Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/KGr1ZWgxfJPMbyF8th7Mp7zJA9E.roa
File: KGr1ZWgxfJPMbyF8th7Mp7zJA9E.roa (raw, json)
Hash identifier: SifGHz3y8YPXTs9DZPB9tOPQAMOzecVgXm9AYxbZrZQ=
Subject key identifier: 28:6A:F5:65:68:31:7C:93:CC:6F:21:7C:B6:1E:CC:A7:BC:C9:03:D1
Certificate issuer: /CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Certificate serial: 018CC49231BDC3EBE73265940720B8EFAD29
Authority key identifier: 2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/KGr1ZWgxfJPMbyF8th7Mp7zJA9E.roa
Signing time: Mon 01 Jan 2024 10:29:24 +0000
ROA not before: Mon 01 Jan 2024 10:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211419
IP address blocks: 193.38.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:31:bd:c3:eb:e7:32:65:94:07:20:b8:ef:ad:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fe4173626f4602640e8d4e96b54a1a096abe78b
Validity
Not Before: Jan 1 10:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=286af56568317c93cc6f217cb61ecca7bcc903d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d0:63:34:c7:b1:3b:9e:cb:54:0d:b8:bb:66:
8d:c1:eb:ea:1e:57:67:b1:b5:01:1a:6b:f5:67:dc:
9d:b9:90:6b:eb:64:fe:20:4a:fd:55:92:a2:aa:6b:
34:51:5b:27:59:6f:ce:b2:ab:12:c7:27:73:8e:81:
f0:2c:e7:a6:ea:fc:28:6c:bd:47:7a:a7:6d:cb:72:
a8:6d:18:8c:eb:86:7c:c7:c5:d4:36:6b:24:39:01:
3d:47:40:ad:d4:b7:4c:55:1f:cd:bd:59:e7:76:be:
8d:19:b8:f4:d5:ad:61:e6:51:cd:a7:b8:0b:25:c4:
f4:12:a0:f4:54:e5:a2:97:38:a9:4e:81:c3:a6:10:
35:ed:28:c2:18:17:92:3c:8e:e1:33:d7:a3:dc:8e:
38:e0:8f:8a:4d:78:17:56:57:4c:07:1b:da:52:05:
db:c6:de:d3:d5:7d:02:4a:be:0f:78:ac:1f:5a:19:
8d:00:bc:b0:ea:92:42:7c:01:25:0b:fb:33:a2:6c:
ab:16:20:4c:f7:97:5b:64:ca:56:2d:51:54:d5:7c:
cc:24:ac:76:d7:bf:1d:22:46:c4:7b:58:e8:c8:ba:
98:a1:64:1e:f5:24:56:75:4b:d0:96:db:fb:2c:a9:
37:92:b2:8c:93:b6:34:48:62:d7:0e:cb:73:67:6f:
74:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6A:F5:65:68:31:7C:93:CC:6F:21:7C:B6:1E:CC:A7:BC:C9:03:D1
X509v3 Authority Key Identifier:
keyid:2F:E4:17:36:26:F4:60:26:40:E8:D4:E9:6B:54:A1:A0:96:AB:E7:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-QXNib0YCZA6NTpa1ShoJar54s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/KGr1ZWgxfJPMbyF8th7Mp7zJA9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/a4cd0d-af14-49c3-9481-35479c54dcbd/1/L-QXNib0YCZA6NTpa1ShoJar54s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.247.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f1:47:ee:ec:b2:a0:73:8f:25:83:8d:66:84:e8:ac:57:1f:
69:f4:a5:af:cd:1d:fc:48:34:f7:33:52:df:89:2f:31:db:3c:
24:57:e6:63:9b:14:f6:fb:9b:52:16:a5:d6:e5:e3:b9:c4:76:
4e:04:b4:95:3a:e2:e7:68:b8:39:b5:d8:8a:fc:ad:0e:70:ca:
24:fc:5a:62:d8:db:2e:80:9b:b6:01:d0:55:21:4c:8f:cb:84:
be:7b:07:45:73:11:5b:9a:ef:4a:cd:64:a2:dc:f3:3a:c3:2a:
f4:0c:08:12:ec:09:43:34:a7:40:10:68:89:fa:fa:d8:c2:ad:
ed:bb:6a:73:0a:b0:47:7e:00:74:69:8a:86:7a:19:24:f0:61:
3d:8e:fd:a9:30:35:97:cd:9f:34:ea:88:83:5f:e0:7d:3c:80:
45:0f:13:91:d7:b5:cd:43:d6:14:6a:d1:d1:2e:02:5e:c5:4f:
13:51:3b:cc:6d:ea:9e:a2:5e:ec:ad:f3:a5:0b:6d:bb:f2:a7:
ad:b4:2d:df:21:8c:43:48:76:10:f0:39:a7:cb:1f:20:ac:06:
08:75:94:5c:4f:66:44:78:7e:71:e0:c0:e1:f6:62:7b:5d:c1:
3c:f9:16:46:01:51:3b:2a:87:0b:4d:c8:ba:c8:a2:d9:50:9c:
09:80:64:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:00 2025 by rpki-client