Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/kbM9DUlqQC7if3Qduo0_ReThXEs.roa
File: kbM9DUlqQC7if3Qduo0_ReThXEs.roa (raw, json)
Hash identifier: AxeyTKau4Zqcp8OSCiFGuUQIYvPkodnkndbFrFj17Qg=
Subject key identifier: 91:B3:3D:0D:49:6A:40:2E:E2:7F:74:1D:BA:8D:3F:45:E4:E1:5C:4B
Certificate issuer: /CN=6b2f22abf5747fdfcd5163cb924608e1c78cd182
Certificate serial: 01856D9CF7E542162BCF4A71B26618F80D34
Authority key identifier: 6B:2F:22:AB:F5:74:7F:DF:CD:51:63:CB:92:46:08:E1:C7:8C:D1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ay8iq_V0f9_NUWPLkkYI4ceM0YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/kbM9DUlqQC7if3Qduo0_ReThXEs.roa
Signing time: Sun 01 Jan 2023 13:54:41 +0000
ROA not before: Sun 01 Jan 2023 13:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48551
IP address blocks: 185.128.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9c:f7:e5:42:16:2b:cf:4a:71:b2:66:18:f8:0d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b2f22abf5747fdfcd5163cb924608e1c78cd182
Validity
Not Before: Jan 1 13:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91b33d0d496a402ee27f741dba8d3f45e4e15c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fc:a9:a1:34:af:65:87:35:92:8b:cc:33:cb:
b5:3b:bd:55:32:8b:f2:fe:a1:57:47:79:a9:6c:b0:
58:a8:15:70:71:37:ac:d4:da:c6:ec:05:12:32:33:
b6:cb:ba:8f:6e:95:53:06:0d:3c:1f:43:f1:5f:77:
66:8d:46:ec:e9:07:73:4c:95:e0:96:d9:66:67:c5:
20:70:6e:33:3f:31:94:b4:bc:5a:28:07:0e:18:69:
53:bf:01:b6:c1:c1:7d:a4:24:26:34:a7:a8:b0:96:
d7:0f:20:b4:56:31:b2:ec:02:5a:27:0a:3d:0b:e1:
cb:ae:a2:05:5e:cf:70:82:98:89:e9:52:b9:95:61:
92:01:d1:ab:6a:d6:0c:bf:e7:82:5a:1a:07:d7:2c:
6b:54:20:8a:57:9f:a3:29:09:05:cf:5c:f1:c8:44:
78:f3:07:d7:1a:e8:d2:d6:29:a7:55:3f:2f:0f:96:
f5:54:4f:00:5b:d2:eb:98:af:79:78:0c:5a:47:9f:
19:52:a8:60:17:78:49:56:66:47:bd:44:7e:d0:0d:
22:af:14:cd:b6:6d:0b:a7:ef:de:dd:fa:0f:bd:c7:
90:91:db:33:4f:84:b0:38:5c:4b:95:eb:9d:5e:e3:
da:b0:2a:45:85:d8:0e:f3:40:bd:f7:f4:1d:88:1e:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B3:3D:0D:49:6A:40:2E:E2:7F:74:1D:BA:8D:3F:45:E4:E1:5C:4B
X509v3 Authority Key Identifier:
keyid:6B:2F:22:AB:F5:74:7F:DF:CD:51:63:CB:92:46:08:E1:C7:8C:D1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ay8iq_V0f9_NUWPLkkYI4ceM0YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/kbM9DUlqQC7if3Qduo0_ReThXEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/abeb11-e681-434c-8558-ab7700b1627f/1/ay8iq_V0f9_NUWPLkkYI4ceM0YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.40.0/24
Signature Algorithm: sha256WithRSAEncryption
14:d5:97:79:88:43:80:4d:3a:9f:f6:39:f9:73:3a:09:b2:01:
ff:b9:d9:23:49:8d:6e:15:dc:3c:b3:d4:c4:cc:16:cb:0f:45:
65:f0:05:58:5c:78:11:38:69:f8:b0:59:cb:18:20:d0:26:4e:
48:88:8b:a5:c1:4a:34:0e:1b:2a:b0:75:4d:3f:3e:6b:0c:bf:
11:88:48:3a:44:8a:bd:ba:b3:0b:42:aa:81:4a:5e:3c:b1:fd:
04:68:a9:5c:e1:9a:01:68:31:eb:26:59:2f:4c:93:49:b5:df:
5d:26:15:46:79:4e:04:61:71:b2:b9:e9:9b:b7:5f:35:7f:f0:
4d:0f:b7:1e:30:29:d7:34:b5:2b:e7:b9:c6:71:0b:23:69:54:
5c:68:fc:c8:5d:92:45:44:8d:44:f9:f3:fd:0e:bd:53:50:4c:
68:0b:cf:c4:ba:ac:d7:21:11:5d:7d:aa:e3:77:18:d9:3c:de:
ba:23:17:62:c6:72:9f:9a:e8:a5:d4:13:b1:9b:6e:7e:5f:1a:
d8:94:b2:4f:d1:78:84:05:8a:9d:ab:2f:b3:67:d8:0f:e8:a8:
0a:de:0c:95:b5:21:26:e6:60:d0:eb:46:44:75:16:5b:40:01:
c1:33:fc:39:7e:d4:84:71:a7:9d:63:dc:13:a6:4e:4c:4c:05:
a0:ad:56:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:51 2024 by rpki-client on console-fra.rpki-client.org