Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/kkbTjl9iV2bsr0WgZ5JepHFtZQY.roa
File: kkbTjl9iV2bsr0WgZ5JepHFtZQY.roa (raw, json)
Hash identifier: 8fym8DZpMwIN1ZdxmXCYlzWZ5CEkg0bsyeDtZxpCjUM=
Subject key identifier: 92:46:D3:8E:5F:62:57:66:EC:AF:45:A0:67:92:5E:A4:71:6D:65:06
Certificate issuer: /CN=a61ada61202413cd8fca2f49742527ad021f9676
Certificate serial: 01856F0219C1B2ED4411443228574C62B937
Authority key identifier: A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/kkbTjl9iV2bsr0WgZ5JepHFtZQY.roa
Signing time: Sun 01 Jan 2023 20:24:46 +0000
ROA not before: Sun 01 Jan 2023 20:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11170
IP address blocks: 185.38.242.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:19:c1:b2:ed:44:11:44:32:28:57:4c:62:b9:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61ada61202413cd8fca2f49742527ad021f9676
Validity
Not Before: Jan 1 20:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9246d38e5f625766ecaf45a067925ea4716d6506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c3:28:88:46:d2:14:0a:e5:7a:be:2a:f3:a7:
71:60:43:4b:36:44:11:d2:81:8e:a3:c8:0c:13:09:
f7:fc:28:40:51:15:75:26:56:3c:8a:d0:0b:fa:cb:
be:b4:0d:12:a8:eb:25:50:02:1d:93:5a:31:e7:fe:
2c:9b:b9:9d:65:85:2c:ba:a4:31:30:d4:3d:1d:cc:
6c:e0:a5:5b:ab:6b:78:d0:d3:ee:8e:cc:ea:67:50:
67:50:97:da:db:0e:7f:c3:a3:ca:ed:fb:75:f5:42:
22:c4:5a:ff:a4:fe:5f:ff:92:69:98:cd:aa:4b:4e:
37:6b:ed:82:fc:c1:32:c3:0d:a5:68:8c:11:62:86:
f1:a9:b5:8d:64:7c:04:4f:ae:1e:cf:7d:f9:98:61:
3d:ae:c0:36:d9:6b:f7:04:8f:c1:41:45:66:e0:5d:
41:a9:39:15:d9:b0:58:50:6d:4a:28:6d:95:62:d6:
7e:5f:77:49:71:d8:6d:68:5b:6a:80:07:8e:26:4c:
9a:23:f1:d3:f6:6e:67:fc:17:c7:18:6b:1c:5c:ba:
5c:1a:d4:43:3c:c0:52:62:98:fd:ea:29:ea:ac:09:
be:d3:64:f6:7f:3a:bd:50:8d:0c:cb:75:63:d5:d7:
2f:fb:a9:1d:ce:4a:70:69:4c:a8:c4:62:6e:46:e5:
ae:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:46:D3:8E:5F:62:57:66:EC:AF:45:A0:67:92:5E:A4:71:6D:65:06
X509v3 Authority Key Identifier:
keyid:A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/kkbTjl9iV2bsr0WgZ5JepHFtZQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.242.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:bb:35:b2:a2:34:f7:b3:14:47:2d:4f:f5:91:b3:42:2e:f8:
32:11:76:3a:6e:43:63:ba:ac:71:c6:d1:bb:3c:a6:2f:b3:9f:
0b:81:22:70:cb:92:9d:b3:99:55:a6:e0:b2:77:0a:8c:3b:91:
6d:86:ae:75:69:91:4c:45:a1:ef:02:51:dd:31:64:3c:f2:9f:
e0:ac:1d:24:4d:ab:a6:09:9e:83:22:7f:96:92:9d:23:74:c7:
0b:4d:97:ea:25:29:99:38:1e:aa:62:3d:36:c5:a1:01:78:ca:
a6:2b:15:a4:6f:53:e2:c3:08:b8:1d:fc:a2:00:69:2c:51:5e:
f5:5d:73:c6:47:ae:c6:48:a1:a1:18:09:41:3b:1f:67:d1:fd:
39:fb:ff:8c:b7:65:32:93:20:fa:ab:54:6e:c2:cc:19:1a:32:
26:99:f0:0a:61:05:91:4f:1a:39:ff:7e:4b:d1:e7:21:8d:10:
9b:3e:ef:fa:87:a6:57:22:a8:9b:02:71:b9:c0:15:5f:29:61:
52:ec:67:45:2a:44:21:b5:c9:05:bf:9f:f4:7b:74:8f:40:fb:
f3:ac:a2:d3:e3:dd:7d:df:f0:88:45:1e:58:3c:23:f3:88:8a:
1c:a5:94:fd:7f:d1:d7:c7:10:5a:5f:fe:20:68:4c:43:c1:17:
86:25:c4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:50 2024 by rpki-client on console-ams.rpki-client.org