Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kyAC-UrVhAfB0dDH2EFs2XB4yAI.roa
File: kyAC-UrVhAfB0dDH2EFs2XB4yAI.roa (raw, json)
Hash identifier: gGKZhZOxAVrW9RqX7oejMcK0ihr7rx/8jRmq2MshVgE=
Subject key identifier: 93:20:02:F9:4A:D5:84:07:C1:D1:D0:C7:D8:41:6C:D9:70:78:C8:02
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AD1B257956C0D07B41009A75F5062
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kyAC-UrVhAfB0dDH2EFs2XB4yAI.roa
Signing time: Mon 02 Jan 2023 17:15:06 +0000
ROA not before: Mon 02 Jan 2023 17:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202676
IP address blocks: 185.156.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:d1:b2:57:95:6c:0d:07:b4:10:09:a7:5f:50:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=932002f94ad58407c1d1d0c7d8416cd97078c802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:99:92:73:2f:45:1c:a5:b7:b1:fd:1a:14:9c:
4f:cd:ae:5d:89:4f:05:e7:67:89:b6:f7:7c:1e:f9:
98:62:bd:e4:bc:c5:ef:dd:de:3e:de:3a:d7:12:8e:
7c:8e:5e:9b:5b:ca:6e:3b:2d:a9:46:5c:5f:e7:41:
87:d0:bd:e9:44:f8:7b:0e:c6:17:d4:a2:2b:72:ed:
11:c0:e3:9a:27:02:d2:63:49:11:97:b1:c6:c2:c4:
54:e4:ad:36:2b:92:01:a8:8c:09:d2:06:6c:87:be:
b7:8d:67:f2:3a:0a:0a:23:3e:42:92:e6:eb:21:88:
5f:e6:f1:e1:f7:db:4a:2d:8f:e9:fa:40:ba:22:3c:
ea:6e:31:4f:0e:e9:6c:9e:d7:4b:17:81:a1:49:c0:
2d:10:d6:b7:8a:02:07:71:20:46:eb:a2:70:54:10:
8f:58:e0:c9:56:6b:8d:19:50:d1:0e:35:de:d3:f3:
74:22:5b:59:59:65:83:1c:3f:8b:d6:90:72:b9:30:
1d:35:d0:5c:d7:32:7b:8b:ca:b6:e3:75:23:68:bc:
49:38:7a:58:ec:64:89:41:22:64:f7:5a:0a:b3:c5:
60:9e:9d:dc:ec:46:a9:4c:94:28:be:92:80:28:9a:
c8:f0:32:5c:7c:2f:1b:14:02:af:f8:69:1a:92:ff:
5f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:20:02:F9:4A:D5:84:07:C1:D1:D0:C7:D8:41:6C:D9:70:78:C8:02
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/kyAC-UrVhAfB0dDH2EFs2XB4yAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.248.0/22
Signature Algorithm: sha256WithRSAEncryption
40:50:c3:1e:44:84:62:b6:07:57:14:00:ea:cd:58:14:7a:51:
e1:03:e6:63:07:1a:d3:d0:b1:9a:37:fb:dd:de:23:db:0b:8b:
6f:84:d5:b7:ca:f6:be:3d:ae:13:27:9d:71:a7:15:a7:42:d9:
03:63:f5:14:9c:fd:98:28:4c:02:bc:1f:d1:35:fb:ff:f5:36:
56:d2:bc:54:f3:ff:3a:25:45:a8:af:28:40:92:ac:47:4c:54:
24:5d:72:b9:59:74:03:18:b2:5c:9c:e2:e2:7e:e0:40:66:c6:
c2:b0:cc:22:dd:aa:04:f5:14:b3:0a:81:e1:1b:33:0d:d3:fd:
93:03:0e:ed:57:ec:dd:2f:a8:88:fc:fc:5f:a3:51:9e:12:a6:
8c:57:18:cf:3b:8a:ce:14:02:32:ba:5b:8e:ee:fc:1e:6e:3c:
d6:92:ae:34:34:ea:2c:d1:36:a5:c5:ae:a8:70:b8:3a:cc:18:
10:c3:da:25:cb:ae:2d:14:9d:f7:50:8b:92:ff:b3:6b:36:89:
b5:e6:44:25:37:51:86:d4:c2:07:df:55:d1:64:ed:b7:b2:c3:
68:be:07:22:7e:ef:fc:50:81:14:ae:ab:fb:6a:34:cd:7d:bc:
3d:3d:1d:c0:f5:ec:69:60:03:9b:cd:9b:1c:91:ad:eb:ed:5b:
97:cf:9f:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org