Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/2t_Kvl_NiqiT1z1AVtCd0h3H0yc.roa
File: 2t_Kvl_NiqiT1z1AVtCd0h3H0yc.roa (raw, json)
Hash identifier: 4uHfksfBHOxOB6Z8Hw35t7IPDZMv+TN8OHY4KbAf9W0=
Subject key identifier: DA:DF:CA:BE:5F:CD:8A:A8:93:D7:3D:40:56:D0:9D:D2:1D:C7:D3:27
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE622B1616E759FA3364F59D90A234A
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/2t_Kvl_NiqiT1z1AVtCd0h3H0yc.roa
Signing time: Sun 01 Jan 2023 10:34:59 +0000
ROA not before: Sun 01 Jan 2023 10:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200615
IP address blocks: 46.243.76.0/22 maxlen: 22
193.42.60.0/22 maxlen: 22
77.83.32.0/22 maxlen: 22
2a09:e683:1::/48 maxlen: 48
2a09:e685::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 21 Jan 2023 09:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:22:b1:61:6e:75:9f:a3:36:4f:59:d9:0a:23:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dadfcabe5fcd8aa893d73d4056d09dd21dc7d327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2e:ca:a3:72:5d:f8:13:81:36:e5:80:f0:0d:
13:11:0a:7c:70:46:c9:6a:c4:25:d2:80:62:2f:56:
e2:04:ee:18:02:4b:a3:02:bf:ff:7f:67:7f:0b:ff:
bc:87:2b:7f:85:6b:7e:da:6a:c3:fb:cc:a1:39:65:
dc:47:b2:e1:f5:04:1d:78:a3:4f:44:99:4a:cf:6e:
22:db:4c:fb:79:7c:1c:8f:8c:42:b9:47:eb:1e:09:
f3:2d:5b:00:c0:d6:f2:58:22:bb:2d:23:17:03:01:
ba:c9:a4:78:49:6e:77:33:a4:0a:8f:7c:e3:59:94:
1d:35:a7:80:29:9e:74:9e:18:98:86:23:e5:81:1e:
13:ad:58:2a:9c:75:7f:3e:80:12:1c:c2:3e:28:2c:
ba:6c:e7:60:cf:8a:d3:cf:f7:ce:4e:08:cd:56:94:
72:07:2d:9f:0a:ed:3a:8a:03:3a:16:af:e3:4d:b0:
c9:83:e2:1a:ef:75:ad:bd:21:dd:5c:32:06:47:fa:
44:b8:44:ad:d1:96:03:e6:fd:23:f6:e5:51:a7:1d:
ed:91:99:4e:5b:cf:c4:59:f7:59:01:f6:79:d3:1f:
a9:f6:21:d2:15:fc:e9:0a:f6:1c:9c:29:f4:de:1f:
83:ec:64:ed:ca:36:61:64:28:d1:43:0b:2d:b1:16:
41:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DF:CA:BE:5F:CD:8A:A8:93:D7:3D:40:56:D0:9D:D2:1D:C7:D3:27
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/2t_Kvl_NiqiT1z1AVtCd0h3H0yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.243.76.0/22
77.83.32.0/22
193.42.60.0/22
IPv6:
2a09:e683:1::/48
2a09:e685::/48
Signature Algorithm: sha256WithRSAEncryption
8b:2e:65:38:9a:32:6e:5d:bb:01:ef:a4:06:ed:e6:c7:ff:af:
5b:d4:b8:8a:75:d7:41:00:b7:e9:e3:34:21:f2:3b:e4:6a:a3:
a6:4c:58:34:a3:32:6f:91:f4:c3:3f:62:37:dd:6e:bc:37:e1:
fa:5d:e3:55:93:b9:88:15:64:25:12:95:d7:f8:e1:37:89:25:
f4:32:23:a6:40:fb:34:12:72:45:7c:1f:a6:fc:2c:a7:5c:fb:
86:00:0d:63:9b:35:8d:bc:c8:7d:99:dc:e0:30:17:51:f5:f9:
c8:d6:e7:53:7f:1f:ef:1d:fe:54:3f:de:00:42:83:2d:8c:28:
ce:10:1b:d6:21:29:f6:ec:f1:c0:08:d9:3d:f2:80:22:ef:b1:
45:2b:c6:b6:e4:9b:ef:17:8b:1a:4c:03:ab:b3:51:2a:93:79:
ea:bf:f0:32:94:a1:9d:e7:ef:7a:84:f2:a6:af:4f:37:2b:b5:
e9:03:14:31:7e:03:16:22:00:5d:27:cd:d1:0b:d7:6e:f0:6f:
d2:b4:b9:8f:7f:f5:24:08:2f:d7:18:65:5c:d4:fd:f1:57:63:
f3:5a:c0:f8:97:ad:95:93:f9:2a:a4:5c:7d:16:69:52:fe:a7:
84:98:4a:87:66:2c:f9:8e:55:ab:38:90:ad:7a:6e:f7:6e:bd:
c4:77:09:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org