Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/K9DDJOzIomBG9OS42layEinuG3w.roa
File: K9DDJOzIomBG9OS42layEinuG3w.roa (raw, json)
Hash identifier: uOMHFxRdNoVtXTJwN2OjUau698Z5ioo6DuYrIW6EVXw=
Subject key identifier: 2B:D0:C3:24:EC:C8:A2:60:46:F4:E4:B8:DA:56:B2:12:29:EE:1B:7C
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 0185E8936B3BB5E7CC8CB1C7BFEB35B80F60
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/K9DDJOzIomBG9OS42layEinuG3w.roa
Signing time: Wed 25 Jan 2023 10:57:33 +0000
ROA not before: Wed 25 Jan 2023 10:57:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30371
IP address blocks: 2001:668:1f8::/46 maxlen: 46
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e8:93:6b:3b:b5:e7:cc:8c:b1:c7:bf:eb:35:b8:0f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 25 10:57:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bd0c324ecc8a26046f4e4b8da56b21229ee1b7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:74:cb:20:46:ac:47:31:d4:b9:b7:59:74:
30:52:e2:af:67:62:00:61:94:9e:44:bf:61:50:5d:
11:9d:99:e4:c8:1a:0c:b7:88:3b:4d:f8:46:53:91:
ac:12:4a:95:4b:4e:c2:ef:6e:a2:01:76:86:99:e3:
86:72:4c:f0:ca:93:1e:7c:fb:d9:41:74:b5:e7:1f:
cd:92:58:de:8c:12:e6:a8:af:64:5a:75:b3:9a:27:
a6:44:cd:f9:14:d1:48:aa:24:64:a9:64:dc:92:de:
3f:0d:d2:e8:39:93:81:42:43:4e:20:56:fc:ff:9f:
66:ee:bd:be:ab:ca:a8:89:76:2c:35:12:d2:e9:43:
56:50:ed:4c:3b:97:6f:ef:b8:d2:76:44:08:3f:fb:
fd:39:01:44:f8:80:06:e5:47:b6:7a:b3:1e:1d:2b:
b9:90:d4:44:ae:dd:32:57:34:51:c9:5d:ab:84:37:
72:49:98:62:44:e4:ca:04:30:f8:8c:93:7c:99:b7:
b8:27:3b:e9:29:51:09:26:54:d1:5c:a2:11:73:63:
a3:0b:66:9a:d5:e8:f1:ca:c9:54:2b:3b:6d:a9:6f:
53:86:b8:46:a1:00:0f:16:41:1f:72:6d:88:65:d2:
cd:c9:d8:18:5d:bf:86:25:85:fb:cb:bf:d1:2f:0d:
7f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D0:C3:24:EC:C8:A2:60:46:F4:E4:B8:DA:56:B2:12:29:EE:1B:7C
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/K9DDJOzIomBG9OS42layEinuG3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:668:1f8::/46
Signature Algorithm: sha256WithRSAEncryption
c8:d0:34:e2:cc:63:c4:78:a8:15:42:1c:b5:5b:a4:65:bb:6d:
5f:1c:58:d1:16:ba:55:12:e1:c8:76:b7:be:41:e0:95:55:b7:
3e:73:6b:c1:53:24:53:54:db:0b:e6:a5:df:c3:6f:1a:cb:71:
bc:d6:50:bb:b0:b6:f6:07:92:18:4b:1a:13:b7:f0:d5:38:1d:
a4:07:c6:d5:1d:bd:e8:19:1c:50:1e:bd:5c:49:1c:bb:7c:22:
ad:6f:ad:e6:d0:5a:29:ff:d7:24:da:8d:5c:f2:fe:b9:19:fe:
cf:e9:1e:0f:53:66:c6:f9:be:45:c3:41:4b:bc:32:da:52:8e:
d7:c7:01:f0:50:58:47:08:1b:86:24:33:f2:99:54:da:50:34:
f9:c1:10:db:23:cb:10:c0:c6:de:27:bd:7e:de:f4:b7:b7:a2:
4b:f6:28:0d:4b:17:20:2d:5c:02:4d:6a:01:33:94:82:d8:27:
30:2e:ee:4c:a0:91:73:1c:1b:f1:9b:b8:68:49:e3:2c:c2:20:
18:ec:1a:5d:72:e1:45:10:a8:5c:40:47:06:9f:12:13:c7:20:
bd:8f:6d:ec:6b:2c:0c:14:18:5d:d3:24:b4:f3:52:17:53:e9:
05:93:26:0d:bf:08:a9:43:81:62:30:76:42:b0:a9:94:ea:64:
09:a5:cd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:38 2024 by rpki-client on console-ams.rpki-client.org