Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KP3kdGl_I6df0U4gXkVLxHsToBk.roa
File: KP3kdGl_I6df0U4gXkVLxHsToBk.roa (raw, json)
Hash identifier: yonK1hanAm4cW8GuKJqlCtcRjhIeu6enPX7i76EOr5A=
Subject key identifier: 28:FD:E4:74:69:7F:23:A7:5F:D1:4E:20:5E:45:4B:C4:7B:13:A0:19
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018775463842FF1E0F3847331E9AEE0236AE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KP3kdGl_I6df0U4gXkVLxHsToBk.roa
Signing time: Wed 12 Apr 2023 11:42:28 +0000
ROA not before: Wed 12 Apr 2023 11:42:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 45.90.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Apr 2023 08:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:46:38:42:ff:1e:0f:38:47:33:1e:9a:ee:02:36:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 12 11:42:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28fde474697f23a75fd14e205e454bc47b13a019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5d:b3:cb:cd:04:02:15:e7:3f:de:bb:83:5c:
d3:23:d6:da:dc:55:c2:47:84:38:86:3e:51:c9:25:
6c:ab:bd:9f:ae:29:4b:3a:5a:87:5d:8d:bf:56:11:
31:3b:14:37:8a:c7:8a:f0:88:a1:d9:38:7f:22:19:
9b:47:09:ba:44:0f:ba:6a:21:98:99:c9:1a:74:89:
60:01:13:f9:dd:67:d2:bd:66:39:72:98:a6:c7:d5:
ba:82:af:bb:88:8f:6a:4d:1f:1a:26:f4:a2:c3:d1:
1d:41:1d:47:3b:98:54:7f:f2:c0:45:ea:33:fa:70:
65:ab:a0:f3:83:bc:f3:24:5d:39:3e:f0:f0:d9:e7:
9d:72:41:08:cb:10:ed:41:f1:00:01:45:ce:32:8f:
ba:05:ab:f2:fc:19:2a:6a:e2:83:da:93:61:f6:38:
d4:d2:0b:d8:97:cd:b3:d7:be:b7:57:e2:d8:1d:df:
be:f6:19:c2:b1:38:a5:3e:9e:b9:d7:ca:28:59:03:
60:51:84:c1:30:64:1e:5f:78:db:9b:c2:d2:d2:b2:
0d:3f:c2:b8:6a:2d:51:bd:a4:f1:97:a1:10:6d:63:
e0:9a:19:a1:88:06:be:38:67:a1:09:6c:e5:b8:79:
9a:5a:96:43:82:32:1b:a7:6a:ca:88:6e:c0:20:70:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FD:E4:74:69:7F:23:A7:5F:D1:4E:20:5E:45:4B:C4:7B:13:A0:19
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/KP3kdGl_I6df0U4gXkVLxHsToBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.16.0/24
Signature Algorithm: sha256WithRSAEncryption
00:b1:38:3e:88:99:fa:24:b0:bd:39:a6:e2:4a:2c:11:4d:34:
2f:49:f5:7b:ea:a0:d9:6e:79:8f:f8:5b:08:33:f7:46:ab:e8:
b1:c0:02:86:31:f6:a4:30:3e:98:6c:2a:0e:9e:fe:47:64:b7:
ab:9b:0a:e6:c4:e1:43:48:25:79:b7:83:df:05:ff:e8:df:82:
52:39:40:a6:64:ce:86:0f:19:15:85:d3:b3:39:75:f2:19:9f:
9c:3e:f5:71:9c:38:d8:ee:5f:44:af:51:cf:9d:3a:21:e7:31:
e4:bb:7b:aa:7b:f6:4a:17:5a:d9:70:8e:79:89:4b:75:9b:4e:
a5:25:03:5b:57:74:3a:b8:da:a7:c1:40:2a:b2:6e:6c:db:94:
41:45:4f:09:29:b7:14:6d:9d:03:2a:ad:a2:e4:ee:2f:6b:17:
d6:c4:13:c6:a8:ef:63:11:c7:60:1c:15:a4:9a:af:f6:65:40:
04:ca:a4:41:fd:8e:f2:bf:ef:6f:57:97:21:f3:39:7c:f9:97:
bf:f7:f4:12:7d:d9:c2:ef:4d:22:b6:56:74:6f:44:bd:ae:2f:
3d:b6:88:15:2a:71:4f:e4:cc:6a:02:d0:7f:12:5d:7c:ac:1d:
c0:9f:67:de:aa:8c:5d:67:1f:57:90:df:a2:80:24:bb:40:16:
f8:79:7a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org