Route Origin Authorization
$ rpki-client -vvf rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203136353039.roa
File: 3138352e34392e3134322e302f32332d3233203d3e203136353039.roa (raw, json)
Hash identifier: oMfc51m6CLBGU0TbpJV5rYKa1/8IautoCFxfSc7LkxI=
Subject key identifier: 0A:02:23:3C:9A:79:E1:A6:DF:B2:2F:FF:AF:A7:D5:B4:CA:9D:9D:89
Certificate issuer: /CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Certificate serial: 70E325816111A79B51631ABC1AB0EE7FFBE10895
Authority key identifier: A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject info access: rsync://rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203136353039.roa
Signing time: Mon 26 Jun 2023 19:47:01 +0000
ROA not before: Mon 26 Jun 2023 19:42:01 +0000
ROA not after: Mon 24 Jun 2024 19:47:01 +0000
asID: 16509
IP address blocks: 185.49.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 13 Dec 2023 10:40:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e3:25:81:61:11:a7:9b:51:63:1a:bc:1a:b0:ee:7f:fb:e1:08:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Validity
Not Before: Jun 26 19:42:01 2023 GMT
Not After : Jun 24 19:47:01 2024 GMT
Subject: CN=0A02233C9A79E1A6DFB22FFFAFA7D5B4CA9D9D89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bd:e2:34:c5:f9:a1:d4:17:8f:30:f3:b3:9c:
64:ad:10:f9:8d:1a:97:a3:3b:3d:fa:c2:a7:18:7f:
24:fd:ba:41:15:0e:64:5d:ca:35:13:0d:58:62:c1:
5b:12:68:7a:b4:bb:4a:d9:7b:dc:dd:39:77:59:f7:
ad:e0:fe:93:19:f2:a5:85:7c:15:1c:1f:53:53:0d:
96:16:d3:0d:c3:5b:5e:25:e6:97:00:c0:c2:dd:8b:
76:c3:b9:e7:2b:9e:dd:3f:2e:a7:50:44:b9:12:b0:
ee:ec:80:cd:92:4b:bc:dd:ea:2b:cb:e8:8f:e7:7b:
53:bc:60:ed:97:db:93:4a:9b:94:18:72:49:dc:ee:
e0:a5:f0:af:50:2e:d9:45:57:05:ab:76:e1:e1:93:
1c:45:da:10:b7:f0:5a:17:af:2d:6b:65:d5:82:40:
f5:8d:cf:85:71:fb:bf:b8:f9:62:be:aa:3f:20:3f:
51:43:7e:22:d6:a1:3b:cc:f1:55:f1:36:2c:84:d9:
11:5e:69:27:26:18:dd:3b:24:10:86:f3:2f:93:e3:
d5:e9:00:63:2f:db:94:16:65:fd:51:29:4f:4a:1f:
8d:d9:44:31:87:0b:d7:a6:f2:0c:6a:f1:98:02:41:
09:b3:91:5e:51:26:cf:12:62:75:ec:76:c4:d0:f9:
62:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:02:23:3C:9A:79:E1:A6:DF:B2:2F:FF:AF:A7:D5:B4:CA:9D:9D:89
X509v3 Authority Key Identifier:
keyid:A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/A81EB3A5EB3DF634551A90722BC63AD7E022CAC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/3138352e34392e3134322e302f32332d3233203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.142.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:76:d9:92:a7:09:69:54:58:9b:8e:2c:0b:b2:b8:e8:f7:98:
