Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/KmD6t0q9vP5x6B8vktZTa12enKI.roa
File: KmD6t0q9vP5x6B8vktZTa12enKI.roa (raw, json)
Hash identifier: loylqxuOrb2nS/w8fYUbFhD7z6833p0QraBbX6WFyDA=
Subject key identifier: 2A:60:FA:B7:4A:BD:BC:FE:71:E8:1F:2F:92:D6:53:6B:5D:9E:9C:A2
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246CEF8431AEC3A1F06D94C7F0737ED
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/KmD6t0q9vP5x6B8vktZTa12enKI.roa
Signing time: Mon 02 Jan 2023 11:38:41 +0000
ROA not before: Mon 02 Jan 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202827
IP address blocks: 2a0c:9a40:9200::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ce:f8:43:1a:ec:3a:1f:06:d9:4c:7f:07:37:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a60fab74abdbcfe71e81f2f92d6536b5d9e9ca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ff:9b:e0:23:a3:a0:7c:20:19:d1:2b:64:c2:
d0:db:28:5f:10:6a:74:41:26:c2:b8:31:61:22:81:
73:25:53:2e:49:0c:ea:93:9b:5e:71:cb:ea:2e:7e:
19:ae:b2:e0:c1:a4:aa:49:3e:31:ae:7d:6c:b8:fd:
26:6c:4d:14:3f:eb:f0:65:59:0a:4c:e2:ca:e9:b9:
3e:76:bc:b5:cb:75:65:66:f8:41:c7:95:af:82:72:
bc:72:d7:f3:7b:92:ea:af:0e:26:cf:38:9e:0c:6b:
3c:c0:02:3b:00:25:59:1a:ad:06:32:db:30:1c:f5:
64:41:0c:28:87:7c:0a:79:bd:d1:a1:a2:56:06:e6:
5b:f3:00:0d:fc:1d:f5:16:2f:99:6c:55:19:b6:a8:
0d:ac:12:47:99:8f:5c:de:2d:35:1a:94:c5:e4:fe:
b0:93:e3:56:5e:f0:81:b1:2f:22:9b:74:e4:7f:36:
bd:a4:b0:50:29:90:e5:04:e0:db:4c:84:9f:ba:6e:
22:10:88:06:44:88:b5:aa:d2:d9:bd:fa:e0:ed:cd:
e2:a1:4c:e6:8d:62:28:0c:24:0d:be:14:1b:6f:c4:
da:2a:46:e8:d6:a3:5a:ba:88:dc:c6:f1:44:f9:01:
07:c3:2c:39:2d:3f:e1:7a:ad:e1:ec:c1:bf:b7:f6:
f5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:60:FA:B7:4A:BD:BC:FE:71:E8:1F:2F:92:D6:53:6B:5D:9E:9C:A2
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/KmD6t0q9vP5x6B8vktZTa12enKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:9200::/40
Signature Algorithm: sha256WithRSAEncryption
b8:0d:12:f7:b2:70:1c:fd:be:a1:a9:50:f7:cf:26:c2:4a:24:
94:75:9a:e2:57:e7:f0:07:e2:3e:51:79:21:02:ec:54:5e:87:
15:fa:20:d4:04:8e:c8:41:65:63:c6:64:4b:45:42:0d:11:d1:
51:8f:bb:be:c4:83:aa:de:a5:5a:ec:0c:1c:ad:c2:41:85:92:
52:e4:60:c5:79:7b:8a:af:5b:8b:63:46:ed:60:08:5d:96:6b:
0e:53:66:cc:0c:fe:e5:76:76:bc:f8:ba:fe:f1:52:4d:27:7c:
91:21:12:00:3e:e0:71:01:2a:b6:4b:c8:7f:d4:c3:3a:0c:cf:
55:a2:2e:91:39:6d:52:2a:20:34:45:8a:aa:f3:6c:4c:dd:6f:
0e:d0:92:f3:8c:79:a0:04:96:98:28:24:71:8b:85:ef:7a:33:
5c:97:8f:67:06:a8:7c:2d:1c:fd:42:c9:9f:a8:b4:ba:c6:90:
51:c3:60:d3:63:5b:7c:92:0e:bf:50:20:e8:4a:25:c2:7a:14:
40:85:c9:aa:86:14:87:de:83:75:49:1b:4e:11:f9:95:3b:fc:
22:2c:16:a2:b4:a4:f8:71:fe:2f:e7:7a:84:9b:74:ec:c7:33:
38:da:b9:1c:1c:e4:9e:62:63:37:b5:66:61:59:4f:bd:de:8e:
2a:cf:f6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org