Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/Kde74BLXyDACNP_laYhHyJtvMMA.roa
File: Kde74BLXyDACNP_laYhHyJtvMMA.roa (raw, json)
Hash identifier: FNePKnecVdkTldnhzTDs3z/qd9/HaxYY/+JL18lg/o4=
Subject key identifier: 29:D7:BB:E0:12:D7:C8:30:02:34:FF:E5:69:88:47:C8:9B:6F:30:C0
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 0190A220C37403F9BBAAAF1C6C305EF435AD
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/Kde74BLXyDACNP_laYhHyJtvMMA.roa
Signing time: Thu 11 Jul 2024 14:09:34 +0000
ROA not before: Thu 11 Jul 2024 14:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 185.167.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 13:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a2:20:c3:74:03:f9:bb:aa:af:1c:6c:30:5e:f4:35:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jul 11 14:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29d7bbe012d7c8300234ffe5698847c89b6f30c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ca:c5:96:f3:92:db:e9:07:f4:f0:34:f4:c5:
1f:33:47:18:b7:13:6d:ac:b8:89:32:2b:05:6a:7b:
b1:4e:84:d1:64:81:30:d9:2a:61:44:d0:e4:4b:13:
7f:e6:ea:68:0e:87:af:63:3a:5e:1c:31:6b:e9:31:
55:c6:d9:a3:bd:88:94:a3:3f:9a:f2:6a:0c:29:33:
4b:5f:22:3b:12:d9:db:e3:05:58:88:7e:1e:20:be:
c4:64:9f:5f:76:12:13:3e:fa:e5:22:38:41:59:e3:
e7:20:75:d3:69:57:3e:77:cb:6c:fc:6f:c1:0f:2c:
8b:11:8e:57:9c:25:ea:e9:88:9d:a1:9a:c9:e4:8f:
68:82:18:de:1a:66:d1:6b:6e:6a:c7:d2:22:75:fc:
7c:a1:af:3d:46:57:85:37:7f:dd:3e:0b:ce:0a:cb:
b2:b6:02:4e:95:93:df:0a:7b:13:ec:22:5c:b6:b3:
8e:7c:b1:01:46:57:3e:9a:06:43:33:cc:83:17:69:
a3:bf:30:c2:c8:c1:2e:03:50:47:c1:c4:21:3a:dc:
8e:89:e5:1d:9f:b9:fc:b4:39:5c:3b:69:16:0e:13:
6c:e6:8d:d0:0a:4a:6f:dc:8f:7b:30:e3:2d:2d:0f:
86:85:55:7e:e2:1e:1b:e9:33:f5:ec:9d:55:d6:c2:
33:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D7:BB:E0:12:D7:C8:30:02:34:FF:E5:69:88:47:C8:9B:6F:30:C0
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/Kde74BLXyDACNP_laYhHyJtvMMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.232.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:05:db:19:2c:d5:cd:6a:19:1a:bd:01:1c:04:83:6f:ce:c4:
95:cc:a0:a9:6a:6a:48:d9:1a:9e:75:ad:2f:49:db:d3:7d:4c:
e7:a0:3b:0d:fe:c0:80:af:9a:ca:c6:b6:09:2d:7b:61:b4:68:
c0:7b:0c:9d:60:31:cf:98:e3:be:6e:91:26:41:08:b4:89:8a:
67:7b:fb:79:61:6e:bf:f7:f4:85:a9:dc:5f:ff:8d:d9:d7:c5:
5f:86:4a:dc:85:a5:f0:a0:4d:6d:9a:54:f8:f8:4f:32:6d:73:
76:28:52:8f:aa:7b:5d:bf:d9:74:60:4b:48:99:8e:9e:a0:1c:
dd:79:ff:68:b9:8a:79:1b:2f:ad:e3:ce:c2:81:c9:dd:45:57:
5d:eb:01:0c:c3:78:c8:c4:e9:6f:c9:52:b0:d4:fe:b4:9c:77:
8c:81:e3:7c:c4:99:5e:58:d0:5a:48:7e:da:d2:3d:3a:05:bf:
bc:2a:ee:87:88:e8:52:6f:80:b0:eb:83:d0:0d:8d:40:9e:01:
b7:30:76:86:a6:5f:b2:d4:06:1b:98:02:21:61:1d:e8:9d:34:
54:dc:20:d1:d8:2a:a6:59:be:60:1c:25:33:e8:a1:2a:8a:9b:
ac:37:ee:69:02:4e:d8:9d:6d:76:78:ba:05:3d:03:82:f7:59:
5b:75:eb:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 15:30:06 2024 by rpki-client on console-ams.rpki-client.org