34:8c:bf:a0:30:cc:77:d2:50:19:12:40:23:ba:77:ac:2f:93:
82:8f:dd:da:e3:56:0f:e1:6d:d1:91:1c:2f:58:fe:a0:c6:34:
a0:19:55:57:e3:e3:e7:e5:d3:07:f4:86:aa:c1:b0:df:e9:cb:
39:5d:60:19:7a:bd:de:3b:98:0e:a8:2a:2f:ea:17:bd:14:a8:
68:c6:2d:9d:bc:25:94:db:ae:72:e3:03:48:04:b9:01:91:bd:
ac:5a:bd:9e:ff:c8:dd:f5:c3:9e:ba:85:2e:59:79:ea:ff:53:
63:f8:75:a4:63:dd:71:85:f9:2b:38:39:cd:49:76:18:c3:44:
fa:81:ed:80:7d:ca:5f:5a:d7:bd:89:22:b3:8f:60:ff:c5:6d:
97:35:7e:37:ca:44:6b:56:8d:81:05:04:da:79:bb:0f:56:01:
e4:5e:87:c9:a7:6b:b4:53:2e:b9:32:df:0a:36:12:66:fc:5f:
92:98:eb:8a:17:38:4f:d9:8b:68:a0:7d:37:e6:aa:a1:cc:1c:
3a:88:37:76:b0:5d:47:94:85:38:13:73:cb:86:62:40:76:20:
13:c7:57:3b:d3:79:8f:42:27:7d:b7:24:c1:f4:ae:0e:66:cc:
15:ba:ba:51
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgIUcOMlgWERp5tRYxq8GrDuf/vhCJUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgxZWIzYTVlYjNkZjYzNDU1MWE5MDcyMmJjNjNhZDdl
MDIyY2FjNDAeFw0yMzA2MjYxOTQyMDFaFw0yNDA2MjQxOTQ3MDFaMDMxMTAvBgNV
BAMTKDBBMDIyMzNDOUE3OUUxQTZERkIyMkZGRkFGQTdENUI0Q0E5RDlEODkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoveI0xfmh1BePMPOznGStEPmN
GpejOz36wqcYfyT9ukEVDmRdyjUTDVhiwVsSaHq0u0rZe9zdOXdZ963g/pMZ8qWF
fBUcH1NTDZYW0w3DW14l5pcAwMLdi3bDuecrnt0/LqdQRLkSsO7sgM2SS7zd6ivL
6I/ne1O8YO2X25NKm5QYcknc7uCl8K9QLtlFVwWrduHhkxxF2hC38FoXry1rZdWC
QPWNz4Vx+7+4+WK+qj8gP1FDfiLWoTvM8VXxNiyE2RFeaScmGN07JBCG8y+T49Xp
AGMv25QWZf1RKU9KH43ZRDGHC9em8gxq8ZgCQQmzkV5RJs8SYnXsdsTQ+WKRAgMB
AAGjggHjMIIB3zAdBgNVHQ4EFgQUCgIjPJp54abfsi//r6fVtMqdnYkwHwYDVR0j
BBgwFoAUqB6zpes99jRVGpByK8Y61+AiysQwDgYDVR0PAQH/BAQDAgeAMGgGA1Ud
HwRhMF8wXaBboFmGV3JzeW5jOi8vcnN5bmMua3JpbGwuY2xvdWQvcmVwby9ubG5l
dGxhYnMvMS9BODFFQjNBNUVCM0RGNjM0NTUxQTkwNzIyQkM2M0FEN0UwMjJDQUM0
LmNybDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvcUI2enBlczk5alJWR3BCeUs4WTYx
LUFpeXNRLmNlcjCBgQYIKwYBBQUHAQsEdTBzMHEGCCsGAQUFBzALhmVyc3luYzov
L3JzeW5jLmtyaWxsLmNsb3VkL3JlcG8vbmxuZXRsYWJzLzEvMzEzODM1MmUzNDM5
MmUzMTM0MzIyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMTM2MzUzMDM5LnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA
ATAGAwQBuTGOMA0GCSqGSIb3DQEBCwUAA4IBAQCddtmSpwlpVFibjiwLsrjo95g0
jL+gMMx30lAZEkAjunesL5OCj93a41YP4W3RkRwvWP6gxjSgGVVX4+Pn5dMH9Iaq
wbDf6cs5XWAZer3eO5gOqCov6he9FKhoxi2dvCWU265y4wNIBLkBkb2sWr2e/8jd
9cOeuoUuWXnq/1Nj+HWkY91xhfkrODnNSXYYw0T6ge2AfcpfWte9iSKzj2D/xW2X
NX43ykRrVo2BBQTaebsPVgHkXofJp2u0Uy65Mt8KNhJm/F+SmOuKFzhP2YtooH03
5qqhzBw6iDd2sF1HlIU4E3PLhmJAdiATx1c703mPQid9tyTB9K4OZswVurpR
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org