Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/KXLFkx5oWOhy0U2s482gGZOqA0M.roa
File: KXLFkx5oWOhy0U2s482gGZOqA0M.roa (raw, json)
Hash identifier: RdQ+HTok+Ly4sg9niJxYeaNswwEiQ5MUeVflfxquwck=
Subject key identifier: 29:72:C5:93:1E:68:58:E8:72:D1:4D:AC:E3:CD:A0:19:93:AA:03:43
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 018DF295EE9637EC08E36212758A70D87A25
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/KXLFkx5oWOhy0U2s482gGZOqA0M.roa
Signing time: Thu 29 Feb 2024 01:58:48 +0000
ROA not before: Thu 29 Feb 2024 01:58:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 185.162.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Mar 2024 12:43:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f2:95:ee:96:37:ec:08:e3:62:12:75:8a:70:d8:7a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Feb 29 01:58:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2972c5931e6858e872d14dace3cda01993aa0343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5c:02:dd:c3:8c:09:3a:03:94:16:d6:3c:db:
83:55:ff:a7:33:8d:3f:2e:eb:ea:2e:8e:1d:65:94:
fb:59:c3:2c:c5:35:37:86:60:70:e4:e5:81:71:7a:
4d:60:f8:b3:8d:77:09:05:cd:8e:dc:12:57:a6:14:
6d:d4:cf:e5:b3:4d:0c:2c:21:71:ee:34:ef:75:6c:
25:fe:b8:e0:b4:c9:b1:c8:2a:23:6a:46:30:45:f7:
3a:49:5c:87:82:87:26:79:b7:7d:1e:f4:d6:3f:d8:
22:02:8a:66:fc:55:e3:f8:a2:18:9f:18:e9:10:9e:
a7:60:b7:23:be:96:cd:a0:b6:c1:08:82:17:cb:66:
37:90:ba:78:f7:50:42:09:1e:88:22:69:62:8c:84:
dd:15:3c:a3:4f:27:a0:97:d8:f2:f5:65:30:81:23:
2d:73:53:18:9c:f2:70:b5:33:aa:2f:92:95:04:28:
06:11:fb:66:10:ce:52:0e:0c:8e:d6:0f:92:09:f8:
e3:ba:ed:0c:09:e5:5c:e6:a6:9a:57:0d:58:8f:a9:
f2:be:91:17:9e:b1:d6:20:63:57:09:4b:98:3a:4d:
26:0f:9f:86:4c:0f:f9:be:39:c1:61:05:a4:3a:3b:
80:83:a4:28:c5:64:f6:7f:42:c6:3a:1e:bd:0f:81:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:72:C5:93:1E:68:58:E8:72:D1:4D:AC:E3:CD:A0:19:93:AA:03:43
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/KXLFkx5oWOhy0U2s482gGZOqA0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.235.0/24
Signature Algorithm: sha256WithRSAEncryption
19:ba:2f:d8:c7:8d:01:a2:ae:c2:89:0a:42:ff:08:81:5f:38:
6d:c7:5b:0a:64:85:3c:45:c8:61:eb:5b:32:d7:df:36:55:03:
21:df:c7:99:0a:69:a7:a5:3a:13:36:4c:c5:2f:58:f3:41:b1:
13:d4:fc:69:f8:ce:1f:7c:3c:1e:70:95:35:c6:52:e7:19:47:
05:41:a5:d5:24:a6:3e:b5:15:7b:3e:b2:6f:41:d9:c9:59:e5:
65:11:ea:9f:7d:66:b6:a1:80:10:e3:1d:20:ac:05:ae:70:cb:
7b:c4:f5:81:f8:10:ee:d7:fd:19:e3:d4:b3:e8:ff:8b:83:57:
4e:cc:b1:72:11:1d:47:87:bf:e5:75:80:df:de:7a:3c:a2:7a:
13:c8:38:18:43:81:6e:2d:24:38:e4:92:07:88:1f:34:9f:45:
1a:cf:ab:8b:6c:3d:20:0b:b8:1e:b8:a6:7c:5a:90:38:37:ec:
f9:87:a4:d6:6a:ae:1c:f6:6b:4f:51:14:4b:14:f3:c7:52:82:
e3:bf:81:27:44:21:72:60:83:31:14:63:a6:d7:3d:88:97:86:
fa:c6:56:63:63:74:04:1a:97:01:ec:63:db:65:dc:0d:ad:ba:
33:16:2a:0e:dc:35:d6:2e:6e:a4:81:36:ed:5e:c8:72:65:b8:
f8:e7:bc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 9 16:50:19 2024 by rpki-client on console-fra.rpki-client.org