Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/2851b6-2e65-4859-9c05-506bb6c679ce/1/KPnW45lspFesHobyWCMxMrEpjTI.roa
File: KPnW45lspFesHobyWCMxMrEpjTI.roa (raw, json)
Hash identifier: pF2dYDdX8ru6xRcf1OFXqhJtoET/K925VJf4ScqsXvA=
Subject key identifier: 28:F9:D6:E3:99:6C:A4:57:AC:1E:86:F2:58:23:31:32:B1:29:8D:32
Certificate issuer: /CN=a2f6bc8f163af49c03d9ad69e716b42c5b96ee79
Certificate serial: 0188014D6648669AA5CA464A02761F7FD2B5
Authority key identifier: A2:F6:BC:8F:16:3A:F4:9C:03:D9:AD:69:E7:16:B4:2C:5B:96:EE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ova8jxY69JwD2a1p5xa0LFuW7nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/2851b6-2e65-4859-9c05-506bb6c679ce/1/KPnW45lspFesHobyWCMxMrEpjTI.roa
Signing time: Tue 09 May 2023 16:17:09 +0000
ROA not before: Tue 09 May 2023 16:17:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 46.19.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:01:4d:66:48:66:9a:a5:ca:46:4a:02:76:1f:7f:d2:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2f6bc8f163af49c03d9ad69e716b42c5b96ee79
Validity
Not Before: May 9 16:17:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28f9d6e3996ca457ac1e86f258233132b1298d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d9:4c:37:e1:a6:76:4c:51:09:e1:f2:de:66:
2b:60:01:35:2a:7f:f8:9a:bd:b2:98:36:92:3f:32:
ab:9e:93:7a:6b:13:ab:4b:75:56:2c:74:48:df:be:
92:33:ee:73:dd:ef:c5:a3:1e:0e:eb:00:b6:04:79:
b4:67:51:71:12:04:5e:08:29:a6:15:6d:20:bf:18:
9b:c5:f6:34:b1:b4:d2:39:79:01:3f:07:f9:dc:b5:
f4:dc:46:de:5f:3e:02:d8:19:56:42:f5:7b:b5:0d:
c2:36:65:2f:3d:74:bc:e4:4d:f7:84:e4:ff:cd:93:
f9:72:b8:4d:14:7b:6f:d6:f2:cd:7c:b8:ed:cd:73:
8b:2d:32:73:d6:34:0d:dc:f5:f5:c9:f3:14:11:7e:
9b:a0:e3:7b:44:7c:27:8e:86:51:5c:50:8c:51:5e:
ae:7d:7d:3d:19:9f:f7:15:3b:e8:fa:64:93:a2:fc:
57:16:e4:19:69:fb:54:59:43:3d:0e:e9:8d:0f:0a:
97:76:50:3a:02:83:b8:3c:ae:4b:e9:44:eb:91:4d:
5e:77:d2:3a:ee:8e:a8:69:cf:80:a7:0d:49:bc:6c:
02:a7:4e:bc:7c:fd:a6:60:aa:bc:26:37:59:73:e0:
73:57:e4:18:58:9f:43:e0:2c:50:45:88:78:8c:8a:
e3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F9:D6:E3:99:6C:A4:57:AC:1E:86:F2:58:23:31:32:B1:29:8D:32
X509v3 Authority Key Identifier:
keyid:A2:F6:BC:8F:16:3A:F4:9C:03:D9:AD:69:E7:16:B4:2C:5B:96:EE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ova8jxY69JwD2a1p5xa0LFuW7nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/2851b6-2e65-4859-9c05-506bb6c679ce/1/KPnW45lspFesHobyWCMxMrEpjTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/2851b6-2e65-4859-9c05-506bb6c679ce/1/ova8jxY69JwD2a1p5xa0LFuW7nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.170.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ba:d8:64:b6:25:46:b7:bc:52:49:1e:7e:88:83:ab:5d:b2:
80:71:e9:d0:57:36:97:b7:8b:2f:10:c4:5a:87:72:aa:21:07:
80:14:9c:8c:ca:68:6a:ad:d1:25:26:cb:af:74:4d:71:23:f0:
8c:08:26:08:af:71:9b:60:13:90:a0:08:4b:91:e3:c8:5e:17:
02:c2:6b:92:f1:12:8d:e0:b0:06:ff:e1:d0:b3:2d:4e:9c:34:
e8:11:b2:26:c0:6f:35:b3:af:fe:47:d7:ff:95:3a:c0:36:ff:
88:30:37:e9:b3:fd:c1:0f:a1:44:0c:05:82:db:97:e5:94:96:
4b:82:5a:28:a0:80:57:92:01:7a:c3:1b:e4:33:0c:49:39:eb:
d4:fd:0d:3e:89:36:b5:3f:6c:20:09:54:9b:d5:00:1d:f8:1e:
ff:33:f3:10:f9:3a:14:8e:56:9c:5f:ad:cf:7c:30:82:36:95:
78:e0:93:70:92:d9:da:42:42:2d:94:d7:49:ba:1a:4f:13:c8:
9d:f8:1a:a8:ab:31:28:bd:98:be:a6:c1:cf:50:e7:75:5e:c0:
98:91:a4:21:d1:30:48:d2:b6:c3:39:6f:71:60:7a:be:4d:8c:
1e:fb:35:8b:6b:de:d7:cd:25:62:28:5b:4f:ae:77:cf:06:fc:
4d:1e:9b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:50 2024 by rpki-client on console-ams.rpki-client.org