Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KgssHOtcsZiCXPZmYObFQ82C1CQ.roa
File: KgssHOtcsZiCXPZmYObFQ82C1CQ.roa (raw, json)
Hash identifier: e6vVZ+TUgKRsm2w/qU1MQnteJkH5hRYNtVAy1fydZvI=
Subject key identifier: 2A:0B:2C:1C:EB:5C:B1:98:82:5C:F6:66:60:E6:C5:43:CD:82:D4:24
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01857015461F0F5EEAE8B774E8924E5E9356
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KgssHOtcsZiCXPZmYObFQ82C1CQ.roa
Signing time: Mon 02 Jan 2023 01:25:20 +0000
ROA not before: Mon 02 Jan 2023 01:25:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202273
IP address blocks: 93.92.113.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:46:1f:0f:5e:ea:e8:b7:74:e8:92:4e:5e:93:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 01:25:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a0b2c1ceb5cb198825cf66660e6c543cd82d424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:17:bd:77:5e:65:41:63:be:a2:ef:88:5e:
29:68:41:50:b4:ed:2b:0d:21:0b:eb:a0:26:cc:9f:
4c:3e:6e:40:b9:a2:b3:f7:12:d9:14:b5:52:ab:a5:
78:26:94:81:3a:ea:3b:fa:a8:6a:f3:d6:e6:29:e5:
e6:27:c8:36:bc:bc:21:6a:67:82:14:00:ec:cf:1b:
d4:25:b6:e6:94:b1:f5:93:8d:f3:84:54:90:f6:77:
66:4b:b8:58:cd:cf:f8:7d:24:bc:5c:9b:45:15:68:
f4:6d:d8:ee:d5:87:76:0a:ce:ca:d3:c8:37:9c:d2:
fe:d4:71:ea:e0:51:af:45:90:bd:eb:74:2b:bb:59:
c5:43:da:7a:62:8d:90:8a:d9:0c:dc:dd:44:2b:7d:
76:db:f6:b8:88:a8:12:49:bf:23:45:b2:88:6a:32:
f3:70:79:57:8a:49:9f:84:ea:cc:a9:4d:7d:49:7e:
7e:17:3e:43:57:4d:e1:26:8e:6c:a2:10:0a:f5:eb:
52:2a:65:23:f4:a1:df:0c:22:08:ea:45:84:19:cc:
e8:2d:b7:43:50:98:2d:37:1e:89:76:0e:b3:b9:f4:
6a:0d:52:fc:9e:36:d9:47:a1:d8:63:ee:59:6a:6a:
66:d1:30:69:97:e6:f4:07:7d:34:6b:0f:75:ed:98:
31:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:0B:2C:1C:EB:5C:B1:98:82:5C:F6:66:60:E6:C5:43:CD:82:D4:24
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KgssHOtcsZiCXPZmYObFQ82C1CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.92.113.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:87:64:ff:fc:26:10:bf:95:9f:db:e1:42:71:0a:72:67:f7:
41:db:11:14:39:2f:df:e5:02:1a:98:c7:47:14:bf:27:69:da:
2b:0d:2d:76:70:2c:4e:fb:01:6e:ae:89:99:b2:ea:e5:81:81:
cf:ba:b9:e0:9d:b9:a1:31:cc:52:b0:06:33:fd:87:9b:6a:27:
62:cf:52:49:d6:04:64:d5:88:44:96:8a:47:80:d5:a7:8d:f1:
27:2c:55:bd:db:f7:f5:24:86:74:2c:30:1e:37:55:05:fe:4b:
79:f3:ca:61:ce:14:67:51:37:ed:a8:39:8e:51:e2:85:a9:32:
42:00:98:0b:6e:f2:0b:3d:10:e0:5f:c3:5f:bb:f4:cb:eb:f1:
bb:67:90:76:1a:b3:73:22:b8:99:fd:49:95:01:9b:ec:71:14:
a3:2a:44:e4:6e:99:d3:92:5c:9b:23:3c:87:db:b8:a8:fd:9f:
90:06:87:40:52:3b:4c:bf:8f:5f:8b:e3:a9:4b:32:2f:5f:41:
99:e4:69:5a:a4:36:b6:5b:eb:e0:3a:11:27:5e:fb:8b:cd:60:
31:b2:54:a2:0e:dd:93:26:8d:35:1b:45:7d:8b:26:c7:df:4e:
3c:92:57:b1:0c:21:8b:4f:75:e8:90:ee:74:00:18:79:d9:fd:
8a:da:e8:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:38 2024 by rpki-client on console-fra.rpki-client.org