Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/KM-ZSqLw2-HkR-PSB7DhfIb5wk0.roa
File: KM-ZSqLw2-HkR-PSB7DhfIb5wk0.roa (raw, json)
Hash identifier: aPyqhDIRyb9BxJnFBWf27ndnqioYI6n9RcisHnP9acA=
Subject key identifier: 28:CF:99:4A:A2:F0:DB:E1:E4:47:E3:D2:07:B0:E1:7C:86:F9:C2:4D
Certificate issuer: /CN=89056fa9625b6c87404267c6dc219924ac160045
Certificate serial: 01905B0E41208EBE78780440CDB9605808AF
Authority key identifier: 89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/KM-ZSqLw2-HkR-PSB7DhfIb5wk0.roa
Signing time: Thu 27 Jun 2024 18:56:18 +0000
ROA not before: Thu 27 Jun 2024 18:56:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30058
IP address blocks: 46.16.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Jul 2024 21:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5b:0e:41:20:8e:be:78:78:04:40:cd:b9:60:58:08:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89056fa9625b6c87404267c6dc219924ac160045
Validity
Not Before: Jun 27 18:56:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28cf994aa2f0dbe1e447e3d207b0e17c86f9c24d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1e:8b:dd:f9:34:01:ac:9e:f3:3a:42:ec:b1:
45:c1:25:57:50:30:49:55:c2:31:61:28:1a:2d:b1:
5a:48:73:18:c8:bc:33:c9:b5:32:74:d8:fc:4d:41:
37:bb:b1:97:5e:8d:3d:c8:da:15:54:15:9a:8c:80:
fc:6e:be:d3:2c:ff:02:85:1e:43:29:ad:a1:fa:3d:
5c:55:6a:bd:dd:81:8b:a0:b7:19:f4:28:ef:11:ba:
e3:8a:f2:17:38:30:6d:50:a8:84:ed:c5:dc:14:5a:
5d:00:fd:4e:88:c1:84:f7:a4:00:51:e1:e3:c9:5d:
76:94:a5:3f:5c:6b:47:93:61:2b:f6:dd:fa:fd:1a:
f6:54:7e:de:07:2f:f4:ff:80:d4:78:20:2b:ef:6b:
f8:81:39:d4:69:3f:db:97:78:09:36:21:94:3d:7a:
9f:a3:2a:37:56:93:0a:85:a5:3f:e9:f3:ea:90:c4:
be:60:4c:1a:36:12:eb:15:39:96:d2:06:26:87:47:
bd:b7:0d:45:78:2e:28:b1:3e:d0:5a:6a:68:a1:53:
5b:25:15:77:b6:8a:6d:71:44:26:be:63:fb:de:72:
ab:cc:fe:a2:fa:2e:cc:ed:cb:ba:9b:d4:83:5f:f0:
b9:5c:98:6d:fc:30:5b:3a:9f:3d:6b:76:22:06:0e:
92:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CF:99:4A:A2:F0:DB:E1:E4:47:E3:D2:07:B0:E1:7C:86:F9:C2:4D
X509v3 Authority Key Identifier:
keyid:89:05:6F:A9:62:5B:6C:87:40:42:67:C6:DC:21:99:24:AC:16:00:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQVvqWJbbIdAQmfG3CGZJKwWAEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/KM-ZSqLw2-HkR-PSB7DhfIb5wk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/99ae2f-39cc-43f3-941d-51920373353c/1/iQVvqWJbbIdAQmfG3CGZJKwWAEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.16.128.0/24
Signature Algorithm: sha256WithRSAEncryption
52:09:57:7f:ac:29:af:7b:f4:f0:49:cc:fc:81:75:c1:9b:a6:
40:c5:ce:00:e5:38:4e:65:57:59:9a:2a:d1:7f:68:85:98:74:
51:50:61:7f:34:17:29:16:c2:86:83:72:a2:8a:eb:f1:e0:da:
97:b5:d8:51:76:83:9f:40:e6:c6:0c:7a:19:10:13:b3:ea:f9:
2d:4e:48:bf:57:b0:5c:81:7f:1d:7c:b2:46:fb:47:4c:a2:b3:
e8:2d:6f:fb:64:47:ef:b2:f8:52:2b:a8:be:f4:28:49:fb:8e:
8a:86:8c:22:b8:88:bb:f4:e1:ae:e0:96:da:49:51:e9:07:a6:
76:aa:31:96:94:7e:34:5b:8b:4f:88:cc:a3:7d:a5:4b:58:35:
1b:cd:cf:57:26:c8:15:62:eb:17:26:27:6d:6c:0e:da:39:b4:
53:b9:3c:f5:22:76:92:c6:57:c0:37:40:44:2e:af:e9:74:24:
78:44:67:6d:c8:d8:4c:96:4f:83:ba:8b:c6:14:1f:99:ba:62:
86:ae:a0:46:d3:5e:d6:12:43:03:63:05:a7:c5:77:24:72:b9:
78:0a:56:03:20:06:91:5d:17:32:bf:29:3e:b9:cd:9a:d4:53:
34:65:cc:4d:1c:53:3b:9f:b5:26:d7:ce:e1:16:cb:86:79:f7:
94:f5:f0:70
-----BEGIN CERTIFICATE-----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Generated at Thu Jul 4 22:53:34 2024 by rpki-client on console-fra.rpki-client.org