Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/KMICHT45QokksxD_OaChrh-4rU4.roa
File: KMICHT45QokksxD_OaChrh-4rU4.roa (raw, json)
Hash identifier: DxC96g5Y6xISKQ6nY5aFjJN4e/y5LRm8nS4WpcGQL20=
Subject key identifier: 28:C2:02:1D:3E:39:42:89:24:B3:10:FF:39:A0:A1:AE:1F:B8:AD:4E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 019035985834AC5BBB683316C84066F29E76
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/KMICHT45QokksxD_OaChrh-4rU4.roa
Signing time: Thu 20 Jun 2024 12:21:34 +0000
ROA not before: Thu 20 Jun 2024 12:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209854
IP address blocks: 45.135.184.0/24 maxlen: 24
45.144.227.0/24 maxlen: 24
62.197.144.0/24 maxlen: 24
62.197.145.0/24 maxlen: 24
62.197.146.0/24 maxlen: 24
62.197.147.0/24 maxlen: 24
62.197.148.0/23 maxlen: 24
62.197.150.0/24 maxlen: 24
62.197.151.0/24 maxlen: 24
62.197.152.0/24 maxlen: 24
62.197.153.0/24 maxlen: 24
62.197.154.0/23 maxlen: 24
62.197.156.0/22 maxlen: 24
91.190.101.0/24 maxlen: 24
92.62.120.0/24 maxlen: 24
92.62.121.0/24 maxlen: 24
92.62.122.0/23 maxlen: 24
185.244.139.0/24 maxlen: 24
193.218.35.0/24 maxlen: 24
194.169.168.0/22 maxlen: 24
212.119.32.0/23 maxlen: 24
212.119.34.0/24 maxlen: 24
213.109.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jul 2024 18:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:35:98:58:34:ac:5b:bb:68:33:16:c8:40:66:f2:9e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jun 20 12:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28c2021d3e39428924b310ff39a0a1ae1fb8ad4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e0:e8:11:22:2b:02:5f:7f:49:09:48:13:73:
8f:6a:e7:9c:97:c5:e5:12:f2:aa:e2:98:e9:37:3c:
92:e5:5d:a0:18:1d:15:3d:f2:e3:5e:27:f8:50:eb:
77:66:86:c2:72:e9:12:16:96:31:32:b7:2f:4b:54:
fc:6d:08:60:e5:7b:41:dc:4a:6c:12:9d:45:ea:7c:
67:02:ba:24:fe:36:91:88:5e:7c:00:53:44:86:29:
b2:b1:3b:50:9e:46:e8:c1:a2:ac:8d:a4:23:32:51:
ae:50:6c:89:c0:d4:b0:89:57:57:1d:b3:25:2b:02:
47:0b:d4:71:d1:8b:09:25:d4:dc:8f:49:5f:2b:13:
62:84:0e:f9:dc:c5:fe:7e:42:97:78:18:28:dc:34:
b9:7c:06:b3:36:26:38:03:fc:bc:90:f6:ef:3f:29:
c2:39:33:71:a5:36:51:ab:dd:8a:50:b7:da:e7:76:
87:3e:aa:e0:e2:8a:c3:93:3e:0d:96:85:aa:97:85:
5d:ab:b9:f8:e7:82:fd:29:9f:b1:1b:19:ab:65:e5:
fd:27:63:12:60:37:8a:c2:13:d4:6b:8f:d2:32:78:
b3:65:e3:5b:99:0b:84:71:33:bd:d8:f4:4d:22:f2:
cc:ab:36:49:47:29:28:af:02:06:cf:a2:9f:89:b5:
e5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C2:02:1D:3E:39:42:89:24:B3:10:FF:39:A0:A1:AE:1F:B8:AD:4E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/KMICHT45QokksxD_OaChrh-4rU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.184.0/24
45.144.227.0/24
62.197.144.0/20
91.190.101.0/24
92.62.120.0/22
185.244.139.0/24
193.218.35.0/24
194.169.168.0/22
212.119.32.0-212.119.34.255
213.109.151.0/24
Signature Algorithm: sha256WithRSAEncryption
74:13:15:e8:3a:37:75:17:3c:df:ad:49:bd:6d:06:f7:95:c3:
25:23:ed:ce:aa:46:ae:d0:95:a8:ad:db:f5:20:73:32:6d:13:
3c:7d:a2:b0:a2:d8:78:0e:ed:5c:e2:3a:6f:f7:41:e3:a8:9b:
d4:3b:9e:0a:f1:7a:2c:83:52:90:46:fc:3b:cd:50:43:d7:2a:
82:33:3b:d9:c7:20:e6:fa:72:d6:be:1f:52:f6:4c:ad:4d:3e:
29:d3:f0:b6:0c:7a:fc:8c:6e:73:95:e5:16:8c:94:fa:6b:58:
29:c6:e0:cf:1a:80:f5:55:dd:48:df:0f:2d:9d:2b:97:e4:c8:
7a:89:d4:ed:81:49:94:59:f6:11:ac:7c:4e:fb:a1:2f:e7:90:
5f:bc:e4:fc:9e:5f:47:87:5a:b0:84:df:36:5e:6c:0f:bd:f6:
fa:16:2d:d8:2f:27:33:68:24:cb:e5:71:42:36:88:16:c0:6f:
3f:3e:3c:52:6e:0a:48:b2:f7:5c:d7:8b:aa:a3:78:8e:34:a4:
fd:6b:5a:24:9d:3c:8b:12:8c:ee:27:8b:43:b0:59:3a:bd:81:
4d:4d:35:5e:40:9a:87:b9:a0:0d:62:b6:86:14:b6:a0:16:55:
c4:42:13:91:20:fb:f6:26:08:b8:8e:48:9c:c7:44:df:94:bb:
df:38:ef:06
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jul 9 20:20:31 2024 by rpki-client on console-fra.rpki-client.org