Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KSM26LiW6FtH0gd3Zh1KMXiE6Uo.roa
File: KSM26LiW6FtH0gd3Zh1KMXiE6Uo.roa (raw, json)
Hash identifier: 8KndGY0vgOqm+BNYxB9WEe78MFhGoRtiL0rsSsUA0ls=
Subject key identifier: 29:23:36:E8:B8:96:E8:5B:47:D2:07:77:66:1D:4A:31:78:84:E9:4A
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0189F3DD8419B9947B6F3A57036B327FCE01
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KSM26LiW6FtH0gd3Zh1KMXiE6Uo.roa
Signing time: Mon 14 Aug 2023 11:45:28 +0000
ROA not before: Mon 14 Aug 2023 11:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.255.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Sep 2023 07:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:dd:84:19:b9:94:7b:6f:3a:57:03:6b:32:7f:ce:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Aug 14 11:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=292336e8b896e85b47d20777661d4a317884e94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:69:36:e5:05:ed:c6:c3:95:3d:62:6c:fc:1a:
20:3e:7f:cb:8b:9d:de:39:7e:09:28:33:ff:4d:80:
df:da:22:30:59:31:86:d3:8e:0a:ac:e3:6b:98:9e:
63:f3:8e:e8:45:91:c0:b5:e9:bb:db:06:90:2e:0f:
95:ba:27:b1:d7:57:d1:18:99:f1:08:4d:ca:a4:9b:
a0:06:c2:5d:1b:79:be:6a:0f:ef:3e:95:9e:e8:32:
eb:03:6f:69:b3:c4:f0:a7:3e:16:e2:89:f6:ec:6e:
5b:88:70:0b:11:60:00:64:a5:9a:77:82:d6:99:a1:
b9:cd:0e:68:8a:91:c1:ca:ff:aa:db:6a:76:93:9d:
81:b6:a0:76:48:a2:dc:fa:f9:14:20:69:ee:bc:71:
18:02:5a:f6:83:fa:a2:72:f7:7b:5b:cc:c2:10:83:
de:c9:30:20:7a:44:c4:c7:31:3a:96:cf:aa:93:d5:
50:ba:4d:18:6a:4f:05:9a:f8:c7:b0:1d:c5:26:ca:
95:7f:3c:58:6f:85:d2:c3:af:dc:4f:d1:ec:7e:9d:
82:46:ad:55:4c:dc:da:a8:00:57:a8:be:bb:5f:2a:
7f:36:32:66:bf:da:b2:26:fe:6a:9e:c2:1f:3c:df:
20:4e:5d:c9:fa:99:9a:29:5c:df:a8:05:38:ed:19:
46:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:23:36:E8:B8:96:E8:5B:47:D2:07:77:66:1D:4A:31:78:84:E9:4A
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/KSM26LiW6FtH0gd3Zh1KMXiE6Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:4a:5b:99:9c:d9:b4:52:cb:43:55:85:b8:00:e9:e8:d8:1f:
f0:bf:cd:e3:78:59:80:10:25:73:69:8c:78:01:5b:68:63:aa:
7f:c9:5f:d6:d3:e2:06:5e:c4:4c:9e:71:ff:54:e2:12:21:07:
28:c6:de:9f:74:92:ae:a2:b0:c2:04:e3:46:f6:48:c1:b4:10:
9f:be:69:f0:46:e9:4d:83:a0:a0:6b:b5:7b:85:df:18:ff:e3:
55:32:59:b8:1c:40:f5:54:5b:91:78:0a:11:e5:64:99:26:15:
e0:1e:a8:e3:aa:a3:d3:78:26:08:97:fb:e3:00:3a:16:61:c2:
90:0e:f0:dd:60:46:6e:f9:e6:e0:e6:88:e2:86:8c:bd:93:5c:
31:c2:b8:77:41:ba:8e:ab:29:69:06:89:97:9f:c1:4c:1a:bc:
d9:55:56:ec:63:d0:63:1d:51:ef:14:04:8c:2f:29:5e:f1:46:
64:b8:e0:0c:6b:6e:d0:d8:95:4d:79:4a:36:f3:fe:51:9d:c3:
57:9a:f2:b1:9b:7a:6f:19:2d:d7:e5:0f:f4:80:a0:92:1a:a7:
82:fe:cf:94:06:66:e9:8a:b3:1d:02:b9:2c:dc:6a:6c:24:ad:
de:31:00:54:00:8a:6b:b9:ab:85:6a:da:12:c9:78:98:97:72:
c6:db:f8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org