Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/_kKukbsc_dgAV-Cytn98qZ0wI5A.roa
File: _kKukbsc_dgAV-Cytn98qZ0wI5A.roa (raw, json)
Hash identifier: MVF/dby5rkH9Qw3uhuONer1nU5BEomnewehALU6KYnI=
Subject key identifier: FE:42:AE:91:BB:1C:FD:D8:00:57:E0:B2:B6:7F:7C:A9:9D:30:23:90
Certificate issuer: /CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Certificate serial: 018573B19BCB7E6D3F32E4B3392B0804129E
Authority key identifier: 48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/_kKukbsc_dgAV-Cytn98qZ0wI5A.roa
Signing time: Mon 02 Jan 2023 18:14:57 +0000
ROA not before: Mon 02 Jan 2023 18:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16235
IP address blocks: 185.186.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:9b:cb:7e:6d:3f:32:e4:b3:39:2b:08:04:12:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Validity
Not Before: Jan 2 18:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe42ae91bb1cfdd80057e0b2b67f7ca99d302390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d4:67:83:ac:dd:02:6d:90:61:85:7e:c0:9a:
c7:0f:ca:cf:5e:95:35:16:4e:59:08:b2:d1:c0:6c:
bd:4c:29:6a:30:c7:7d:68:f2:24:36:93:de:ec:32:
ca:3e:3e:f4:01:e5:c6:d1:48:f8:34:c5:18:b1:14:
fa:a8:a8:ec:44:95:07:36:35:64:d7:cb:6f:1b:7c:
30:47:b0:cb:32:86:91:92:ba:04:98:aa:46:8c:a2:
4c:2c:84:3d:f6:37:2f:53:d1:d9:65:dc:61:b7:61:
36:03:d7:6b:d5:d5:0f:72:e2:7f:e6:40:4f:f5:f2:
97:bc:b9:2e:53:5f:c0:e7:53:30:5a:bb:61:15:36:
58:e3:0a:78:5d:d1:20:bc:a2:33:90:51:8b:60:96:
8f:5f:c0:63:50:50:71:b5:ac:98:49:50:84:7f:b7:
00:43:20:96:5a:a6:b5:5c:78:f8:ee:33:83:9e:ef:
a4:42:9a:ab:4f:10:04:da:d9:86:2c:f9:58:d0:d3:
85:27:56:f4:2b:16:e4:90:57:b2:54:9c:a8:91:5e:
aa:ad:97:af:3c:c3:55:e9:39:4c:7f:94:4f:88:ad:
3b:53:ff:be:ed:d8:4a:b9:33:c0:e5:1e:e3:34:c3:
50:6e:45:d7:ba:dd:24:ab:b2:84:be:e0:6d:ac:8d:
d5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:42:AE:91:BB:1C:FD:D8:00:57:E0:B2:B6:7F:7C:A9:9D:30:23:90
X509v3 Authority Key Identifier:
keyid:48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/_kKukbsc_dgAV-Cytn98qZ0wI5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/SAGluBYVjweoyorLN-l-LyCwaRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.241.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:1f:c5:93:8c:c2:a3:34:51:e4:78:2e:f1:18:1f:cf:5e:b4:
10:f3:51:3c:52:21:b4:c6:05:d6:6d:bf:10:24:c1:ea:8b:38:
62:8c:d5:3e:61:f9:bc:00:db:81:d9:7f:69:0a:79:aa:71:bf:
26:7b:86:dd:e3:d0:03:c1:88:2e:b3:0e:6c:4d:67:11:68:c6:
f6:c9:a9:53:2c:59:bd:22:2d:aa:2b:97:22:4e:83:95:5b:61:
eb:5d:51:52:fd:aa:0f:61:49:90:58:b9:00:32:b2:27:86:64:
0f:cb:cd:b4:39:6e:f9:b2:a9:a5:02:4f:b1:dd:01:dc:8f:14:
3e:f4:84:b1:6f:d2:56:c2:ed:c9:68:87:d9:1f:a0:7c:6e:b6:
bb:fe:55:9c:a6:96:47:0a:43:73:d4:01:5c:3e:88:d2:e1:18:
73:a3:9a:99:e7:0b:ff:c0:e5:9e:36:64:4a:e5:f2:f3:85:cf:
c9:13:c7:24:8c:78:e1:59:14:38:2e:a0:aa:1a:ce:c9:96:2b:
24:a7:53:50:f2:8f:d1:14:01:aa:c1:be:2f:36:7e:a3:8f:9e:
70:22:09:b9:1f:e7:aa:fb:4a:91:4b:e8:dc:c4:81:be:98:e0:
96:84:c8:2a:e3:b7:47:04:62:f9:fe:bc:8b:c9:54:65:be:04:
be:5e:28:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:46 2024 by rpki-client on console-ams.rpki-client.org