Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/Kevncm0ID9lP2vELELWqjOwZOJ8.roa
File: Kevncm0ID9lP2vELELWqjOwZOJ8.roa (raw, json)
Hash identifier: V6PSMl5nuTBuBdkHFrMtT5rkvaESxeMYlyZ6YMLhoC0=
Subject key identifier: 29:EB:E7:72:6D:08:0F:D9:4F:DA:F1:0B:10:B5:AA:8C:EC:19:38:9F
Certificate issuer: /CN=f1003d2c71ab076991fb03ed6600bf1d48b72be5
Certificate serial: 01856EF429E90B4797003114EE08279463ED
Authority key identifier: F1:00:3D:2C:71:AB:07:69:91:FB:03:ED:66:00:BF:1D:48:B7:2B:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QA9LHGrB2mR-wPtZgC_HUi3K-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/Kevncm0ID9lP2vELELWqjOwZOJ8.roa
Signing time: Sun 01 Jan 2023 20:09:33 +0000
ROA not before: Sun 01 Jan 2023 20:09:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56951
IP address blocks: 2001:678:fd4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:29:e9:0b:47:97:00:31:14:ee:08:27:94:63:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1003d2c71ab076991fb03ed6600bf1d48b72be5
Validity
Not Before: Jan 1 20:09:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ebe7726d080fd94fdaf10b10b5aa8cec19389f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8f:3d:36:e3:b8:5e:20:ed:00:98:41:90:cd:
78:03:37:e5:aa:1e:34:85:38:02:76:c6:47:fa:9a:
18:f2:a6:32:ee:a1:1f:6c:aa:97:1d:fd:d4:14:c0:
48:cb:ac:60:13:d5:98:c3:6e:85:f2:4b:aa:f0:65:
bd:68:1d:c7:01:be:50:0a:d0:42:5f:92:bd:9f:11:
1f:3f:db:b5:ea:e7:20:d5:ce:08:4f:f4:31:06:c9:
50:fa:8d:01:b7:38:40:c5:c1:72:be:6a:2e:10:59:
83:34:07:63:96:36:0a:5f:6d:fa:93:e2:a0:09:a8:
b6:fe:c0:4e:e5:5c:bb:24:19:50:b5:41:b0:f1:60:
42:54:bb:52:fb:8a:8e:60:79:62:e9:6c:60:a5:9a:
b8:24:9b:61:f5:28:6a:da:f3:06:27:7a:09:b2:bd:
23:17:cb:a2:13:59:11:ef:3f:1d:05:ce:b1:49:f7:
0f:96:13:05:d8:50:43:00:38:ab:e1:0e:47:d1:bf:
d3:24:a7:c8:d4:c2:cb:d7:39:19:06:94:d3:6c:9c:
ef:5c:33:e5:a0:ce:0c:ef:ed:40:5d:cc:93:4e:49:
f9:19:68:2a:f7:52:f8:5a:d4:c7:80:ef:e6:39:ed:
07:48:d8:05:bc:d3:0a:3c:fd:6d:04:44:a6:36:c8:
40:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EB:E7:72:6D:08:0F:D9:4F:DA:F1:0B:10:B5:AA:8C:EC:19:38:9F
X509v3 Authority Key Identifier:
keyid:F1:00:3D:2C:71:AB:07:69:91:FB:03:ED:66:00:BF:1D:48:B7:2B:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QA9LHGrB2mR-wPtZgC_HUi3K-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/Kevncm0ID9lP2vELELWqjOwZOJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/846a03-de24-485b-b9b7-c4bc803d893f/1/8QA9LHGrB2mR-wPtZgC_HUi3K-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fd4::/48
Signature Algorithm: sha256WithRSAEncryption
75:10:7a:6b:2a:80:57:00:82:97:ee:75:ef:f4:1b:fa:98:c1:
be:95:e3:19:71:77:99:e9:29:86:2f:38:d9:ad:a7:2d:f9:2d:
63:60:03:61:37:7b:93:74:05:26:f6:6a:d4:2d:bb:07:a7:ba:
86:1e:2f:27:4f:a5:e8:cc:75:98:06:e8:00:99:63:9f:da:ec:
e2:74:e9:59:e5:39:29:5f:a5:ee:a4:49:53:db:fe:d0:f9:7f:
93:b0:9e:91:b5:fe:0f:9b:56:19:ed:27:39:10:f7:0d:44:32:
09:ba:f1:f5:77:83:d7:74:41:c6:1d:56:ac:40:f0:af:fb:66:
e4:5f:c6:8a:6b:78:4d:95:d4:55:55:d4:16:86:ad:4a:55:7e:
10:21:81:b8:2c:ba:af:e9:c0:69:c0:8e:ce:ec:c8:62:2e:09:
3d:55:1f:60:80:5c:19:fe:ee:ca:ef:c9:bb:fa:15:03:dd:3d:
81:7e:b5:8c:fd:2c:ec:79:f0:86:cf:94:cf:91:89:8a:ff:df:
cc:2c:67:1e:b9:6a:c1:8e:17:7d:69:b7:8d:3c:6a:35:51:bd:
73:d7:fb:ec:c8:d7:01:39:27:e5:09:7d:ed:59:82:31:64:1e:
2d:03:dc:10:f9:6b:a6:bf:75:c1:98:bd:31:3f:ff:c6:23:93:
44:f2:2d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:26 2024 by rpki-client on console-ams.rpki-client.org