Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/kjsbIP1VXNi8JRckpb-4hJ1JNYM.roa
File: kjsbIP1VXNi8JRckpb-4hJ1JNYM.roa (raw, json)
Hash identifier: AV5G5WRr990d5ujEd7GXRmEfXeWywbMJdzJrFZWaBo4=
Subject key identifier: 92:3B:1B:20:FD:55:5C:D8:BC:25:17:24:A5:BF:B8:84:9D:49:35:83
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018CC26D07FB98E58CE07D8031C191AD96A0
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/kjsbIP1VXNi8JRckpb-4hJ1JNYM.roa
Signing time: Mon 01 Jan 2024 00:29:34 +0000
ROA not before: Mon 01 Jan 2024 00:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 2a09:9441::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 09 Feb 2024 17:40:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:07:fb:98:e5:8c:e0:7d:80:31:c1:91:ad:96:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Jan 1 00:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=923b1b20fd555cd8bc251724a5bfb8849d493583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:43:5e:ba:d4:3b:cc:3e:37:0c:1a:d4:e4:5e:
61:af:b9:cd:e6:fb:bb:22:2e:3f:98:b8:12:04:9c:
23:8c:d2:51:0f:fb:33:d6:a4:e6:d6:d7:ec:15:72:
90:88:56:73:50:53:ee:72:2f:61:f2:9a:cd:6a:1f:
84:cf:55:dc:60:42:61:64:2a:55:bc:33:ee:15:5c:
3f:0d:d7:4c:34:4e:33:a2:68:a3:8d:21:83:bf:97:
33:e0:58:f2:06:c3:60:bc:f1:c3:e5:70:c6:ae:67:
ca:a0:a8:3a:24:93:e2:3d:48:95:3c:32:3f:e7:15:
be:bf:61:8f:16:59:7b:c1:b1:a0:5d:82:e2:93:b0:
e0:c1:82:00:9c:43:1c:39:92:2a:ae:bc:33:83:3c:
2b:37:0a:f8:28:0c:73:c9:82:f9:27:1e:7a:cd:29:
ae:dd:a7:a5:6d:91:87:96:4d:8f:df:ff:9c:b9:80:
14:90:ae:f3:8f:b3:25:10:3f:78:0e:d9:8c:b5:d0:
28:9a:5e:4e:4a:2d:43:53:e4:63:61:5a:29:63:7c:
b3:76:e3:4f:87:89:ef:b9:2c:75:1b:88:dc:79:b4:
23:cc:3a:5f:bf:13:c4:b4:16:ab:42:38:0f:c9:da:
5f:de:7e:11:a5:09:c2:68:df:9e:34:5f:89:db:38:
55:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:3B:1B:20:FD:55:5C:D8:BC:25:17:24:A5:BF:B8:84:9D:49:35:83
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/kjsbIP1VXNi8JRckpb-4hJ1JNYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:9441::/32
Signature Algorithm: sha256WithRSAEncryption
34:c9:67:db:ee:c4:ba:ce:66:c4:91:e7:60:ef:b0:a7:37:6f:
4e:0b:7a:a6:46:f2:c5:dc:ef:c2:64:37:f2:66:30:5f:76:e2:
b8:0b:c2:73:46:b1:e1:67:d5:9f:5d:b0:80:f9:d0:63:2c:9f:
58:03:c8:77:2f:48:4b:17:0b:d8:41:41:d7:93:80:a2:e9:e6:
54:81:48:98:4d:4f:7f:d0:a8:4f:85:35:9e:5d:cd:71:21:90:
0a:dc:e2:d7:51:9b:3c:1f:5e:50:03:3f:ee:ba:f0:24:f7:8e:
25:cf:db:b4:8f:1e:e1:00:35:c4:a8:17:8b:de:91:1f:56:eb:
d3:aa:f0:64:79:fd:67:a9:56:b2:6c:6b:07:75:65:cb:84:30:
7b:81:d1:d1:05:c7:13:c7:ea:ab:c5:01:53:1f:00:16:2f:8b:
a3:40:fa:1d:dc:b0:84:72:cb:61:d8:8e:79:e5:17:f3:44:3c:
c2:26:22:1e:23:a8:14:46:b8:f5:90:93:22:45:45:5d:7e:f0:
3b:6f:a6:b9:a0:68:7c:e8:ba:f2:4f:e4:93:09:3b:01:d5:ef:
dc:02:c3:c7:95:59:aa:a3:65:0a:f5:1e:b0:e6:8d:b1:1b:8f:
de:54:f0:8f:1a:ac:47:70:59:f8:26:5a:ad:e0:8b:01:7f:2c:
dd:55:47:74
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzCbQf7mOWM4H2AMcGRrZagMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI2MGIyYmM0NTQ3N2M4MWQ3NzRkYWEwYzI4YWI0NGI3NzRi
YTA5MjAwHhcNMjQwMTAxMDAyOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjNiMWIyMGZkNTU1Y2Q4YmMyNTE3MjRhNWJmYjg4NDlkNDkzNTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjkNeutQ7zD43DBrU5F5hr7nN5vu7
Ii4/mLgSBJwjjNJRD/sz1qTm1tfsFXKQiFZzUFPuci9h8prNah+Ez1XcYEJhZCpV
vDPuFVw/DddMNE4zomijjSGDv5cz4FjyBsNgvPHD5XDGrmfKoKg6JJPiPUiVPDI/
5xW+v2GPFll7wbGgXYLik7DgwYIAnEMcOZIqrrwzgzwrNwr4KAxzyYL5Jx56zSmu
3aelbZGHlk2P3/+cuYAUkK7zj7MlED94DtmMtdAoml5OSi1DU+RjYVopY3yzduNP
h4nvuSx1G4jcebQjzDpfvxPEtBarQjgPydpf3n4RpQnCaN+eNF+J2zhVowIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJI7GyD9VVzYvCUXJKW/uISdSTWDMB8GA1UdIwQY
MBaAFCYLK8RUd8gdd02qDCirRLd0ugkgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmdzcnhGUjN5QjEzVGFvTUtLdEV0M1M2Q1NBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YjEyMDUtMzQ1MC00ZTkwLThiMTQt
MTdlNjZjMWZkM2QxLzEva2pzYklQMVZYTmk4SlJja3BiLTRoSjFKTllNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS83YjEyMDUtMzQ1MC00ZTkwLThiMTQtMTdlNjZjMWZkM2Qx
LzEvSmdzcnhGUjN5QjEzVGFvTUtLdEV0M1M2Q1NBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgmUQTAN
BgkqhkiG9w0BAQsFAAOCAQEANMln2+7Eus5mxJHnYO+wpzdvTgt6pkbyxdzvwmQ3
8mYwX3biuAvCc0ax4WfVn12wgPnQYyyfWAPIdy9ISxcL2EFB15OAounmVIFImE1P
f9CoT4U1nl3NcSGQCtzi11GbPB9eUAM/7rrwJPeOJc/btI8e4QA1xKgXi96RH1br
06rwZHn9Z6lWsmxrB3Vly4Qwe4HR0QXHE8fqq8UBUx8AFi+Lo0D6HdywhHLLYdiO
eeUX80Q8wiYiHiOoFEa49ZCTIkVFXX7wO2+muaBofOi68k/kkwk7AdXv3ALDx5VZ
qqNlCvUesOaNsRuP3lTwjxqsR3BZ+CZareCLAX8s3VVHdA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org