Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KpHwOjwr598Lb8L-FEo9g7ti5WQ.roa
File: KpHwOjwr598Lb8L-FEo9g7ti5WQ.roa (raw, json)
Hash identifier: cfInIyexCsoCYfUWJSNB9EyYL+1jgAdveGK4R8Od5Js=
Subject key identifier: 2A:91:F0:3A:3C:2B:E7:DF:0B:6F:C2:FE:14:4A:3D:83:BB:62:E5:64
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E5D2C0C54D4BEE56F773E688651E0
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KpHwOjwr598Lb8L-FEo9g7ti5WQ.roa
Signing time: Mon 02 Jan 2023 06:14:53 +0000
ROA not before: Mon 02 Jan 2023 06:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207149
IP address blocks: 2a0c:b641:270::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:5d:2c:0c:54:d4:be:e5:6f:77:3e:68:86:51:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a91f03a3c2be7df0b6fc2fe144a3d83bb62e564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:02:9c:6b:d1:c6:f5:64:ca:82:8a:c9:ab:e3:
01:c0:c7:2f:76:91:c2:7e:cf:ce:21:13:84:90:77:
a0:2c:24:11:56:3d:8b:d2:e8:80:2f:c5:9c:b1:f5:
88:74:fa:e3:fe:e9:14:97:6f:b8:88:9e:41:38:d1:
85:d7:2f:5f:bb:5f:a6:2c:c4:f5:3f:3a:c9:b1:fc:
3d:fd:d3:a7:c3:79:e7:55:a1:f7:17:c7:66:2a:23:
f5:d3:32:a0:b3:ce:cc:40:01:1e:7d:fa:6c:cf:35:
d5:a4:2b:c0:c9:90:be:9d:77:c0:78:5f:61:72:f3:
26:ed:de:f2:b5:3d:82:86:00:53:ec:72:f6:e3:6c:
f4:d3:da:db:e0:2b:37:6b:b8:94:83:ce:5e:36:d4:
f3:cb:df:be:c7:d7:3a:b0:6e:71:1d:f9:62:4d:f0:
d3:2d:0b:c0:d3:d7:06:3f:2a:cc:0b:3b:15:06:6e:
3e:fd:4c:37:89:cf:ba:f1:83:14:cb:44:b6:e0:b3:
3d:9e:ce:69:c3:a5:89:27:aa:4e:3f:91:07:cb:95:
39:f1:28:66:84:56:c2:ee:c4:8f:60:9d:3f:bf:7a:
1b:0a:e9:c0:54:24:bb:15:a7:d3:be:6c:0d:d9:a2:
85:da:01:fc:29:d0:7e:0c:91:5c:33:47:8b:2d:47:
39:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:91:F0:3A:3C:2B:E7:DF:0B:6F:C2:FE:14:4A:3D:83:BB:62:E5:64
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KpHwOjwr598Lb8L-FEo9g7ti5WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:270::/44
Signature Algorithm: sha256WithRSAEncryption
36:e5:1a:9e:74:2d:ca:03:87:57:2d:9f:57:bc:c5:94:af:18:
01:db:0a:ef:95:8a:ed:bd:5f:86:d2:da:a9:77:c7:7d:e0:37:
88:3b:64:4b:f9:07:62:56:54:9e:f0:de:9d:30:75:65:7d:24:
13:b9:4e:34:02:d1:90:8d:77:ff:7c:de:0d:a2:3a:ee:93:78:
39:bc:64:e4:da:eb:14:66:33:d8:18:ff:f0:26:0a:bb:b5:e0:
39:1b:79:dd:88:89:91:18:c3:ec:01:03:10:54:8d:96:5d:e7:
6d:2b:d4:b0:4a:0c:c2:91:d6:6e:3d:a0:db:a6:e6:66:92:8f:
2f:5e:de:80:60:a7:08:d4:e1:ba:c4:d8:c9:b9:7c:50:0b:47:
9b:82:fd:7f:f8:93:34:7c:37:c7:0b:1a:ac:3c:ba:5f:15:5a:
88:71:ae:66:2f:c6:da:76:18:c7:13:11:12:b5:c1:29:00:29:
21:83:e9:86:78:bd:ee:68:85:8f:f9:0a:5d:fe:11:62:70:08:
d4:fd:d6:60:21:9a:22:14:0d:27:0f:ed:05:50:01:2c:71:57:
7e:7c:4f:09:2a:13:50:cd:da:54:5c:20:ff:f8:b3:a6:34:43:
cd:7b:86:a3:41:4c:64:08:82:50:9e:13:69:b5:42:7a:87:fc:
7c:af:9a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:01 2024 by rpki-client on console-ams.rpki-client.org