Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KBFyOYauW2OFt9jyD9BhjkUU6Gk.roa
File: KBFyOYauW2OFt9jyD9BhjkUU6Gk.roa (raw, json)
Hash identifier: LEkH6xeIb7RV7w2hUBuEPa07i+nQ1qUWKY+wTXwoN14=
Subject key identifier: 28:11:72:39:86:AE:5B:63:85:B7:D8:F2:0F:D0:61:8E:45:14:E8:69
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E809279A6EF5B4B3DEBB05B75493E
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KBFyOYauW2OFt9jyD9BhjkUU6Gk.roa
Signing time: Mon 02 Jan 2023 06:15:02 +0000
ROA not before: Mon 02 Jan 2023 06:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211317
IP address blocks: 2a0c:b641:1b0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:80:92:79:a6:ef:5b:4b:3d:eb:b0:5b:75:49:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2811723986ae5b6385b7d8f20fd0618e4514e869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d3:58:fc:a5:7c:7a:48:d2:9d:8f:fb:b7:65:
60:7b:c6:ad:be:eb:b4:b8:be:60:c1:b7:c9:1a:c2:
4f:c1:7c:72:cb:df:8a:85:d6:e3:bb:68:0e:02:b0:
86:7c:e5:a3:91:f5:8f:5a:dd:b6:a7:e3:d3:0d:53:
fc:54:db:18:c2:c7:69:2f:a6:ca:0c:5a:96:ab:6d:
0e:55:67:93:f3:ad:f6:5a:b0:1a:74:67:e6:23:40:
66:9f:03:ff:6e:ed:48:4a:60:77:c1:12:5b:10:ea:
95:41:06:1f:68:77:5c:9b:4e:db:66:1c:54:7a:a4:
f0:e6:5b:56:33:5d:74:66:54:71:62:fc:59:b8:6c:
03:41:85:d4:3e:91:1a:95:ca:42:9f:76:9d:88:19:
66:89:aa:c1:e0:3e:06:44:f6:f7:8c:34:ce:9e:cb:
4b:bf:a7:d0:53:d3:df:13:7e:12:3a:0f:06:12:28:
b2:d9:e0:36:fa:d9:26:7b:22:23:ac:84:ca:91:a8:
4d:6d:c5:f2:32:16:2c:70:df:f2:5d:e9:de:5f:d6:
11:65:63:41:f9:cc:55:08:64:3d:cd:f8:86:14:d3:
7c:fa:e5:28:f8:22:81:96:1d:48:09:23:97:39:58:
36:42:44:00:b9:eb:f2:27:b2:0e:47:67:8b:5a:a6:
21:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:11:72:39:86:AE:5B:63:85:B7:D8:F2:0F:D0:61:8E:45:14:E8:69
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KBFyOYauW2OFt9jyD9BhjkUU6Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:1b0::/44
Signature Algorithm: sha256WithRSAEncryption
5a:c2:f4:d1:5b:b9:f8:97:94:7c:bd:84:f4:1b:fa:07:b3:40:
ac:9d:59:86:95:ba:95:d8:20:db:45:7a:8b:0d:9d:5a:fc:19:
45:81:88:cc:5a:b1:3c:c0:2a:fd:9c:3a:35:0c:1a:28:35:3b:
ec:2f:df:7d:50:60:14:76:04:db:82:1b:f2:db:c4:ff:09:1d:
e6:86:d1:d1:2c:ca:48:fe:bd:f1:38:5d:48:74:c0:b1:88:99:
3e:7c:7f:32:42:a4:6a:4e:a0:74:66:11:51:59:44:e7:5f:5a:
42:cd:91:64:f1:b9:54:5e:1a:b0:0b:e5:53:31:df:2e:6c:df:
8e:32:3d:27:33:9b:bb:a0:c9:10:2e:d3:0e:bd:20:35:a3:12:
b3:a2:8f:97:94:57:ac:ec:01:04:d7:a4:b2:cc:62:96:6d:d5:
59:92:19:9c:be:a8:b6:76:b9:ce:11:d6:e7:79:97:97:5d:7d:
26:84:01:91:8a:54:08:c4:47:19:e8:e8:7c:f7:41:57:2d:88:
73:82:47:a4:c4:e7:a1:99:4a:42:bd:82:6e:a9:ca:b4:f4:95:
4a:e8:2d:74:27:28:50:a3:f2:6b:f9:6e:55:22:05:7c:34:3a:
c9:24:b2:0f:5e:c8:df:42:ed:b4:90:a3:ac:66:e4:18:6c:36:
47:80:8c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org