Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6363ce-c8a0-4961-ae80-d5a785517bbf/1/KzI94ek7OcNKDg4WGjxhpvHN_Xc.roa
File: KzI94ek7OcNKDg4WGjxhpvHN_Xc.roa (raw, json)
Hash identifier: aPS3wofqONLogxs9sJs4HChskPwjunFeiLSdJc/1C3k=
Subject key identifier: 2B:32:3D:E1:E9:3B:39:C3:4A:0E:0E:16:1A:3C:61:A6:F1:CD:FD:77
Certificate issuer: /CN=a79f3ad3142a2c02f992b96ab0b9b6390af7fe02
Certificate serial: 018C14DF34CB911233D67CD138DC35AC9A5B
Authority key identifier: A7:9F:3A:D3:14:2A:2C:02:F9:92:B9:6A:B0:B9:B6:39:0A:F7:FE:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5860xQqLAL5krlqsLm2OQr3_gI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6363ce-c8a0-4961-ae80-d5a785517bbf/1/KzI94ek7OcNKDg4WGjxhpvHN_Xc.roa
Signing time: Tue 28 Nov 2023 07:40:21 +0000
ROA not before: Tue 28 Nov 2023 07:40:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14907
IP address blocks: 193.46.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:14:df:34:cb:91:12:33:d6:7c:d1:38:dc:35:ac:9a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79f3ad3142a2c02f992b96ab0b9b6390af7fe02
Validity
Not Before: Nov 28 07:40:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b323de1e93b39c34a0e0e161a3c61a6f1cdfd77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a8:1d:af:79:ba:f3:61:5a:74:dc:63:be:51:
28:fe:2a:28:62:6e:f3:f0:0e:9e:ce:08:9d:e4:50:
d8:bc:8c:85:7e:97:1b:47:2a:71:b0:b6:85:95:ec:
2e:c5:6f:e7:a2:c3:2a:a1:1c:9b:a6:b7:57:d2:0f:
25:fd:ce:86:ea:50:f3:81:e1:85:a5:7b:8b:de:68:
33:f3:15:26:aa:9a:21:d8:d8:5e:ce:b5:db:06:0d:
da:25:1f:aa:42:94:f1:ff:51:96:5c:b9:a8:2c:d6:
1a:eb:56:41:4a:c7:1e:43:07:38:84:93:b7:50:8f:
85:e4:b7:ef:01:a3:77:fc:84:a2:e7:e2:b9:93:c2:
42:c4:55:d1:7d:6c:9e:a9:4c:a6:06:21:de:90:74:
a0:8b:21:55:1c:ba:15:fe:93:31:cd:c4:13:3c:e4:
9f:c2:68:ec:7d:b3:20:9b:49:ce:9c:6b:d7:27:78:
d4:69:f3:10:b7:9d:5f:86:87:43:7a:d4:6c:91:19:
75:9c:eb:8b:5f:c9:ad:60:34:bd:23:0f:0d:72:27:
ba:80:0b:a6:e1:75:c1:bd:d3:61:0c:83:dc:a1:4e:
88:e0:4a:93:6f:b0:e3:9c:b8:81:70:d3:47:fe:a3:
f6:5b:f2:a7:04:1c:a7:71:04:23:5f:f3:7f:9c:31:
f7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:32:3D:E1:E9:3B:39:C3:4A:0E:0E:16:1A:3C:61:A6:F1:CD:FD:77
X509v3 Authority Key Identifier:
keyid:A7:9F:3A:D3:14:2A:2C:02:F9:92:B9:6A:B0:B9:B6:39:0A:F7:FE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5860xQqLAL5krlqsLm2OQr3_gI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6363ce-c8a0-4961-ae80-d5a785517bbf/1/KzI94ek7OcNKDg4WGjxhpvHN_Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6363ce-c8a0-4961-ae80-d5a785517bbf/1/p5860xQqLAL5krlqsLm2OQr3_gI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.90.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:b1:a8:de:b5:f4:13:65:00:75:63:d8:f6:0a:e1:f9:e0:ff:
13:00:0c:6a:1a:87:4c:7c:48:5b:53:1c:78:f5:21:80:b6:99:
7f:3d:b6:c7:53:cd:2c:97:b5:09:dd:fe:2b:12:6e:12:4d:0f:
4b:21:60:0f:fd:55:83:cb:2f:be:af:b4:7b:9e:22:69:9b:3c:
dd:c5:23:39:55:d8:2a:7b:d8:da:ed:35:ee:b0:d9:11:51:b1:
55:d3:1e:db:49:0c:bd:7f:e6:d1:be:ba:57:17:25:97:69:ec:
f8:43:3e:0f:f4:53:b3:99:25:cb:fc:ec:7b:a7:c6:d1:05:d9:
65:9e:c8:10:0b:81:92:b4:a9:2d:15:fa:96:97:10:fa:3a:92:
fa:ed:8f:c8:0f:d4:d2:00:87:1b:20:b9:cc:db:6f:a2:f1:ad:
60:d4:a8:20:83:97:cd:28:fb:fa:a8:27:b9:e9:08:c5:65:80:
f9:dd:e0:7e:67:61:79:70:f7:76:98:f6:1f:f8:da:e8:5f:8b:
93:95:a0:85:48:b5:52:43:45:c0:4b:19:fc:7c:13:b2:80:86:
a5:f1:10:14:2b:5b:39:17:d0:56:13:87:78:31:67:0e:6f:c7:
b7:a3:89:c0:16:9b:c5:f6:b6:2c:19:ce:02:50:05:8c:03:45:
82:d9:cc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:01 2024 by rpki-client on console-fra.rpki-client.org