Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kvRbVdIsySAOIe87-kjttcLdMbQ.roa
File: kvRbVdIsySAOIe87-kjttcLdMbQ.roa (raw, json)
Hash identifier: KtAJF0u25dNDeeZ0s9ktNB7vrY6RD00axY8GhVBdu1M=
Subject key identifier: 92:F4:5B:55:D2:2C:C9:20:0E:21:EF:3B:FA:48:ED:B5:C2:DD:31:B4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019064BF571B0AC6B43FEBE951AC39024AA2
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kvRbVdIsySAOIe87-kjttcLdMbQ.roa
Signing time: Sat 29 Jun 2024 16:06:19 +0000
ROA not before: Sat 29 Jun 2024 16:06:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203345
IP address blocks: 2a0e:b107:1a10::/44 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Aug 2024 19:37:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:64:bf:57:1b:0a:c6:b4:3f:eb:e9:51:ac:39:02:4a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 29 16:06:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92f45b55d22cc9200e21ef3bfa48edb5c2dd31b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:03:d2:17:dd:1e:d1:c3:39:74:29:cf:59:
d1:ab:53:a7:43:b0:5e:66:b2:64:0d:70:71:3b:e7:
ea:22:60:a0:7e:60:92:22:3e:98:c6:79:fc:2d:83:
53:72:09:c6:42:ae:c8:0a:b7:72:3a:8f:9b:9e:fe:
b2:1d:e9:c4:2d:cd:a0:dc:f0:8a:b1:b6:2a:b7:62:
76:bc:aa:b3:cd:8d:03:d9:be:52:94:a3:d6:7d:7a:
8b:82:55:59:94:51:23:da:f1:11:06:be:b3:41:51:
8c:45:0f:a9:1b:bc:25:64:e8:49:88:79:1e:aa:7e:
a2:6c:76:ef:48:1c:6e:ec:00:a8:5e:65:c3:cb:95:
55:81:71:b5:3b:e5:c9:38:74:21:fc:7b:a7:5d:25:
53:d7:1e:07:b9:cd:d3:05:8b:e2:0a:2f:37:14:97:
35:37:ec:58:f8:c3:c9:92:e1:5f:d5:e7:f3:01:64:
1a:22:87:44:06:fa:89:e8:94:ae:02:2a:d9:19:fb:
69:ab:fc:07:12:44:24:ff:a2:26:70:20:3e:5c:3d:
61:83:fc:a3:a4:51:d4:2d:ab:e9:f9:1e:79:2f:87:
db:e3:8f:d0:99:3f:01:e6:ca:95:6a:d1:0e:d1:e4:
37:cc:4c:d3:ae:77:26:49:0b:20:c8:8c:4a:cd:e0:
c4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F4:5B:55:D2:2C:C9:20:0E:21:EF:3B:FA:48:ED:B5:C2:DD:31:B4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kvRbVdIsySAOIe87-kjttcLdMbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1a10::/44
Signature Algorithm: sha256WithRSAEncryption
8a:62:de:ce:ff:06:e4:86:8b:02:0e:c9:bb:c1:85:37:cc:a5:
53:07:12:9e:78:c3:54:b5:68:90:37:7a:92:a1:2c:7e:4b:96:
9c:d5:2b:6d:2f:38:5f:ab:5d:7a:12:9e:b9:e7:6c:a5:76:7b:
a1:6c:1b:b2:7a:32:5e:2e:8d:17:0b:55:14:84:9e:a9:aa:fc:
49:84:e8:a3:74:e7:fd:c4:16:f0:ba:b4:4a:05:ec:2b:aa:fd:
09:89:8b:e9:b4:d1:2d:0d:78:3b:bb:06:8f:79:f4:f9:56:31:
50:13:f8:14:e5:51:eb:c2:ba:f3:62:9d:ba:3f:e2:a7:51:29:
63:f5:8a:03:29:5f:4a:4e:bd:bd:55:27:c5:90:67:18:a4:97:
48:5d:50:bf:8d:5f:14:6d:13:f0:e3:30:46:c3:c3:cd:93:4c:
af:81:39:87:97:92:9a:58:bb:69:e8:38:ec:40:d1:f2:c5:8f:
46:ec:77:d3:15:72:f5:cd:f2:36:57:cd:42:87:8a:ae:49:4b:
05:1b:95:dc:2e:a5:1d:81:37:21:7c:0d:d2:63:32:3b:ac:d8:
40:66:4b:42:7f:8c:1f:cd:dc:da:f5:fe:df:d7:23:67:a4:ad:
a4:9a:9c:94:49:3d:70:2e:51:1e:23:8b:4d:25:5b:ba:f1:af:
4d:f4:93:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 21:00:55 2024 by rpki-client on console-fra.rpki-client.org