Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/K5EYL34l20ejOycAuJJU7bGIYuA.roa
File: K5EYL34l20ejOycAuJJU7bGIYuA.roa (raw, json)
Hash identifier: 8JvGu6MJfeZu/Qa/BMfHa8OWuxgNaxWedO/+Dv7Ax0o=
Subject key identifier: 2B:91:18:2F:7E:25:DB:47:A3:3B:27:00:B8:92:54:ED:B1:88:62:E0
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018920DB4EFB1F504F135229928C3BBA64CF
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/K5EYL34l20ejOycAuJJU7bGIYuA.roa
Signing time: Tue 04 Jul 2023 12:23:10 +0000
ROA not before: Tue 04 Jul 2023 12:23:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205320
IP address blocks: 185.149.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 05:18:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:db:4e:fb:1f:50:4f:13:52:29:92:8c:3b:ba:64:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Jul 4 12:23:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b91182f7e25db47a33b2700b89254edb18862e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:ac:78:c3:30:59:52:e2:46:74:1f:d1:46:
50:40:19:c6:c0:08:57:e6:d8:92:e5:df:52:45:0f:
61:77:76:7c:c6:ef:20:f9:ed:71:7c:b3:b2:bf:29:
86:d6:cc:a6:86:0e:e7:9d:59:a3:b6:82:f9:36:7b:
04:27:52:dd:ce:cd:10:19:cc:72:ce:bd:0b:53:ff:
68:3b:3f:e4:00:18:59:f5:55:8d:2e:0b:56:d9:36:
de:1f:45:71:f3:77:ab:55:be:d3:42:ef:e5:b1:08:
0d:04:45:11:6f:5f:0e:d8:01:3d:9c:74:67:59:18:
c1:f0:d9:99:28:46:71:fa:6c:57:92:81:aa:3a:1a:
99:68:44:52:7a:ae:23:5a:a8:7d:5d:cb:30:fe:20:
74:0b:be:55:fc:e0:d8:56:fc:b7:f5:43:44:c4:f0:
81:bc:9a:2f:00:42:98:34:f5:7a:76:5f:e1:15:b0:
ca:ab:78:05:2b:87:60:9c:dc:46:f9:9e:16:26:5b:
93:a6:fe:7e:8b:fc:17:36:c8:8a:f1:9a:57:e3:d0:
ee:6c:f6:4b:df:7a:69:bb:98:0f:aa:79:6c:d0:90:
1f:f3:61:65:4d:e1:d6:ef:b6:3f:1d:09:39:81:3a:
27:56:ab:ca:be:b5:f4:c0:78:5e:bb:3c:bc:58:27:
df:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:91:18:2F:7E:25:DB:47:A3:3B:27:00:B8:92:54:ED:B1:88:62:E0
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/K5EYL34l20ejOycAuJJU7bGIYuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.151.0/24
Signature Algorithm: sha256WithRSAEncryption
84:d1:23:0a:94:20:8d:6b:5d:9e:7f:06:b6:c5:8f:0d:cc:72:
08:d1:b1:df:b1:2d:a0:37:a6:80:b0:d0:d3:ab:66:d2:fb:ca:
ed:78:4c:d1:30:5f:b4:fe:92:6e:fd:13:34:75:be:a2:2e:88:
f3:2f:4c:f0:e3:bd:1d:4f:b8:1d:f6:9a:9e:e2:57:49:70:2e:
d9:71:6e:f6:5d:b2:ac:65:0a:2e:72:a5:a2:39:6a:b2:db:89:
63:4b:76:f1:38:26:78:9d:21:e5:88:fc:ca:c8:08:9e:8b:8f:
ca:46:67:84:f0:88:2e:0f:80:e9:c8:e9:a0:97:32:12:78:78:
64:20:6b:bb:c3:82:28:15:ec:8a:2a:a1:98:90:e0:a5:c7:59:
98:0b:b5:fa:56:1d:c7:47:91:a9:55:19:7e:29:4c:3e:d9:fa:
d4:ac:12:f5:61:cc:9c:08:a4:5b:ff:bd:46:64:b8:55:7a:f8:
5e:34:98:1e:82:a5:d7:f8:e4:82:6a:12:56:85:b5:13:03:c0:
cc:dd:54:e3:a5:a5:c9:c9:5e:b6:52:6e:74:5c:ee:95:5c:9f:
e1:2e:bc:db:30:2c:b7:f6:5c:3a:0d:2a:d4:14:77:26:08:68:
2a:c4:8c:f0:e9:ab:9d:52:82:e8:5f:7a:45:89:02:a3:7c:07:
38:6a:ab:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org