Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/RKXDJ_kUs8EogxvCH4QRbV4pZvM.roa
File: RKXDJ_kUs8EogxvCH4QRbV4pZvM.roa (raw, json)
Hash identifier: bPI4wk3czy8ps3DHbsIRRmPAS9iRHI4d+ZYeGzT0Tnc=
Subject key identifier: 44:A5:C3:27:F9:14:B3:C1:28:83:1B:C2:1F:84:11:6D:5E:29:66:F3
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018CC5005943F04FE107363B858D09F0D7A6
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/RKXDJ_kUs8EogxvCH4QRbV4pZvM.roa
Signing time: Mon 01 Jan 2024 12:29:43 +0000
ROA not before: Mon 01 Jan 2024 12:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56694
IP address blocks: 2a11:68c5::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 Feb 2024 10:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:59:43:f0:4f:e1:07:36:3b:85:8d:09:f0:d7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Jan 1 12:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44a5c327f914b3c128831bc21f84116d5e2966f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:24:4d:10:0f:0c:15:c4:d0:b4:69:1e:f0:84:
5f:4e:69:5e:62:9c:78:c0:73:ff:71:32:71:48:52:
30:a2:0a:28:2e:9b:44:1a:1f:07:59:03:3f:c3:e5:
62:1e:40:c6:14:32:bb:19:b2:c4:fd:2a:8c:43:a9:
14:0f:bf:1e:91:1d:bc:6a:40:82:6d:89:b2:38:cc:
5d:b8:77:4a:65:87:a9:13:27:b1:80:ef:e9:6c:32:
53:1e:8e:d7:6b:1d:de:31:d6:55:49:b1:17:16:4e:
54:26:3c:d1:6d:10:66:97:a6:b2:cc:e2:21:65:0e:
68:07:8c:85:3d:3c:37:79:9f:e4:50:36:8c:df:15:
b9:9d:58:ac:38:15:6f:f3:c4:ba:aa:1d:41:e8:19:
fc:e5:fc:cd:a0:58:07:1e:a2:88:a9:be:05:73:52:
26:e3:cb:97:50:e1:9e:d9:80:cf:6f:d4:0f:aa:63:
35:f1:d8:ef:24:04:b9:3b:26:51:a8:e8:0f:e2:2c:
67:f6:4c:59:2e:f4:b5:07:47:c2:50:db:22:d3:8a:
03:49:e7:a0:ec:3b:91:c8:60:92:fa:a2:10:e7:75:
74:04:56:70:96:23:be:80:c4:3a:d0:c7:06:25:c9:
2a:60:ee:8e:b2:78:c6:32:9c:17:90:3f:e4:88:41:
15:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A5:C3:27:F9:14:B3:C1:28:83:1B:C2:1F:84:11:6D:5E:29:66:F3
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/RKXDJ_kUs8EogxvCH4QRbV4pZvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:68c5::/32
Signature Algorithm: sha256WithRSAEncryption
c3:af:48:a6:94:f3:87:d0:ee:b8:31:8c:8d:11:6a:cf:aa:f6:
45:93:cd:fb:83:6d:51:ce:11:b1:45:28:75:53:c6:ae:36:ed:
80:72:f2:c9:ae:ab:6b:05:2a:46:28:db:80:b3:0b:1f:49:12:
92:db:d4:de:a7:86:db:dc:c6:25:27:f3:37:83:12:a0:80:61:
04:b3:d1:5d:94:8a:18:87:c3:8f:0e:f2:c3:b2:70:ae:41:6a:
17:74:da:6b:bd:80:d8:01:d0:46:d5:cd:38:93:ae:5b:b4:4d:
da:9c:f2:76:9f:31:69:d4:75:ff:34:05:61:22:fa:8a:a8:9b:
ea:40:31:0c:91:b3:d1:53:57:3d:b2:52:ee:06:1b:e0:4c:16:
2e:d7:55:85:03:0f:04:31:25:72:1b:8f:44:da:3f:b6:08:62:
30:2c:0e:4b:e3:55:cb:14:e0:2d:98:93:3f:b9:3e:65:c2:83:
eb:e6:96:ea:00:50:ab:e9:e9:33:ce:d0:f0:ca:4d:6a:7e:e2:
d6:41:d8:50:f6:1d:61:46:f3:9b:21:64:4b:eb:f4:3d:da:4c:
41:e3:c9:0e:aa:fe:dd:96:08:bc:ec:05:cc:b3:35:9a:a2:f9:
d1:97:37:ad:f0:95:bc:18:36:aa:22:7f:d5:f0:f4:3c:58:79:
8b:ba:ce:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:42 2024 by rpki-client on console-fra.rpki-client.org