Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/236aba-e8f2-4e06-a064-ff96928a6df4/1/kKyNfr_PAgA0eVYwnKKPvJHLhhE.roa
File: kKyNfr_PAgA0eVYwnKKPvJHLhhE.roa (raw, json)
Hash identifier: f+D6mITTOAwq2qKcUCe3Vj3sxYcjZ8i0VvS/feTsCNA=
Subject key identifier: 90:AC:8D:7E:BF:CF:02:00:34:79:56:30:9C:A2:8F:BC:91:CB:86:11
Certificate issuer: /CN=13e19aef683969eb982f2ddb219b4652af26b96d
Certificate serial: 0187998C9C0E6D3DD245897E3B742E4E8345
Authority key identifier: 13:E1:9A:EF:68:39:69:EB:98:2F:2D:DB:21:9B:46:52:AF:26:B9:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-Ga72g5aeuYLy3bIZtGUq8muW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/236aba-e8f2-4e06-a064-ff96928a6df4/1/kKyNfr_PAgA0eVYwnKKPvJHLhhE.roa
Signing time: Wed 19 Apr 2023 12:45:41 +0000
ROA not before: Wed 19 Apr 2023 12:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 185.178.165.0/24 maxlen: 24
185.178.164.0/24 maxlen: 24
185.178.166.0/24 maxlen: 24
185.178.167.0/24 maxlen: 24
185.196.98.0/24 maxlen: 24
185.196.96.0/24 maxlen: 24
185.196.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:99:8c:9c:0e:6d:3d:d2:45:89:7e:3b:74:2e:4e:83:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13e19aef683969eb982f2ddb219b4652af26b96d
Validity
Not Before: Apr 19 12:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90ac8d7ebfcf0200347956309ca28fbc91cb8611
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1b:bc:b9:05:cf:07:b4:dc:0c:dc:69:59:bc:
cf:6b:c0:4f:c2:18:e5:d9:e2:28:49:8a:b8:2f:1b:
eb:0e:57:70:49:4c:c6:20:22:56:3e:fc:d2:4f:45:
42:f1:84:be:85:e3:5f:83:99:13:a3:57:31:2e:81:
41:cd:69:8e:a7:5d:87:16:bb:03:39:10:48:66:3e:
23:ea:ba:12:a8:72:eb:45:de:2a:a5:71:aa:6e:00:
f5:52:e4:bc:fc:ad:98:90:8c:9e:15:fb:72:2e:69:
01:3f:19:92:a7:94:cc:8d:ae:de:a3:75:d7:28:ed:
7c:1c:3d:84:23:0f:7d:c1:fc:60:f5:f0:22:b3:d2:
76:ad:1f:79:79:d8:1b:24:f9:17:31:e3:88:c1:d1:
69:94:f7:17:72:0d:02:91:dd:63:90:cb:57:9c:e0:
94:7c:bd:91:28:d3:f5:66:63:f6:ec:45:bf:45:07:
0b:28:61:84:7f:3b:fd:ff:38:b4:6d:97:c9:04:dc:
fe:b8:7f:04:b9:c2:5f:55:1e:c0:fb:4e:dc:bf:e6:
f4:b3:49:ad:01:ce:64:a1:84:47:20:b1:4d:e6:40:
c1:50:4c:47:4f:63:94:6b:5a:b1:a5:0b:2b:af:41:
21:58:f5:17:f2:59:1a:00:70:1b:84:2b:e2:e0:24:
7d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AC:8D:7E:BF:CF:02:00:34:79:56:30:9C:A2:8F:BC:91:CB:86:11
X509v3 Authority Key Identifier:
keyid:13:E1:9A:EF:68:39:69:EB:98:2F:2D:DB:21:9B:46:52:AF:26:B9:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-Ga72g5aeuYLy3bIZtGUq8muW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/236aba-e8f2-4e06-a064-ff96928a6df4/1/kKyNfr_PAgA0eVYwnKKPvJHLhhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/236aba-e8f2-4e06-a064-ff96928a6df4/1/E-Ga72g5aeuYLy3bIZtGUq8muW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.164.0/22
185.196.96.0/24
185.196.98.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:c2:d6:b3:22:19:b1:5e:c2:2c:45:b6:64:48:b2:b8:51:ca:
2f:fe:d3:32:0f:0a:cd:b3:4e:d2:16:2f:23:6d:77:c6:29:06:
f5:a6:22:3c:4a:f4:25:14:df:aa:a3:21:f3:60:33:36:f4:37:
7d:b3:b5:0f:ec:cc:9c:86:51:5a:1e:53:2f:88:08:b8:43:1c:
19:51:5a:34:81:1f:14:07:ed:04:9d:ae:48:71:13:4f:c1:73:
c6:49:78:b6:da:91:bd:1f:2b:51:36:ec:0b:22:3c:6b:f8:f5:
a3:00:f2:63:df:74:98:ae:f8:e8:1a:e8:c3:f2:dc:72:97:0c:
3c:75:91:e1:9f:12:64:a0:6e:c7:9a:95:c8:dc:2e:e7:c7:fc:
a6:4b:4a:e2:88:4f:e2:1d:65:36:21:80:29:95:1e:9b:a5:59:
38:8a:a2:07:04:4d:18:6f:3f:94:ff:d4:b1:c5:ff:67:7e:67:
9d:33:c2:14:8d:35:bb:7a:2e:d5:a5:db:36:10:04:02:98:92:
1b:7d:e6:4a:01:07:e6:b6:8e:3d:59:4a:d6:cc:65:82:34:b8:
e2:d5:85:9d:4a:6b:ee:30:f2:9f:37:24:16:4c:9a:1f:53:56:
4a:00:65:4a:24:73:e0:ee:d9:2e:56:cc:3f:da:8a:59:95:bf:
95:e3:2d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:41 2024 by rpki-client on console-fra.rpki-client.org