Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/k3Ku_Khy673DHOR78r8ai3QQMa8.roa
File: k3Ku_Khy673DHOR78r8ai3QQMa8.roa (raw, json)
Hash identifier: JAmfa7Co8JyyJMIl3n5WiClzbFGM0APU7/F37rSxAoo=
Subject key identifier: 93:72:AE:FC:A8:72:EB:BD:C3:1C:E4:7B:F2:BF:1A:8B:74:10:31:AF
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 01857227F94ED85DCA42BFA497BCA3755ADA
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/k3Ku_Khy673DHOR78r8ai3QQMa8.roa
Signing time: Mon 02 Jan 2023 11:05:00 +0000
ROA not before: Mon 02 Jan 2023 11:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206569
IP address blocks: 2a10:4646:1a0::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:f9:4e:d8:5d:ca:42:bf:a4:97:bc:a3:75:5a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 2 11:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9372aefca872ebbdc31ce47bf2bf1a8b741031af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a8:00:04:18:85:c8:06:d2:5b:cb:f8:fd:b3:
ba:89:2c:bd:d7:03:b5:97:75:55:e6:03:4b:79:07:
50:60:92:6c:87:11:9d:d5:88:81:50:5c:cf:38:ba:
92:f9:88:2d:38:ac:2f:ba:08:d5:3f:98:4b:f2:6f:
03:3c:88:04:12:4c:d0:17:b8:95:9a:75:55:33:d1:
4e:e2:56:69:33:0f:10:ac:d3:5b:8a:b1:19:dc:32:
be:92:96:6a:1a:37:f4:e0:6f:67:a3:36:f5:8c:92:
7c:d2:e1:dd:93:88:ef:a6:2b:04:4b:35:b2:cc:ef:
31:94:ba:e2:87:f3:3b:28:99:49:97:33:64:96:66:
78:6e:3f:0e:23:4c:08:8c:e8:b5:9f:d5:03:c8:62:
d9:90:c3:03:96:2d:6f:7e:d1:ad:d1:44:27:a1:27:
b3:4b:7c:85:34:34:ce:b5:4e:54:82:47:70:00:40:
81:8d:53:ba:f9:ea:86:43:ab:ca:cb:2a:e8:ed:9f:
2a:d8:48:8b:a2:e3:f3:f2:f8:6d:5d:a0:3a:c7:6a:
cb:6a:6f:4b:ea:6a:2a:00:a8:fd:5f:8d:c6:3b:9e:
f1:dc:69:61:88:a3:61:b7:03:b8:3d:57:cf:39:6b:
5f:0c:78:a8:d1:55:58:91:be:99:34:a8:e9:8c:bd:
15:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:72:AE:FC:A8:72:EB:BD:C3:1C:E4:7B:F2:BF:1A:8B:74:10:31:AF
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/k3Ku_Khy673DHOR78r8ai3QQMa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:1a0::/44
Signature Algorithm: sha256WithRSAEncryption
a9:a1:e7:c1:be:2e:65:b1:a5:85:a3:b8:3f:eb:39:c4:7c:b6:
f8:3a:27:c7:10:ce:26:d3:4b:e8:e6:79:2d:cb:2e:53:43:27:
4c:a8:1f:91:cf:7f:db:1e:66:ac:b2:ca:02:9a:6f:9d:56:53:
0f:ab:6b:48:a9:2f:98:43:10:0b:e1:17:89:5c:c9:7d:eb:91:
1a:97:68:8e:60:08:21:94:78:30:ea:48:54:1f:1b:4d:53:a0:
1c:4e:69:66:5d:dd:9e:bf:6f:5e:fc:5a:d7:08:af:4f:3c:88:
86:1d:69:08:43:01:6c:27:8f:32:b7:3b:8a:a5:41:01:c1:40:
93:f1:ec:b7:36:d3:01:cc:53:a3:2b:ff:89:93:8d:9f:e2:78:
b9:ba:6b:d7:bd:26:e0:0b:dc:8f:7c:7a:82:33:e6:14:0e:b7:
16:7c:04:2f:28:73:10:c8:73:5c:89:f0:9e:f7:15:39:40:12:
47:bf:e6:57:5e:6d:5f:e8:e0:e4:0d:2a:be:18:75:cc:4c:df:
d7:fc:45:02:f7:7c:53:85:b2:28:3f:45:57:de:05:27:74:06:
bd:e8:8c:ef:02:ba:59:68:0f:03:ed:0e:f4:3d:68:f5:a1:c3:
c8:ef:55:5e:9c:fd:c5:3f:ed:91:d4:45:c1:49:c8:dc:24:0e:
04:86:bb:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:50 2024 by rpki-client on console-ams.rpki-client.org