Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K8FLY_vnA5nOz4Vp3rcZ1qYuJ4U.roa
File: K8FLY_vnA5nOz4Vp3rcZ1qYuJ4U.roa (raw, json)
Hash identifier: PfbseUR7X14bmRqAeRVZ6MhfBgkAxKvO3dUKfkVDbmQ=
Subject key identifier: 2B:C1:4B:63:FB:E7:03:99:CE:CF:85:69:DE:B7:19:D6:A6:2E:27:85
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0189E3C7F0ED0A35605B18AE0329D441D625
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K8FLY_vnA5nOz4Vp3rcZ1qYuJ4U.roa
Signing time: Fri 11 Aug 2023 08:47:58 +0000
ROA not before: Fri 11 Aug 2023 08:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46450
IP address blocks: 91.186.196.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e3:c7:f0:ed:0a:35:60:5b:18:ae:03:29:d4:41:d6:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 11 08:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bc14b63fbe70399cecf8569deb719d6a62e2785
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:02:39:01:ff:0c:93:c6:22:40:5d:c1:59:84:
ae:97:89:58:2e:92:0a:10:80:10:1d:23:f3:eb:66:
86:26:f9:c1:06:d6:2b:b6:7e:b6:af:43:be:c3:92:
57:4b:91:d5:8f:f4:a5:64:cf:cf:0e:de:d2:7c:17:
b8:7b:99:f2:73:7d:0c:33:78:71:98:fe:64:b2:d7:
c0:4d:a8:18:8a:40:6d:a3:ce:f9:e2:33:6b:2c:70:
8c:e4:79:30:68:42:16:c1:34:ab:bf:db:a5:f2:17:
23:b8:a3:56:82:6d:14:ad:e3:bb:74:df:78:df:29:
dc:b7:32:33:37:10:97:9c:ad:11:da:ed:ac:e3:c2:
28:fe:e2:86:71:01:b4:95:87:10:2a:c0:50:64:9b:
05:a9:fc:96:c4:64:47:ca:85:55:43:ae:ed:22:f9:
39:05:89:cc:6f:0c:89:09:de:c4:0a:3d:4b:be:c8:
88:de:81:53:01:be:c1:57:9f:b4:7f:2b:4c:d5:5c:
7e:1b:1a:15:8f:6d:19:65:f8:49:8c:38:b6:6b:24:
5e:a0:ca:65:7d:68:1f:02:12:4d:ca:1f:74:83:4d:
41:09:b1:21:38:ed:63:3f:03:84:51:05:4b:ed:f6:
e2:e0:c9:ae:ad:10:31:d4:60:97:61:e8:82:7f:17:
b7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C1:4B:63:FB:E7:03:99:CE:CF:85:69:DE:B7:19:D6:A6:2E:27:85
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/K8FLY_vnA5nOz4Vp3rcZ1qYuJ4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.196.0/22
Signature Algorithm: sha256WithRSAEncryption
22:99:32:9c:46:11:2e:9d:3a:82:c3:d9:0f:2e:0d:e2:7c:5a:
e2:74:b4:a6:21:10:61:08:5a:40:6d:c9:6a:8e:78:ab:c7:1f:
f3:16:04:b1:d0:e1:6a:13:9e:d7:a8:25:79:06:87:5b:9a:fa:
16:b1:77:96:a2:77:e7:e1:85:02:e6:05:07:28:4d:69:e8:5d:
77:b4:3a:68:4a:e8:47:16:1d:22:4c:d0:e6:0e:d7:0d:58:a1:
55:07:73:59:ba:01:90:44:c3:06:67:1f:5a:32:5c:a1:0a:2e:
7e:2f:8b:7a:4c:38:ad:38:b7:4d:7e:99:55:78:ae:2c:e7:ac:
41:0d:f5:c6:b7:6e:c2:4e:f6:72:56:da:95:c7:8c:ef:ca:66:
0e:73:8a:e9:ec:70:14:18:bc:08:84:77:9e:a4:a4:3d:e2:c4:
90:39:c2:ed:71:ac:c3:a7:f7:3f:8e:21:27:48:a8:fd:3a:4a:
92:96:0f:7c:b0:52:bf:6c:37:20:79:45:f4:8f:1d:fd:2d:f6:
90:4a:0b:f0:c9:ad:17:1d:6e:30:ef:ac:a1:ad:57:d3:ca:82:
cf:0b:4c:6c:33:af:0f:65:19:d0:bf:ba:42:8f:f8:bd:d8:10:
e2:4d:58:4a:11:2a:85:37:f7:e8:16:55:92:65:a4:f2:97:1e:
6c:b6:1f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 20 08:43:19 2023 by rpki-client on console-fra.rpki-client.org