Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/khlICLHk1h2p2kq-pEUmW5VZzig.roa
File: khlICLHk1h2p2kq-pEUmW5VZzig.roa (raw, json)
Hash identifier: +D1ZL2WpihnznP3rwXdvume9e8a+827G8DgctaJY8QU=
Subject key identifier: 92:19:48:08:B1:E4:D6:1D:A9:DA:4A:BE:A4:45:26:5B:95:59:CE:28
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018949B081F2EC43D438C1F8F7FE43E9C39E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/khlICLHk1h2p2kq-pEUmW5VZzig.roa
Signing time: Wed 12 Jul 2023 10:40:51 +0000
ROA not before: Wed 12 Jul 2023 10:40:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.209.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 11:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:b0:81:f2:ec:43:d4:38:c1:f8:f7:fe:43:e9:c3:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 12 10:40:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92194808b1e4d61da9da4abea445265b9559ce28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:93:f3:5a:5d:23:a3:c6:d6:37:c0:9c:58:1a:
12:4e:34:38:6e:11:f9:68:c6:9d:a6:cf:0b:fc:fd:
d3:af:65:35:5e:91:fc:75:16:f3:c2:a4:7d:b3:fc:
09:83:8e:f1:21:7b:ec:cc:f6:a5:d2:27:b3:e1:69:
83:2d:48:64:2d:ef:d2:63:fe:72:97:70:09:66:71:
68:97:bf:06:7c:2d:87:39:da:aa:a7:98:db:37:43:
f2:5f:cf:ed:73:53:b9:e1:e0:41:d6:f7:9a:7a:45:
09:64:bc:7d:c0:d6:36:a5:28:ca:0d:12:3b:4b:37:
13:5f:cf:4f:8e:10:60:7a:e0:72:01:9b:6f:29:cf:
97:b6:6f:e0:c4:a4:d5:82:59:d2:90:6b:10:6c:1c:
79:38:7d:61:6e:93:12:1f:8e:ce:48:1f:b0:59:19:
05:91:2d:0b:b3:b2:32:06:08:dc:50:52:1f:a3:89:
15:16:c7:ac:b0:21:22:bb:38:31:fa:ac:84:00:56:
6a:8b:de:3f:55:f3:89:42:83:92:03:c8:20:38:d6:
20:73:e1:4b:32:68:b7:96:77:d5:17:d2:54:54:67:
3d:65:4f:bb:83:51:37:80:37:f4:d3:df:85:9b:56:
43:4c:4b:30:5f:1a:ce:7f:2f:0f:99:cc:f7:1f:df:
1c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:19:48:08:B1:E4:D6:1D:A9:DA:4A:BE:A4:45:26:5B:95:59:CE:28
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/khlICLHk1h2p2kq-pEUmW5VZzig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.73.0/24
Signature Algorithm: sha256WithRSAEncryption
69:66:f7:c6:23:ec:e1:77:d7:b8:d5:64:cf:8f:45:34:bb:b7:
54:a1:a0:7b:8c:51:72:5b:6a:02:83:db:e1:af:d1:cc:07:cc:
fb:76:ed:1d:d4:84:5f:7b:df:0a:27:1e:ec:64:7b:68:4a:e7:
cd:7d:76:3d:b2:bd:38:22:65:7a:9c:b4:53:5e:69:db:97:6b:
d7:fe:0a:ed:41:33:4a:33:9e:fa:12:d2:67:2a:c3:10:2d:1c:
3c:09:89:88:d0:26:fc:f9:0e:25:25:2f:e3:47:2c:cf:a9:1c:
79:94:d8:12:b4:67:e0:ee:92:ba:be:0d:6b:ef:b6:7b:d5:c2:
5e:6e:e3:45:bb:81:60:a5:b6:26:9d:38:56:5a:11:bc:07:e2:
05:97:84:46:40:bc:86:a5:fd:48:c8:f5:8a:80:bf:dd:61:53:
5e:76:b8:27:11:17:7b:b4:59:5a:a6:5e:21:cd:e3:9d:f1:73:
a4:67:de:f5:b6:f2:80:77:93:ce:bb:fb:07:b4:b7:35:c3:5c:
e6:eb:49:bf:98:93:81:6f:a0:c3:7d:dc:3e:ea:6c:78:6c:ff:
4a:e5:15:c5:dd:a9:12:20:82:f9:ff:0f:c5:e6:f5:a2:c0:d2:
4b:bf:8a:9a:e1:46:6f:dd:28:69:68:a7:31:c1:f5:45:21:f4:
94:a6:e0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org