:64:60:57:a0:36:72:b4:dd:bf:b1:
dd:4a:0f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 16:26:00 2024 by rpki-client on console-ams.rpki-client.org