Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/KAkhNwLbhBXBJRYCTY5M5-VP2Dw.roa
File: KAkhNwLbhBXBJRYCTY5M5-VP2Dw.roa (raw, json)
Hash identifier: 8Jxi4ady7Vy9PZOnmmHtR0OWBjsflar0Fm5Jn0N3nrk=
Subject key identifier: 28:09:21:37:02:DB:84:15:C1:25:16:02:4D:8E:4C:E7:E5:4F:D8:3C
Certificate issuer: /CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Certificate serial: 018571A7B52D7C9765095C84837701A830C6
Authority key identifier: 6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/KAkhNwLbhBXBJRYCTY5M5-VP2Dw.roa
Signing time: Mon 02 Jan 2023 08:44:54 +0000
ROA not before: Mon 02 Jan 2023 08:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 62.68.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:b5:2d:7c:97:65:09:5c:84:83:77:01:a8:30:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b104f1e4abaec1eff80f262c62f96c25438c8e1
Validity
Not Before: Jan 2 08:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2809213702db8415c12516024d8e4ce7e54fd83c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:28:e3:35:13:2e:76:93:92:1a:5c:f2:d4:
a1:4a:08:76:ac:a6:4b:a9:1a:4e:9e:05:5c:d8:a2:
7f:57:a3:5c:ab:d2:55:ec:0e:27:e9:f3:45:a6:ce:
25:cf:37:35:04:6e:66:9b:b9:5d:20:d7:f8:b4:95:
45:de:b4:59:52:ab:b7:33:18:65:85:19:a5:92:92:
2c:9d:d1:37:8e:63:fe:9a:d4:3c:54:c7:48:bc:18:
cc:2b:b5:12:b4:37:35:95:45:e4:49:78:9f:9b:f4:
11:53:da:0c:18:19:2f:63:49:72:55:ca:50:bc:c6:
6f:c6:05:75:3c:32:f1:c7:4b:b4:0f:e3:f6:30:a0:
21:37:b8:53:a5:8f:bc:23:f4:46:a7:cc:8e:fd:38:
c0:62:1b:8d:3b:96:43:fc:b8:f9:06:6e:c4:56:88:
31:ec:20:4f:62:03:9e:54:93:b6:95:ee:2d:3e:b0:
2c:e1:92:45:6a:74:ce:8a:8d:fa:25:83:23:7b:bb:
ba:2f:0c:88:a9:f4:92:4f:35:db:99:a2:6c:91:47:
2b:e4:11:b7:8d:10:28:24:76:2e:95:79:7a:f1:29:
e9:bc:f6:aa:94:52:36:8b:cb:9f:62:09:82:27:e5:
2a:dc:2f:81:a1:43:cd:7e:ea:48:ae:f6:4c:8f:37:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:09:21:37:02:DB:84:15:C1:25:16:02:4D:8E:4C:E7:E5:4F:D8:3C
X509v3 Authority Key Identifier:
keyid:6B:10:4F:1E:4A:BA:EC:1E:FF:80:F2:62:C6:2F:96:C2:54:38:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/axBPHkq67B7_gPJixi-WwlQ4yOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/KAkhNwLbhBXBJRYCTY5M5-VP2Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/653c24-68e5-4ad8-b763-30c9de205afc/1/axBPHkq67B7_gPJixi-WwlQ4yOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.73.0/24
Signature Algorithm: sha256WithRSAEncryption
97:fb:91:11:a9:f6:c9:fd:d7:66:93:19:d8:54:0b:b5:e9:a4:
56:a3:13:41:09:0c:e3:4f:74:2d:31:75:15:9a:31:5a:22:a9:
b9:80:42:1b:b6:86:37:cc:29:7c:de:57:e1:34:ad:99:a5:c0:
f9:e0:c4:90:cc:ea:b5:20:49:11:e0:15:26:42:73:b0:85:2a:
d2:32:6b:11:90:4e:69:a2:fe:38:b5:60:48:c5:c9:11:03:df:
da:3d:d0:7c:fa:c7:a4:33:f3:82:09:3e:11:53:c9:43:d7:19:
c9:be:28:34:fe:70:f2:17:68:68:62:ff:f4:17:b5:6e:1d:8a:
b5:47:e2:03:aa:28:f1:2e:d5:4c:cc:32:58:66:2b:60:fb:8d:
ef:79:fa:a4:0e:08:ed:51:fe:71:34:5e:86:2a:60:2b:51:f2:
f0:6c:57:07:1c:51:d7:89:5d:e2:1c:7f:e2:b5:5d:46:ff:49:
05:61:f3:6f:33:fa:5b:15:3c:e7:48:fb:de:b7:10:b2:6e:b7:
70:78:0e:6f:97:2b:2c:61:f7:89:3a:bc:2a:4e:72:ef:96:7b:
76:90:aa:bf:74:90:f4:f1:45:72:fd:04:0d:64:1a:db:04:9a:
27:fa:dc:ca:00:fd:09:b7:2a:09:f6:6d:d4:92:30:7d:3e:91:
1a:bd:83:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:35 2024 by rpki-client on console-fra.rpki-client.org