Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/KOTmob0fKdrA9euSJczvtlncgi8.roa
File: KOTmob0fKdrA9euSJczvtlncgi8.roa (raw, json)
Hash identifier: DQ9P3uoZsQ/xWf4rEks2U6O+yIc6wG7urOpVXckDz6M=
Subject key identifier: 28:E4:E6:A1:BD:1F:29:DA:C0:F5:EB:92:25:CC:EF:B6:59:DC:82:2F
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 0185714C468D74C1E82308F67F5F5ABCB410
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/KOTmob0fKdrA9euSJczvtlncgi8.roa
Signing time: Mon 02 Jan 2023 07:05:02 +0000
ROA not before: Mon 02 Jan 2023 07:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203833
IP address blocks: 2a00:11c0:38::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:46:8d:74:c1:e8:23:08:f6:7f:5f:5a:bc:b4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Jan 2 07:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28e4e6a1bd1f29dac0f5eb9225ccefb659dc822f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ce:54:24:f8:9b:83:2c:9c:3a:7b:e1:67:41:
44:86:cf:16:f1:87:02:9c:19:7a:75:fb:57:fa:1f:
63:f1:5b:db:2c:b6:81:7a:e8:bc:31:2a:8d:b9:f5:
de:16:99:31:f5:f8:3a:78:28:a6:a8:10:b3:0c:d5:
69:e3:e4:63:c1:17:ad:fb:e0:6b:f6:34:a5:7e:c1:
c6:3d:df:b4:5e:2d:a7:f7:8f:1d:c0:99:1f:96:f2:
54:b8:8e:ba:0c:6c:6a:f9:3f:0e:78:4f:e1:b7:dc:
ad:fc:e7:75:9b:9b:e0:7e:db:c6:4c:3e:95:c0:54:
6a:c1:8d:f3:09:f5:a8:ad:6a:bb:46:80:ce:ca:78:
a4:19:7d:64:52:19:4e:2a:cc:5f:8d:00:e7:0e:6b:
ae:95:69:59:01:2d:42:b5:28:1a:0c:64:9a:ee:23:
5d:85:68:14:3b:e0:89:bb:be:fc:ed:51:08:f3:91:
37:82:e6:67:22:eb:72:8a:d6:28:4c:71:b3:d3:56:
b6:92:db:8a:40:4d:c0:22:8c:c6:e9:d1:76:4c:a5:
17:08:6b:ef:4e:b3:01:49:7e:4b:5d:82:f1:98:50:
4e:3f:37:98:9e:60:43:08:96:68:f9:69:52:b5:66:
c8:78:17:1f:c1:a3:58:84:5d:6c:f0:72:db:6d:14:
3f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E4:E6:A1:BD:1F:29:DA:C0:F5:EB:92:25:CC:EF:B6:59:DC:82:2F
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/KOTmob0fKdrA9euSJczvtlncgi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:11c0:38::/48
Signature Algorithm: sha256WithRSAEncryption
37:7b:14:95:04:c6:9b:56:4d:b2:e5:28:ec:a9:84:56:a1:15:
52:7b:4b:64:6c:b7:5a:8c:51:94:9a:7b:84:b9:be:3e:a9:43:
04:63:46:ea:d1:98:00:be:68:7d:f8:e6:f2:c8:5f:6e:a5:bd:
7b:1b:ba:ed:14:42:9f:dc:e1:8c:49:f5:b9:6a:f6:07:4e:25:
f8:24:d3:3c:82:06:9d:81:91:1c:09:9b:a6:64:78:e5:63:6b:
c7:a9:ff:8a:7e:29:03:6a:00:f2:4c:e2:55:96:ea:c5:ba:60:
05:e7:37:0e:ec:ab:a5:31:d6:01:89:80:c7:05:1c:c1:cb:0e:
e7:e7:b7:24:b6:4d:2b:84:e8:92:b0:9f:b1:2f:5a:6a:da:7e:
ab:b2:fa:b3:26:ea:4f:41:48:20:59:29:ec:ed:1a:3b:a4:60:
35:48:2f:59:3b:c3:d1:85:9a:d6:1c:70:66:6c:15:f8:50:e7:
32:ba:8e:c9:43:43:3a:49:09:47:bc:9a:22:9f:f8:03:54:40:
01:02:f0:7f:53:2a:04:60:da:07:70:1a:91:5b:17:16:cc:65:
29:31:17:3c:47:31:94:8d:5a:28:cd:93:fe:06:ac:dd:46:98:
6c:eb:ae:36:26:88:08:8a:04:80:c7:1b:9b:3d:6d:0c:39:19:
09:f5:47:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org