Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/KJj0BG3rT7cPYTYuvtbzOGwrpIg.roa
File: KJj0BG3rT7cPYTYuvtbzOGwrpIg.roa (raw, json)
Hash identifier: L6E5IiN1u29wAQ6UVvgDcVylT4D2wI2sGm6D2422kX8=
Subject key identifier: 28:98:F4:04:6D:EB:4F:B7:0F:61:36:2E:BE:D6:F3:38:6C:2B:A4:88
Certificate issuer: /CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Certificate serial: 01856F4B93B10AEC377C009F2DDD3BAB9664
Authority key identifier: 40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/KJj0BG3rT7cPYTYuvtbzOGwrpIg.roa
Signing time: Sun 01 Jan 2023 21:45:02 +0000
ROA not before: Sun 01 Jan 2023 21:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60723
IP address blocks: 185.23.168.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:93:b1:0a:ec:37:7c:00:9f:2d:dd:3b:ab:96:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b9cac935311e78034b4073830a81a3cf7b45d9
Validity
Not Before: Jan 1 21:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2898f4046deb4fb70f61362ebed6f3386c2ba488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:9b:44:83:61:e9:46:df:ef:3c:d5:fb:03:4f:
b7:bc:6e:ce:55:56:a8:86:6e:08:55:e4:48:71:5e:
77:b3:e4:82:04:62:cc:35:bb:57:40:6f:db:f8:84:
2a:84:6c:59:68:71:50:aa:5c:9e:4a:5e:49:ed:57:
54:f8:cd:ee:c2:fa:4f:7e:f2:58:2d:7e:75:83:28:
95:d8:54:92:cd:2f:82:c4:52:a9:5b:22:3b:1f:c5:
0e:5a:d0:b1:ba:2d:47:65:a4:30:31:20:92:c4:7d:
1e:48:5e:e5:f3:bc:da:f8:04:5f:02:c7:e1:38:ba:
62:01:90:71:ef:64:9b:c5:de:23:fc:c1:41:c3:1f:
85:fd:5a:10:cf:27:5f:fb:bb:f1:fc:1a:1c:c8:36:
f6:41:95:25:06:09:84:ee:dd:dc:cf:30:e3:bb:65:
76:38:14:88:65:af:d2:e3:3b:94:4d:0c:d1:9f:ac:
94:d7:d7:70:2d:cc:b7:24:7e:c3:6e:48:e7:2a:44:
32:da:10:88:95:92:c6:86:ef:53:5b:c8:6c:d8:b8:
29:84:35:33:48:b2:e6:f4:c6:7d:29:90:eb:31:53:
f4:3a:07:e8:66:66:ff:1e:de:6f:be:86:d0:13:9f:
cf:64:c5:6d:3a:79:5a:a8:83:c8:b5:60:9e:22:3a:
dc:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:98:F4:04:6D:EB:4F:B7:0F:61:36:2E:BE:D6:F3:38:6C:2B:A4:88
X509v3 Authority Key Identifier:
keyid:40:B9:CA:C9:35:31:1E:78:03:4B:40:73:83:0A:81:A3:CF:7B:45:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLnKyTUxHngDS0BzgwqBo897Rdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/KJj0BG3rT7cPYTYuvtbzOGwrpIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/285ab6-0109-44e1-bb2b-7534fe0f1b83/1/QLnKyTUxHngDS0BzgwqBo897Rdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.168.0/22
Signature Algorithm: sha256WithRSAEncryption
66:1a:3b:83:c5:88:ed:29:db:4e:0d:21:0a:e9:1b:2f:7b:a2:
c4:55:fb:62:c0:2b:34:69:2f:50:1f:c8:d6:ca:f5:89:dd:79:
a0:da:bb:77:7d:9d:b2:49:b3:e8:1b:ce:0c:a2:f3:62:13:8c:
20:32:91:6a:24:4f:bd:f3:27:83:1c:8d:ae:3a:1a:03:f1:05:
0c:cb:e7:f7:0f:43:dc:62:f8:d3:e2:56:e0:7f:dd:ab:80:a6:
f8:3b:8a:47:b2:2a:f7:90:91:45:f9:27:24:7b:4d:fe:04:c1:
4e:84:04:fe:a2:5a:75:95:aa:b7:96:b6:58:75:15:c4:e3:d6:
cc:b2:6f:cb:1d:1f:6a:d7:2c:c3:59:02:ed:97:a6:49:fd:24:
73:19:b0:9b:1d:47:77:65:37:7a:dc:a9:db:1b:7b:ca:ad:22:
bc:28:78:ca:0c:b3:d6:c3:fb:b8:56:75:3c:38:9d:78:30:da:
4d:7e:fe:6d:f0:5b:e0:90:40:92:33:76:8d:33:3b:66:5b:2b:
39:89:9f:75:c2:91:89:f1:69:89:9b:e9:14:9c:5a:db:3b:f5:
ce:52:f3:58:16:80:6b:25:dc:79:a0:ca:31:9b:08:a5:3e:4d:
fb:84:6b:e3:8a:fb:c5:5b:af:9a:8b:57:64:51:2c:9f:10:ac:
91:d3:46:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:40 2024 by rpki-client on console-fra.rpki-client.org