Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KAYMP3io34fm3H4bXLOiMto2XlI.roa
File: KAYMP3io34fm3H4bXLOiMto2XlI.roa (raw, json)
Hash identifier: PxatsMyUYLYK3wwFmXqRoiLkojsyVSRRx5o13P+7ohE=
Subject key identifier: 28:06:0C:3F:78:A8:DF:87:E6:DC:7E:1B:5C:B3:A2:32:DA:36:5E:52
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01856C813D35E158DC8776C4981842DE9EC1
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KAYMP3io34fm3H4bXLOiMto2XlI.roa
Signing time: Sun 01 Jan 2023 08:44:47 +0000
ROA not before: Sun 01 Jan 2023 08:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203416
IP address blocks: 194.50.250.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3d:35:e1:58:dc:87:76:c4:98:18:42:de:9e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 1 08:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28060c3f78a8df87e6dc7e1b5cb3a232da365e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:bc:be:79:6a:9f:0a:04:7f:42:20:98:b2:
7d:ab:57:2e:05:ff:ee:6e:17:9f:ad:67:17:80:e4:
8a:d8:d1:a7:32:f3:67:48:0b:67:ef:da:74:34:f7:
80:a0:ae:c8:de:86:07:24:00:2f:8a:13:14:40:a9:
1c:38:0f:9e:3a:2b:fd:e7:3f:34:df:3a:d5:10:cc:
bf:f1:5e:4c:9e:c3:0a:99:eb:e0:50:f9:89:88:08:
bc:f1:46:21:89:6a:6a:ea:d1:f7:3e:26:30:ab:9e:
8f:dc:72:e6:f0:1c:86:b4:d0:d5:bc:95:c2:bb:f7:
83:32:09:ca:95:4d:66:b6:d3:86:a5:5a:ab:33:a4:
e9:44:27:e3:70:a6:61:6f:f8:73:dd:99:e6:36:4b:
fc:03:43:02:74:07:2a:db:b1:fa:04:f0:c9:33:7b:
76:ec:73:68:2b:05:45:a1:15:86:74:00:a6:0a:5a:
b5:cf:25:cb:a0:89:e9:58:3b:8d:c7:5d:00:e8:32:
8e:83:ee:f9:b8:23:e1:84:0b:bf:d1:6c:99:3c:ae:
ab:de:93:e0:dd:d1:f4:58:ee:1b:83:7c:06:9d:05:
aa:f2:34:02:d7:21:5d:57:15:83:f6:c6:02:54:8c:
b8:dc:c9:4d:e2:e9:89:df:60:7e:5e:9b:59:92:07:
be:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:06:0C:3F:78:A8:DF:87:E6:DC:7E:1B:5C:B3:A2:32:DA:36:5E:52
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/KAYMP3io34fm3H4bXLOiMto2XlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.250.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:92:a4:1d:fa:65:a9:be:77:ce:ff:a0:64:3c:4e:f8:93:73:
7e:85:84:31:6d:aa:b5:96:9b:a9:d7:61:44:e9:e9:0f:7d:2a:
60:2c:25:01:18:0b:0f:4a:0e:dc:93:b5:53:da:7c:82:cb:bd:
f4:cf:19:53:aa:f9:18:34:c4:9c:19:b5:79:b1:d7:11:b3:5c:
bb:bf:33:33:a5:0b:9d:58:19:f2:6c:78:59:61:09:96:2a:5b:
82:e3:0a:6b:01:f0:e9:88:78:6d:1d:53:c3:3f:44:53:12:fe:
62:43:68:5e:75:41:06:36:b0:69:42:ae:b0:d8:ca:15:6c:fb:
64:76:21:95:a8:75:38:d4:a3:03:62:f1:ef:2e:85:4d:6a:aa:
05:8d:c5:fe:18:48:85:1d:6e:ad:c0:f1:34:c1:32:05:eb:ec:
d8:97:41:13:5e:55:30:1f:a0:44:dc:93:6c:55:b4:25:c2:59:
08:91:f4:7e:65:85:98:70:bf:97:a2:02:77:5b:c6:91:0c:ca:
ba:5d:14:cf:a5:d1:31:41:d2:bd:4d:2c:f1:d1:45:3f:06:b9:
13:23:de:2b:f4:be:d5:aa:56:f2:59:98:b2:28:9f:1d:59:67:
3f:a4:d6:9e:23:22:ea:99:0c:54:84:7a:a7:49:88:f1:28:e4:
db:92:a9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:32 2024 by rpki-client on console-ams.rpki-client.org