Route Origin Authorization
$ rpki-client -vvf rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203134363138.roa
File: 3138352e34392e3134322e302f32332d3233203d3e203134363138.roa (raw, json)
Hash identifier: mJUZ9c+LXnXT6BlQVN1wUIBEjP8IrTyFBORPVAvuacs=
Subject key identifier: 0B:BB:4C:2D:0B:1B:72:D7:91:81:67:FD:6A:83:68:3A:0E:AE:84:A3
Certificate issuer: /CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Certificate serial: 1A60809C8BC64FFE109DBBA1D9F27DE054B96CA3
Authority key identifier: A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject info access: rsync://rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203134363138.roa
Signing time: Mon 26 Jun 2023 19:47:00 +0000
ROA not before: Mon 26 Jun 2023 19:42:00 +0000
ROA not after: Mon 24 Jun 2024 19:47:00 +0000
asID: 14618
IP address blocks: 185.49.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 13 Dec 2023 10:40:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:60:80:9c:8b:c6:4f:fe:10:9d:bb:a1:d9:f2:7d:e0:54:b9:6c:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Validity
Not Before: Jun 26 19:42:00 2023 GMT
Not After : Jun 24 19:47:00 2024 GMT
Subject: CN=0BBB4C2D0B1B72D7918167FD6A83683A0EAE84A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:38:d9:50:ba:54:7b:94:6f:e3:b9:44:b8:a0:
de:61:23:90:ac:7c:e0:c8:d8:1c:83:c2:7f:52:61:
30:69:b9:69:74:7d:b7:d5:26:27:23:44:9e:50:53:
22:54:9c:a5:1d:55:f5:1b:b9:15:4b:4e:dc:29:c0:
16:f8:6a:e6:e2:af:59:2e:e8:e1:08:a5:1f:57:53:
58:7f:b3:19:46:fa:64:bd:d9:85:9f:a3:e5:68:f3:
1f:bf:89:29:ca:59:91:71:64:a1:23:7c:64:0a:0a:
90:e9:cd:7f:ba:d8:a0:80:de:2f:88:69:9f:be:a3:
70:de:38:7b:6a:46:5a:d7:e0:2d:c7:4c:95:64:a8:
f0:9c:b3:70:9d:0c:7a:12:73:19:94:47:a4:7d:d4:
bc:f2:d1:ae:43:26:f5:e2:4e:ee:7c:e5:f1:06:93:
1a:45:83:6b:7c:ae:a3:f8:d7:22:a6:8d:20:87:5a:
1a:f1:9d:0c:5d:76:03:23:c5:a0:39:1f:a9:2b:e3:
f1:14:7b:d0:d0:ae:99:e6:d9:dc:81:b0:a8:24:c7:
5a:d0:f9:a3:a7:84:e9:b0:a6:7f:0c:04:23:dd:cb:
ea:36:35:b7:ab:79:2a:c7:72:66:20:66:4c:6c:d9:
f4:c2:f6:32:53:23:f5:7a:40:1a:e6:8d:7f:38:c0:
84:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BB:4C:2D:0B:1B:72:D7:91:81:67:FD:6A:83:68:3A:0E:AE:84:A3
X509v3 Authority Key Identifier:
keyid:A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/A81EB3A5EB3DF634551A90722BC63AD7E022CAC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203134363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.142.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:99:61:f7:d4:de:a5:49:d6:1b:1c:46:78:ac:e6:86:ba:87:
