Route Origin Authorization
$ rpki-client -vvf rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930353a3a2f33322d3332203d3e20323131333231.roa
File: 326130343a623930353a3a2f33322d3332203d3e20323131333231.roa (raw, json)
Hash identifier: Pxq3+xSDztMOM+4oK/+vREjSnZg9ExQo8TG8N9lcUJY=
Subject key identifier: 93:64:65:69:8E:8C:2B:FE:76:CC:8E:5A:CC:51:7D:9C:19:35:2F:69
Certificate issuer: /CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Certificate serial: 0A05D212CB1563D1098A9F776147DD1F12651A1B
Authority key identifier: A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject info access: rsync://rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930353a3a2f33322d3332203d3e20323131333231.roa
Signing time: Mon 26 Jun 2023 19:47:00 +0000
ROA not before: Mon 26 Jun 2023 19:42:00 +0000
ROA not after: Mon 24 Jun 2024 19:47:00 +0000
asID: 211321
IP address blocks: 2a04:b905::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 13 Dec 2023 10:43:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:05:d2:12:cb:15:63:d1:09:8a:9f:77:61:47:dd:1f:12:65:1a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81eb3a5eb3df634551a90722bc63ad7e022cac4
Validity
Not Before: Jun 26 19:42:00 2023 GMT
Not After : Jun 24 19:47:00 2024 GMT
Subject: CN=936465698E8C2BFE76CC8E5ACC517D9C19352F69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9f:9c:b1:bc:2e:9c:b0:08:4a:b3:1e:90:7b:
52:e6:8b:cc:f3:b6:7a:42:61:4c:aa:da:8f:d0:93:
92:5f:31:6c:c1:0d:68:e7:11:96:4b:a9:59:76:40:
ed:ae:37:b9:20:ab:1a:ec:97:2d:3b:eb:50:d4:4b:
af:12:bd:7c:82:8e:01:1d:a4:15:51:49:76:c9:69:
51:4b:6d:0b:be:b7:e3:24:68:f1:0f:99:2e:d5:95:
63:91:e0:d4:71:88:28:54:f4:dc:b6:86:1a:01:74:
94:23:9d:e7:51:bb:a1:02:58:e6:b8:4d:fe:08:9c:
ac:2f:fb:cf:7a:1f:9d:a4:38:f8:36:46:ab:4b:67:
14:3c:92:e3:1e:d0:e8:6d:b9:25:4e:25:b7:f2:ac:
51:c0:4f:83:8e:1d:29:ef:b8:bc:ee:88:9a:54:b4:
81:a5:1d:94:56:2a:37:89:f4:10:1a:33:3f:50:06:
cf:e1:dc:c7:8a:25:3d:41:20:c9:cd:86:d0:ac:f5:
d6:5b:c5:0f:26:45:b6:32:11:60:b6:25:d6:21:40:
5a:7b:92:a1:80:2f:b9:37:b3:1a:5e:3c:d1:8c:4a:
01:31:41:e0:6d:61:5a:22:3c:01:20:84:4a:80:a6:
9b:ec:17:a9:3b:bc:19:4c:40:a6:76:8c:e3:89:84:
9b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:64:65:69:8E:8C:2B:FE:76:CC:8E:5A:CC:51:7D:9C:19:35:2F:69
X509v3 Authority Key Identifier:
keyid:A8:1E:B3:A5:EB:3D:F6:34:55:1A:90:72:2B:C6:3A:D7:E0:22:CA:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/A81EB3A5EB3DF634551A90722BC63AD7E022CAC4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qB6zpes99jRVGpByK8Y61-AiysQ.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.krill.cloud/repo/nlnetlabs/1/326130343a623930353a3a2f33322d3332203d3e20323131333231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:b905::/32
Signature Algorithm: sha256WithRSAEncryption
c8:ee:a0:be:3f:2d:ef:bf:eb:f4:9e:ef:a1:7d:d3:9b:09:0e:
10:d0:f2:d6:bd:b8:40:ad:84:43:2f:b8:39:66:19:c7:41:a4:
2c:4f:6c:76:ac:d0:e4:0e:6f:e0:c2:31:20:13:23:e9:40:2f:
45:d7:c3:d3:81:08:c1:1a:37:ce:4b:ac:9c:a8:84:ac:43:2e:
df:92:e3:da:29:fb:15:07:a7:cd:f7:20:f7:96:d9:91:dc:01:
13:72:e6:2e:81:a7:9d:4a:4d:54:ae:a6:15:1a:88:7d:39:42:
77:a9:f6:df:6d:40:88:f8:52:ec:5a:61:33:34:de:b8:99:60:
47:59:20:88:89:00:ac:23:bf:1d:f1:5e:31:43:15:0e:3c:59:
e3:0f:01:61:28:2b:9a:01:a4:f8:dd:65:a8:75:24:89:e3:08:
61:df:36:48:50:69:d2:bb:40:cc:a3:af:f6:88:d0:91:13:f4:
2a:6c:67:af:a1:05:8c:b6:60:85:c7:89:2d:f9:56:a8:0b:22:
0b:14:3b:87:d4:4e:24:37:da:a5:c0:a1:ec:f5:12:dc:47:23:
a0:20:6a:40:0e:76:08:dc:1a:2a:90:a0:3c:ec:c8:d6:83:ee:
79:9c:7a:06:f0:d3:51:a9:d9:5c:4c:f5:76:1c:db:e0:ed:0e:
d6:8d:7b:d7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org