Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/KoNKA_iEROulN5e-PG8HO3ttYBw.roa
File: KoNKA_iEROulN5e-PG8HO3ttYBw.roa (raw, json)
Hash identifier: 2GMx1CUO9MFl7T86wMpcIQL+falyR/MFQ3T+wZqS8tk=
Subject key identifier: 2A:83:4A:03:F8:84:44:EB:A5:37:97:BE:3C:6F:07:3B:7B:6D:60:1C
Certificate issuer: /CN=52302a45d0568486051a7ec466f03108c320b4c4
Certificate serial: 01856DA65E28116085F6A32810E97DB6DE83
Authority key identifier: 52:30:2A:45:D0:56:84:86:05:1A:7E:C4:66:F0:31:08:C3:20:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/KoNKA_iEROulN5e-PG8HO3ttYBw.roa
Signing time: Sun 01 Jan 2023 14:04:57 +0000
ROA not before: Sun 01 Jan 2023 14:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 94.124.112.0/24 maxlen: 24
2a0c:b280::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:5e:28:11:60:85:f6:a3:28:10:e9:7d:b6:de:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52302a45d0568486051a7ec466f03108c320b4c4
Validity
Not Before: Jan 1 14:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a834a03f88444eba53797be3c6f073b7b6d601c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c0:13:b2:df:cb:d5:6b:46:d3:b5:0e:b8:43:
c2:67:cc:b4:a2:b0:97:0c:18:6c:39:10:86:99:98:
61:ef:d3:1b:f2:7a:5b:8b:5e:ba:57:91:21:ae:ab:
6c:18:c1:83:40:66:7a:97:a0:54:61:f0:36:e8:b2:
00:88:8f:cf:6d:71:ca:8f:83:1e:1e:e2:a6:48:3e:
e1:6d:42:cf:0e:8c:3d:10:47:bf:7c:5d:57:fb:ab:
0f:7c:05:21:e1:cd:25:ca:fc:6f:98:83:b9:8c:4b:
d8:a1:71:07:37:35:88:72:1d:4b:58:73:41:6c:e5:
e7:a4:2c:22:df:df:d0:10:c7:4a:4f:7a:3a:1d:6c:
dd:cf:e8:92:58:05:cf:bd:b9:41:d2:83:af:16:2a:
e9:4e:28:25:2b:e9:c5:9e:60:3c:30:29:29:9b:61:
0b:01:81:aa:30:e3:36:76:7f:9c:13:1f:08:49:9f:
93:42:d4:55:85:7c:f5:7d:14:38:4e:1c:04:af:f1:
8f:51:30:9b:7a:ae:61:8f:b7:87:e8:f9:b0:d9:43:
86:54:b7:62:93:43:7b:66:1e:05:bc:e2:7c:88:c1:
c2:ed:4a:71:71:69:8d:b4:81:56:42:a4:0a:c6:44:
17:cc:cd:c7:48:08:6f:93:f7:e0:65:10:b0:11:08:
46:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:83:4A:03:F8:84:44:EB:A5:37:97:BE:3C:6F:07:3B:7B:6D:60:1C
X509v3 Authority Key Identifier:
keyid:52:30:2A:45:D0:56:84:86:05:1A:7E:C4:66:F0:31:08:C3:20:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/KoNKA_iEROulN5e-PG8HO3ttYBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.112.0/24
IPv6:
2a0c:b280::/48
Signature Algorithm: sha256WithRSAEncryption
71:34:41:d9:08:ff:63:ca:8a:81:b7:70:b7:d5:c4:2a:64:1b:
52:43:d4:dc:87:d4:62:73:7a:27:c1:33:78:3d:9f:5c:ef:a5:
8c:b7:e6:08:e8:89:7b:08:52:57:79:a6:79:16:60:4c:d9:46:
89:0e:3a:5f:7d:83:dd:01:31:fd:05:38:54:3a:f0:6a:7b:6e:
e6:51:01:22:73:b0:5f:86:19:7a:84:96:15:f6:60:4c:c0:ca:
f7:89:e7:56:1c:b5:63:b9:35:35:36:bb:e1:d9:00:bc:4b:ff:
d8:78:bd:d0:b4:0e:12:4e:3d:79:79:23:d1:ba:63:cc:92:06:
81:36:c2:a8:32:b4:2f:b5:a6:78:44:76:5e:33:c4:d4:38:1b:
5a:a6:49:11:2c:8b:a5:53:c7:7c:20:db:c5:e7:24:f1:21:00:
16:0c:35:7f:83:20:61:f6:12:58:bc:85:a1:ed:01:f4:e3:a8:
7f:09:e7:ad:1b:3e:c1:8d:78:31:79:ff:b4:30:a1:72:36:ec:
e6:da:dd:c3:fa:8b:b7:10:64:e7:29:01:cd:87:61:5c:04:23:
b2:e0:f3:24:17:00:52:68:e8:60:dd:6d:cb:05:bc:c6:22:30:
3a:d4:4e:b9:87:64:10:87:08:e8:a0:14:39:e1:e6:48:49:9e:
ba:7f:e3:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:06 2024 by rpki-client on console-ams.rpki-client.org