Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/e7f307-2a48-41e3-9407-d4cf809f7ffd/1/K2N31_KQgz-7ZBjDW3b6YbaUzTU.roa
File: K2N31_KQgz-7ZBjDW3b6YbaUzTU.roa (raw, json)
Hash identifier: QLDcfqb/JL7772t86FIUAovXn8Y+8r5WLBnzP8stvm0=
Subject key identifier: 2B:63:77:D7:F2:90:83:3F:BB:64:18:C3:5B:76:FA:61:B6:94:CD:35
Certificate issuer: /CN=73ebf12b57c7cc6b9bbbd161ed31be1649c4ac1c
Certificate serial: 0185720C896D5164FE7C625783E7FA573C4C
Authority key identifier: 73:EB:F1:2B:57:C7:CC:6B:9B:BB:D1:61:ED:31:BE:16:49:C4:AC:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-vxK1fHzGubu9Fh7TG-FknErBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/e7f307-2a48-41e3-9407-d4cf809f7ffd/1/K2N31_KQgz-7ZBjDW3b6YbaUzTU.roa
Signing time: Mon 02 Jan 2023 10:35:02 +0000
ROA not before: Mon 02 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 194.147.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:89:6d:51:64:fe:7c:62:57:83:e7:fa:57:3c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73ebf12b57c7cc6b9bbbd161ed31be1649c4ac1c
Validity
Not Before: Jan 2 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b6377d7f290833fbb6418c35b76fa61b694cd35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:13:7a:52:2d:6c:0f:91:6e:ce:41:ff:3f:
64:9d:99:02:d3:03:88:eb:2e:53:08:f8:bc:82:fd:
68:a3:07:66:3e:60:11:09:f4:b0:3d:fe:2b:da:22:
e1:e2:fb:1c:ac:fe:e0:d2:b4:a6:4a:59:4c:bf:63:
dd:7c:21:29:3a:b7:2b:24:9e:5d:56:8b:09:1d:6d:
5d:1e:50:0e:cb:34:48:00:f8:c8:2a:69:22:ad:b0:
31:87:a8:6c:e4:29:3e:a3:e2:6e:5e:61:6d:27:ad:
9c:08:a8:25:dd:e0:b4:c9:11:1a:f7:4e:71:8b:66:
ef:85:24:57:57:42:42:bd:d9:70:52:f5:b2:5a:fd:
3e:9d:37:30:3a:f6:76:57:7d:ed:22:da:c1:f2:81:
62:31:c8:88:d6:b2:34:3c:6b:7a:b0:6c:1b:41:5b:
f4:4b:d5:63:82:96:2c:7d:26:9a:f5:b4:fe:27:df:
62:54:11:1c:ae:75:29:3b:6d:b8:e6:79:3c:aa:cc:
b5:d7:b9:5d:45:35:e8:88:29:b8:90:9a:6c:26:1f:
c7:7b:52:1f:b4:3d:16:19:f4:6d:ec:ab:e0:c8:87:
ae:8f:51:99:14:12:ed:51:99:d3:85:d4:7f:e5:9a:
e5:84:c4:30:fa:ee:ec:d5:fc:3c:ca:6e:f0:77:f2:
3f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:63:77:D7:F2:90:83:3F:BB:64:18:C3:5B:76:FA:61:B6:94:CD:35
X509v3 Authority Key Identifier:
keyid:73:EB:F1:2B:57:C7:CC:6B:9B:BB:D1:61:ED:31:BE:16:49:C4:AC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-vxK1fHzGubu9Fh7TG-FknErBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/e7f307-2a48-41e3-9407-d4cf809f7ffd/1/K2N31_KQgz-7ZBjDW3b6YbaUzTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/e7f307-2a48-41e3-9407-d4cf809f7ffd/1/c-vxK1fHzGubu9Fh7TG-FknErBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.0.0/22
Signature Algorithm: sha256WithRSAEncryption
70:7c:89:af:a1:d0:15:36:77:4c:18:8f:84:ae:7b:e6:cf:ca:
ba:30:d2:0f:f1:28:f1:93:e3:03:2e:6f:05:1e:aa:4f:bd:93:
ad:b5:de:af:bf:42:f7:e6:b8:55:42:a5:22:c1:bc:3b:c8:6a:
d9:b6:cd:f2:d1:10:0b:a1:bc:17:86:d1:45:df:a2:27:24:df:
47:49:78:24:32:09:cc:9b:48:0c:eb:f6:cd:f7:29:59:94:46:
67:39:18:33:d1:9c:d3:bc:6e:9c:a1:22:7f:50:7e:c0:8b:40:
d7:1f:3f:67:00:97:62:96:a4:5a:e9:dd:bd:1b:cc:34:d5:cb:
d6:8b:1a:ac:1b:2f:51:0d:18:02:3f:c1:d6:05:46:77:40:07:
9b:98:b2:3c:a5:46:84:61:41:96:01:5b:f6:73:49:4a:97:16:
c0:bb:a2:b1:26:f6:fd:0b:83:31:00:8b:30:7d:08:74:70:09:
2f:7a:24:d9:cc:59:a3:0d:f0:f1:56:a0:e2:e9:0b:70:07:e6:
95:dc:bb:18:cd:31:6c:da:1b:4a:c7:c5:01:0b:51:05:cd:66:
8e:a6:49:10:08:88:26:12:76:7e:02:57:45:28:f3:c4:cf:80:
fb:56:0a:a1:1c:64:67:8b:35:dd:bf:fe:41:b3:64:83:8f:4e:
bf:95:dd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:44 2024 by rpki-client on console-fra.rpki-client.org