Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KkkNSyKvM03M23-2H8viirWzNs0.roa
File: KkkNSyKvM03M23-2H8viirWzNs0.roa (raw, json)
Hash identifier: nrixhwQ8eSkwtdXZhoHuYngEAMCjCvwva7ScrmLbGtU=
Subject key identifier: 2A:49:0D:4B:22:AF:33:4D:CC:DB:7F:B6:1F:CB:E2:8A:B5:B3:36:CD
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018CC2DB356B180DA4CD0027DA261B26D737
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KkkNSyKvM03M23-2H8viirWzNs0.roa
Signing time: Mon 01 Jan 2024 02:29:55 +0000
ROA not before: Mon 01 Jan 2024 02:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205911
IP address blocks: 2a13:4800::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:35:6b:18:0d:a4:cd:00:27:da:26:1b:26:d7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 02:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2a490d4b22af334dccdb7fb61fcbe28ab5b336cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0f:51:48:3b:7f:71:de:19:1d:68:75:c5:a9:
84:e6:89:08:09:f2:45:55:6c:dc:58:72:68:92:97:
aa:16:c0:9b:31:dc:45:17:b1:2e:0c:15:47:7e:bc:
ea:44:8c:25:fb:0c:fa:f3:03:42:09:8f:bf:14:0a:
6e:34:96:dc:2c:53:6f:c9:50:7d:1b:9b:45:a5:11:
b7:3c:20:9f:d5:93:c6:85:85:be:7f:25:57:17:fc:
e3:c5:74:1b:40:3f:95:3d:6c:d1:07:85:93:12:f9:
24:12:89:83:09:4a:e7:3f:fa:f5:34:c3:51:01:e6:
41:3f:49:e1:a6:8a:f4:a2:af:65:3f:48:f6:5c:69:
8a:96:ce:7e:cd:99:6b:35:db:80:6a:74:28:3a:e0:
a0:88:15:ae:62:3e:04:ac:a9:74:18:ca:9d:19:4b:
c3:53:8b:19:b8:9a:c1:a9:00:26:66:8a:16:73:c1:
4d:5c:d9:7b:34:43:58:da:09:6a:c7:bd:c1:8e:87:
05:9d:f9:7e:15:f2:d4:bc:29:5c:d6:60:2c:77:dc:
4b:5e:e9:b4:58:cd:bf:9a:64:2c:e0:ed:dc:4a:0b:
45:15:8a:b7:51:2c:80:31:e3:a4:a3:4d:81:e6:2a:
61:5b:08:c0:2a:af:90:57:f8:9d:43:22:24:58:65:
b3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:49:0D:4B:22:AF:33:4D:CC:DB:7F:B6:1F:CB:E2:8A:B5:B3:36:CD
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/KkkNSyKvM03M23-2H8viirWzNs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:4800::/29
Signature Algorithm: sha256WithRSAEncryption
74:ab:37:f2:09:57:03:b0:be:23:b5:f7:cb:01:b5:59:82:a5:
0a:17:c0:41:75:7f:f3:eb:82:0e:d2:2b:6f:c5:cb:36:fb:94:
24:e3:43:3c:cf:4c:7f:ad:a5:29:2e:7b:a2:5a:89:22:88:b9:
a3:46:74:07:22:9b:4c:7b:d9:3c:ff:ef:6d:69:90:1a:7f:4d:
cd:fc:14:6c:0c:a9:1c:a9:04:8b:8b:c8:83:5f:22:e7:16:72:
3e:4d:fc:82:b8:22:ff:28:43:f8:9e:bd:92:5c:1a:39:c9:02:
72:f7:34:75:a0:03:28:ad:f8:3d:49:00:47:ab:f4:b9:5b:44:
62:35:14:5a:78:f9:25:47:1f:c5:3f:fe:76:d8:12:1f:66:76:
be:a1:53:e4:ca:41:7c:9c:ea:44:0a:e6:14:ee:14:b6:cf:3b:
7a:4f:ed:fd:7d:b4:f7:ce:d9:0d:0b:b0:1b:b6:bf:1a:6d:a4:
79:32:b3:44:a6:0e:e4:ea:9a:b7:81:25:3e:f5:a4:3c:49:7c:
70:ce:fe:35:82:ec:e9:0c:5d:ea:cf:af:1d:a0:04:cc:66:2f:
f1:12:bc:4c:f9:6f:b9:8f:68:d3:05:a0:ea:4e:6a:6f:f7:bc:
72:f5:83:14:a9:66:42:8b:7f:1a:c4:a5:3e:18:88:79:4b:6b:
36:be:29:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 4 21:38:11 2024 by rpki-client on console-ams.rpki-client.org