Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/KdJn19tPQTn7GYwEDMNyts2_KWM.roa
File: KdJn19tPQTn7GYwEDMNyts2_KWM.roa (raw, json)
Hash identifier: vrqE+sMSx8cwucJrvxjR1ULxWZ3dv77ZogaYIWu2Y5I=
Subject key identifier: 29:D2:67:D7:DB:4F:41:39:FB:19:8C:04:0C:C3:72:B6:CD:BF:29:63
Certificate issuer: /CN=3c52f8c17df46f863360e032fa9d31689e4af6f1
Certificate serial: 01856F9DF3CD3B7967820F44130AAFF32DFC
Authority key identifier: 3C:52:F8:C1:7D:F4:6F:86:33:60:E0:32:FA:9D:31:68:9E:4A:F6:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PFL4wX30b4YzYOAy-p0xaJ5K9vE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/KdJn19tPQTn7GYwEDMNyts2_KWM.roa
Signing time: Sun 01 Jan 2023 23:15:00 +0000
ROA not before: Sun 01 Jan 2023 23:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6798
IP address blocks: 193.243.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:f3:cd:3b:79:67:82:0f:44:13:0a:af:f3:2d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c52f8c17df46f863360e032fa9d31689e4af6f1
Validity
Not Before: Jan 1 23:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29d267d7db4f4139fb198c040cc372b6cdbf2963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:36:21:d2:0c:10:fc:c2:1b:41:5e:95:e9:3c:
a5:b2:27:21:50:fd:07:b9:d8:3a:9d:93:ff:3b:8f:
5f:73:35:f2:90:12:a3:1e:78:1a:16:9b:4c:65:05:
53:e8:c5:82:73:02:17:06:b7:34:e5:27:f1:ac:a4:
6b:3f:6d:9c:42:49:d0:50:b4:ad:32:91:cc:2d:ca:
83:84:4d:47:5a:c5:9d:c0:d2:3e:a8:66:6e:1d:97:
1c:62:ae:28:4b:39:92:61:c4:8f:66:46:7c:b8:3b:
d8:8a:37:d2:49:f5:20:c2:a7:90:2a:d1:14:2b:fb:
6a:db:ec:4f:fb:e9:1b:de:b1:1e:26:e6:59:21:c6:
6c:4e:a2:e6:3b:f0:1a:0d:8d:06:68:d4:47:d9:af:
55:05:ad:4a:ed:a0:9e:20:a1:2d:97:b9:78:0c:8a:
39:ba:4c:ae:f3:c0:04:c3:35:cd:c4:0a:81:15:6d:
ea:8b:59:33:ef:70:3b:65:9d:12:f7:c6:38:53:01:
d2:66:86:5f:5a:b0:7c:04:5b:1e:67:07:58:df:f0:
a7:65:10:3b:b0:48:e3:ca:77:f2:e2:ef:72:e1:17:
4d:a6:b8:69:a0:ba:4a:0f:d1:62:c4:56:e3:d6:00:
e2:87:b1:b1:83:d5:70:1a:ea:a1:27:3a:fd:33:af:
0f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D2:67:D7:DB:4F:41:39:FB:19:8C:04:0C:C3:72:B6:CD:BF:29:63
X509v3 Authority Key Identifier:
keyid:3C:52:F8:C1:7D:F4:6F:86:33:60:E0:32:FA:9D:31:68:9E:4A:F6:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PFL4wX30b4YzYOAy-p0xaJ5K9vE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/KdJn19tPQTn7GYwEDMNyts2_KWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/901012-0e2c-41ba-8734-bf06d7873f02/1/PFL4wX30b4YzYOAy-p0xaJ5K9vE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.243.162.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:23:c7:aa:2c:0d:1c:0e:97:22:92:99:6f:5d:d9:cc:6a:1e:
5d:1f:57:c3:54:46:80:40:dc:61:b0:28:fa:72:85:93:66:c2:
8b:71:52:16:a3:c7:33:01:5b:64:29:12:4a:54:fa:fe:18:34:
ba:83:bf:02:27:49:64:b3:53:d5:53:f8:5c:17:cd:9b:95:dd:
c3:48:39:9d:43:c2:0c:f6:c8:46:a1:83:90:af:7f:4d:ed:6d:
fe:ee:d0:03:9f:5f:f0:22:26:81:d3:ea:f2:f3:91:ec:37:60:
1d:e6:e1:71:8c:fd:b7:82:38:7e:86:c2:60:c7:86:c3:ba:12:
ce:a1:03:1c:f5:12:8b:01:a0:e4:68:97:3d:17:f1:47:c9:97:
4e:06:2d:28:e7:79:8d:cc:ae:27:b3:23:ac:76:7d:9b:17:fb:
94:d0:41:7a:4c:45:67:2f:e0:dd:46:b2:71:e7:6c:a9:47:9a:
8a:66:9c:49:a0:e1:97:85:b2:36:bb:1a:2e:8e:22:d2:ca:35:
00:20:39:51:76:0d:84:9a:67:07:3a:f8:43:4d:c9:55:63:37:
15:95:fa:7f:51:51:3a:0a:d7:e9:d6:de:62:15:f2:4f:4b:68:
f5:c1:ed:ef:7f:26:1e:94:f8:d6:04:0c:16:95:e1:a1:dd:9d:
10:82:b1:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:35 2024 by rpki-client on console-fra.rpki-client.org