Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/ku2-pWrhGF5fhbg0kNuNyTDC-8g.roa
File: ku2-pWrhGF5fhbg0kNuNyTDC-8g.roa (raw, json)
Hash identifier: JRn2Qw72UcWuWuZjsBur7S6K254poLI3emQnODv9YGM=
Subject key identifier: 92:ED:BE:A5:6A:E1:18:5E:5F:85:B8:34:90:DB:8D:C9:30:C2:FB:C8
Certificate issuer: /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial: 01856D41889DB209198EB0CDA6013FA467C3
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/ku2-pWrhGF5fhbg0kNuNyTDC-8g.roa
Signing time: Sun 01 Jan 2023 12:14:49 +0000
ROA not before: Sun 01 Jan 2023 12:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a04:e4c4:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 16 Jun 2023 18:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:88:9d:b2:09:19:8e:b0:cd:a6:01:3f:a4:67:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Validity
Not Before: Jan 1 12:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92edbea56ae1185e5f85b83490db8dc930c2fbc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:31:46:f3:1c:84:2e:e2:8d:bc:ea:a0:85:06:
90:ef:a9:bb:6b:63:02:c1:e2:94:83:08:27:a6:2f:
6a:5f:10:e3:ee:6d:fe:3a:6b:17:5a:1e:84:68:2b:
39:9f:81:49:6f:59:3f:d3:9c:0e:a8:a1:3b:d6:a4:
ee:67:26:bb:83:30:53:54:b0:1b:12:c5:32:98:7e:
29:45:52:ed:d2:4a:4c:57:1e:ea:6b:7f:78:1b:a5:
55:a5:d9:54:ce:da:da:09:75:09:2e:4f:e6:e2:38:
46:46:22:34:5b:56:6a:ad:b3:39:24:8e:72:12:2a:
ea:80:6d:22:64:29:df:94:ac:85:d9:d4:43:65:54:
58:48:e5:17:69:19:74:c4:d2:14:59:b7:e2:dd:1c:
95:83:d8:4e:f0:95:fc:5f:2b:05:9f:1a:4a:18:06:
7c:07:79:fd:f5:b8:7f:5b:b7:34:0f:25:a3:54:33:
ef:d1:3d:f0:e7:8f:41:bf:b2:36:0b:62:27:b6:c5:
36:44:d3:35:7f:0d:eb:f1:51:f8:e9:ed:07:d0:ce:
20:5d:f1:cb:c9:0b:ff:c4:d5:4d:94:25:60:24:7f:
e9:d1:16:a7:1e:70:87:7e:f4:f1:da:51:a2:5f:4c:
6f:87:a4:ce:f0:77:7f:de:49:cf:dd:65:90:c5:5f:
33:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:ED:BE:A5:6A:E1:18:5E:5F:85:B8:34:90:DB:8D:C9:30:C2:FB:C8
X509v3 Authority Key Identifier:
keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/ku2-pWrhGF5fhbg0kNuNyTDC-8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:e4c4:5::/48
Signature Algorithm: sha256WithRSAEncryption
52:b3:60:3b:72:b6:24:30:03:a8:af:cc:04:bb:6c:a8:62:d0:
dc:91:87:6c:d6:7d:fd:a5:93:f0:3a:2f:47:ae:be:e8:19:37:
9c:7d:69:7d:71:43:27:8b:88:be:3e:5d:4a:e1:00:e5:c0:14:
ba:2e:96:ab:32:70:50:60:dd:c0:b7:fa:87:fb:55:34:9a:d5:
a4:67:1e:73:28:aa:0a:51:d7:6f:a0:f5:b3:c3:5d:d8:ba:44:
a4:29:22:40:a2:c8:01:70:6c:19:f9:ab:ab:e3:4b:3a:da:c2:
5a:f4:4b:96:59:c5:30:f5:bd:ee:92:60:91:6d:37:69:6a:be:
ee:43:cf:96:da:e3:19:fa:11:1d:0e:7d:97:23:6a:93:48:93:
0f:0b:c7:51:0a:b4:f1:cf:b5:b4:91:ef:28:39:f3:14:77:b0:
75:95:86:86:71:18:15:70:f0:ce:6b:ce:48:4f:e1:1c:9f:b1:
b0:32:9f:98:54:0a:ca:9b:ad:2d:26:74:3d:8f:76:13:ed:a8:
d0:e5:50:7e:f8:eb:b3:c3:47:63:28:53:a4:6d:2a:cb:05:a0:
7d:c4:c2:c4:48:9a:58:9c:cd:71:16:7c:a8:0e:f4:66:44:20:
c9:60:b0:07:16:ab:56:d4:89:4c:45:c9:bc:11:21:3b:ad:92:
21:2e:b8:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org