Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/kCchSklpyirq8QbPP5FwyxvBnkc.roa
File: kCchSklpyirq8QbPP5FwyxvBnkc.roa (raw, json)
Hash identifier: pyr+r6tjXVnVcTlD6UwOa9XXST8WO2FbKFvGQnyA8JU=
Subject key identifier: 90:27:21:4A:49:69:CA:2A:EA:F1:06:CF:3F:91:70:CB:1B:C1:9E:47
Certificate issuer: /CN=9dabc626ac264066b1c5c709a48477f3788361de
Certificate serial: 01856BD3841B591FACA182FA0F63B17FFF5D
Authority key identifier: 9D:AB:C6:26:AC:26:40:66:B1:C5:C7:09:A4:84:77:F3:78:83:61:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/navGJqwmQGaxxccJpIR383iDYd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/kCchSklpyirq8QbPP5FwyxvBnkc.roa
Signing time: Sun 01 Jan 2023 05:35:02 +0000
ROA not before: Sun 01 Jan 2023 05:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212746
IP address blocks: 2001:678:c2c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:84:1b:59:1f:ac:a1:82:fa:0f:63:b1:7f:ff:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dabc626ac264066b1c5c709a48477f3788361de
Validity
Not Before: Jan 1 05:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9027214a4969ca2aeaf106cf3f9170cb1bc19e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ce:0e:50:a8:8a:50:7e:91:6e:1b:4a:6e:35:
03:2b:0e:8c:5e:b2:d4:60:98:69:a4:03:99:39:0b:
50:25:9a:a0:24:b9:48:fc:df:ec:5e:63:7a:31:f0:
a7:f8:ec:d8:87:0a:ed:2f:4a:ed:1b:a5:73:b0:2a:
08:ad:93:88:ca:5a:f4:9c:fd:fa:3d:d4:85:45:18:
92:6b:4e:35:77:68:7a:90:ec:ae:5a:74:41:00:c0:
70:58:0e:0d:ce:5b:a9:d2:c6:7a:08:e3:b2:e9:fe:
72:25:79:88:44:e9:d2:d1:ca:95:c7:de:2a:18:51:
ff:aa:26:b9:25:60:1a:90:d9:ef:b3:73:95:fa:04:
12:cc:c5:7a:d0:ae:b6:c0:ca:b2:7a:ea:5f:57:b1:
67:db:56:ab:c4:47:34:03:b9:2d:f8:3a:72:a8:aa:
6b:16:92:2e:e4:52:5b:c5:11:4d:81:5c:d9:8e:56:
9b:bc:59:b2:2b:c9:d3:8c:7a:99:c4:1d:2e:6a:1d:
92:33:8d:74:02:b5:20:14:0e:36:d1:ff:17:a6:f7:
6b:05:15:5b:89:96:77:87:1e:17:a5:2f:54:d9:28:
c4:61:b8:19:e5:2e:7e:c8:ba:34:a5:9d:7f:35:70:
51:6a:c5:b6:32:ed:86:73:29:85:e0:35:9c:7a:59:
f9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:27:21:4A:49:69:CA:2A:EA:F1:06:CF:3F:91:70:CB:1B:C1:9E:47
X509v3 Authority Key Identifier:
keyid:9D:AB:C6:26:AC:26:40:66:B1:C5:C7:09:A4:84:77:F3:78:83:61:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/navGJqwmQGaxxccJpIR383iDYd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/kCchSklpyirq8QbPP5FwyxvBnkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/19b008-b6f9-4271-b130-0b7e38a122fe/1/navGJqwmQGaxxccJpIR383iDYd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:c2c::/48
Signature Algorithm: sha256WithRSAEncryption
7f:03:23:43:81:50:ba:e2:13:ea:3b:a3:8d:bd:30:81:88:6c:
3e:fe:c7:ec:9b:a6:0a:35:95:29:76:61:49:32:18:4b:7e:30:
43:0c:c6:e7:85:7c:b4:d7:cc:3b:0a:5d:77:9b:81:82:0d:2d:
08:57:b9:7f:33:63:70:c5:bb:25:ae:4e:e7:2c:73:bf:04:81:
4a:00:4d:a6:8b:cc:a4:18:61:71:3b:bc:33:bb:08:ec:8c:3f:
83:79:a4:cf:50:b8:5c:e9:54:3e:95:2f:e4:46:81:ea:f6:f0:
ff:68:1a:f0:1f:8d:e4:06:9e:90:6f:d3:b8:a2:54:aa:d2:ea:
2a:56:11:49:3d:7a:91:d4:30:be:4e:d0:7f:46:66:f6:f5:85:
80:8b:bc:04:85:c5:b6:89:c3:59:e5:e5:cc:12:fa:f3:e3:ff:
3b:d2:17:56:7b:3d:e3:82:6c:f8:e6:a3:89:ac:f6:81:2b:12:
0a:49:2e:89:64:e6:f0:b2:b1:ec:e2:b9:17:07:af:a6:f2:2a:
71:65:40:15:78:a4:90:48:4a:93:d5:ce:f6:51:cd:56:d8:6f:
e1:cd:4e:8d:af:e8:f9:0e:ac:5b:b3:72:cf:a3:76:fc:8e:1d:
3f:12:50:29:dc:e9:4f:af:2f:e4:57:04:49:50:c3:20:a6:c0:
bc:6f:82:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:48 2024 by rpki-client on console-fra.rpki-client.org