Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/kpGdgJTx_d2ZW5mgWAj11EfWI-E.roa
File: kpGdgJTx_d2ZW5mgWAj11EfWI-E.roa (raw, json)
Hash identifier: jWcU8IBb48w4zlw9GyliE2hd0IypU/WWp8Lr6H6vuRw=
Subject key identifier: 92:91:9D:80:94:F1:FD:DD:99:5B:99:A0:58:08:F5:D4:47:D6:23:E1
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018BB85DCEC0F4AA8A45FAF73DE034940D43
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/kpGdgJTx_d2ZW5mgWAj11EfWI-E.roa
Signing time: Fri 10 Nov 2023 08:33:57 +0000
ROA not before: Fri 10 Nov 2023 08:33:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400899
IP address blocks: 91.190.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Nov 2023 07:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:5d:ce:c0:f4:aa:8a:45:fa:f7:3d:e0:34:94:0d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Nov 10 08:33:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92919d8094f1fddd995b99a05808f5d447d623e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:03:9a:db:56:80:a9:7c:33:ab:e8:53:0f:5b:
90:89:35:a1:23:5a:9f:2b:09:2c:4c:95:16:7c:e7:
0d:b4:03:3c:15:57:37:c3:ec:a4:d5:4a:e9:ab:81:
ba:b6:5a:fd:7d:97:86:44:04:b1:9a:df:31:27:b5:
46:f3:3d:70:55:ca:1c:22:91:91:11:1f:65:c0:d3:
0b:06:16:05:f7:fa:b6:4d:19:dc:29:ae:d4:11:51:
ea:f9:52:e1:90:58:a0:d2:3f:d8:9a:1d:60:b5:66:
e7:5a:9a:49:b7:e3:5a:5d:25:fc:d2:da:ee:17:c7:
da:91:26:52:fd:e6:b2:6e:0f:27:6d:28:88:55:b8:
b3:f0:4b:78:06:cd:44:f1:eb:fa:44:22:2e:be:f4:
9f:a0:84:bf:b0:80:72:31:ee:84:67:50:57:5c:b3:
b6:eb:6d:3c:04:fc:9f:f0:96:c4:e5:22:27:de:8a:
4b:d4:d2:82:55:f8:4f:45:33:56:de:e0:08:1e:03:
1b:ba:b2:01:04:db:fa:ac:65:52:48:ac:10:e9:c3:
0a:0c:2e:21:d7:99:75:81:4f:54:94:df:bb:f8:a5:
e1:bb:c6:ba:ce:fb:3e:43:2d:06:d4:cc:50:c0:13:
6b:1c:bd:cf:5f:3d:ef:09:ae:f4:2e:eb:16:2a:bc:
6e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:91:9D:80:94:F1:FD:DD:99:5B:99:A0:58:08:F5:D4:47:D6:23:E1
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/kpGdgJTx_d2ZW5mgWAj11EfWI-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:43:2d:8c:37:ed:ba:1a:88:12:0f:49:81:c8:2e:2f:38:7e:
da:f7:4c:d3:e9:e4:92:9d:19:84:f4:26:7c:94:39:9b:8f:2d:
1c:8e:6d:a0:ef:70:80:a3:58:a8:26:24:1e:95:9c:d4:ea:f7:
51:65:34:f1:ca:3a:f3:91:f3:dc:83:96:bd:68:29:9b:85:7b:
f7:fb:dc:5a:cb:44:43:1b:85:25:c3:91:7f:9f:4e:7b:27:7f:
7a:0f:dc:67:3e:5f:40:be:85:7a:76:18:dd:7a:1e:40:b9:2e:
3a:3d:ef:74:ab:fe:3a:35:23:c2:7e:27:f0:fb:33:8d:51:ba:
62:75:28:23:d1:b8:48:ae:31:09:9e:e8:3f:d3:43:12:32:cf:
b8:58:47:0b:e8:38:ba:df:d1:84:fd:86:81:51:df:1d:27:c8:
ee:d7:aa:15:34:19:ea:15:3b:5c:cd:93:63:d8:2d:90:5c:5a:
59:e8:b7:78:0c:25:0e:02:3f:cc:1b:74:0d:76:7b:f2:bb:7f:
c8:5e:b7:f3:c2:26:e3:05:0b:f0:bb:4c:83:24:3f:11:ca:25:
e8:40:6d:af:b0:d6:59:46:50:28:66:c9:fd:c6:12:cb:84:d2:
ee:d1:8a:a6:40:2d:70:10:18:08:6e:95:cc:c2:7a:db:75:80:
b8:4c:8f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:21 2024 by rpki-client on console-ams.rpki-client.org