72:cb:d1:0f:e1:6c:d5:fe:cd:a6:db:45:0e:33:46:5b:39:a8:
7d:d0:36:f8:6f:af:81:0c:9d:ce:e2:7d:4f:42:25:e8:6f:04:
ba:5a:e4:4d:a7:02:12:2a:10:c5:3e:1f:15:eb:7c:d3:4e:1a:
d2:37:2e:c3:1e:fe:ae:fb:00:50:a3:35:c5:e8:15:ab:f6:84:
e0:3c:9b:8a:a8:41:72:a9:03:08:cc:2e:95:f9:34:f6:bd:c1:
31:63:51:ec:00:5c:18:d5:95:f5:e1:4e:c9:40:0f:61:a4:3c:
1c:91:c6:94:a6:2a:13:60:c7:7c:1c:cc:0b:28:11:fe:10:f6:
cf:d5:64:96:46:e4:16:98:64:6b:f8:6c:8b:8d:b5:f1:2a:91:
a0:21:e9:d2:3a:6d:f3:a6:ff:15:64:70:bd:ab:2f:b9:1d:fc:
f3:0f:08:f1:02:a8:04:23:e9:e5:2e:55:09:fc:70:c9:65:26:
bd:f7:c1:82:20:7f:94:02:75:01:89:d2:26:45:8b:cb:61:37:
b4:0f:57:16:58:0c:07:58:61:35:3c:34:ec:62:48:23:50:e1:
6f:05:6d:62:96:ec:84:b6:7d:33:6b:cc:c2:88:01:8d:47:a3:
1f:01:af:37
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgIUGmCAnIvGT/4Qnbuh2fJ94FS5bKMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgxZWIzYTVlYjNkZjYzNDU1MWE5MDcyMmJjNjNhZDdl
MDIyY2FjNDAeFw0yMzA2MjYxOTQyMDBaFw0yNDA2MjQxOTQ3MDBaMDMxMTAvBgNV
BAMTKDBCQkI0QzJEMEIxQjcyRDc5MTgxNjdGRDZBODM2ODNBMEVBRTg0QTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ONlQulR7lG/juUS4oN5hI5Cs
fODI2ByDwn9SYTBpuWl0fbfVJicjRJ5QUyJUnKUdVfUbuRVLTtwpwBb4aubir1ku
6OEIpR9XU1h/sxlG+mS92YWfo+Vo8x+/iSnKWZFxZKEjfGQKCpDpzX+62KCA3i+I
aZ++o3DeOHtqRlrX4C3HTJVkqPCcs3CdDHoScxmUR6R91Lzy0a5DJvXiTu585fEG
kxpFg2t8rqP41yKmjSCHWhrxnQxddgMjxaA5H6kr4/EUe9DQrpnm2dyBsKgkx1rQ
+aOnhOmwpn8MBCPdy+o2NbereSrHcmYgZkxs2fTC9jJTI/V6QBrmjX84wITTAgMB
AAGjggHjMIIB3zAdBgNVHQ4EFgQUC7tMLQsbcteRgWf9aoNoOg6uhKMwHwYDVR0j
BBgwFoAUqB6zpes99jRVGpByK8Y61+AiysQwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcnN5bmMua3JpbGwuY2xvdWQvcmVwby9ubG5l
dGxhYnMvMS9BODFFQjNBNUVCM0RGNjM0NTUxQTkwNzIyQkM2M0FEN0UwMjJDQUM0
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUI2enBlczk5alJWR3BCeUs4WTYx
LUFpeXNRLmNlcjCBgQYIKwYBBQUHAQsEdTBzMHEGCCsGAQUFBzALhmVyc3luYzov
L3JzeW5jLmtyaWxsLmNsb3VkL3JlcG8vbmxuZXRsYWJzLzEvMzEzODM1MmUzNDM5
MmUzMTM0MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTM0MzYzMTM4LnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA
ATAGAwQBuTGOMA0GCSqGSIb3DQEBCwUAA4IBAQCnmWH31N6lSdYbHEZ4rOaGuody
y9EP4WzV/s2m20UOM0ZbOah90Db4b6+BDJ3O4n1PQiXobwS6WuRNpwISKhDFPh8V
63zTThrSNy7DHv6u+wBQozXF6BWr9oTgPJuKqEFyqQMIzC6V+TT2vcExY1HsAFwY
1ZX14U7JQA9hpDwckcaUpioTYMd8HMwLKBH+EPbP1WSWRuQWmGRr+GyLjbXxKpGg
IenSOm3zpv8VZHC9qy+5HfzzDwjxAqgEI+nlLlUJ/HDJZSa998GCIH+UAnUBidIm
RYvLYTe0D1cWWAwHWGE1PDTsYkgjUOFvBW1iluyEtn0za8zCiAGNR6MfAa83
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org