Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/KcFLSCP4aZQNDDPJmYOodJcliKc.roa
File: KcFLSCP4aZQNDDPJmYOodJcliKc.roa (raw, json)
Hash identifier: iDBpaGkEK7cNvYCHG6J2Gdm6M2CtGM4DB9CUJlZXF94=
Subject key identifier: 29:C1:4B:48:23:F8:69:94:0D:0C:33:C9:99:83:A8:74:97:25:88:A7
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 018B60B599FA5AFB9A062C90F1E4383A7054
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/KcFLSCP4aZQNDDPJmYOodJcliKc.roa
Signing time: Tue 24 Oct 2023 08:03:16 +0000
ROA not before: Tue 24 Oct 2023 08:03:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206873
IP address blocks: 2a0e:4bc3::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:b5:99:fa:5a:fb:9a:06:2c:90:f1:e4:38:3a:70:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Oct 24 08:03:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29c14b4823f869940d0c33c99983a874972588a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:9b:be:f0:20:2f:c5:3c:4c:a1:04:f2:26:73:
74:cd:c3:57:53:32:05:43:3f:67:f3:2f:7e:5b:56:
57:73:fe:7e:d2:0d:fa:d2:e8:64:ee:c9:23:99:47:
03:35:b7:29:c1:7c:a4:20:3b:81:dc:8a:50:e5:4e:
f1:84:c1:fe:be:c9:33:79:cc:ff:f5:3b:2a:0e:d8:
42:e7:8b:04:9a:ab:28:f9:44:8c:7b:69:25:5c:74:
7e:23:8d:69:9b:ef:1e:f9:4f:fb:d3:e5:79:15:0b:
e5:b2:9a:b6:d3:a5:38:71:a2:89:3d:3f:75:ca:bc:
05:c6:3e:78:88:89:06:2a:a5:61:83:8a:81:58:e9:
c5:02:09:14:da:97:1b:34:1a:9f:64:75:b2:40:f7:
30:61:08:ac:3f:be:0a:81:7a:ca:6a:55:2f:b8:54:
94:f3:1d:4b:85:5c:58:05:d6:db:54:a5:b4:96:a3:
b2:26:6e:fc:ab:15:67:8c:a0:ad:3b:96:fa:70:ef:
f5:45:9c:d4:36:61:66:51:8a:93:5a:6d:ed:e2:56:
d5:20:6b:a4:76:59:44:62:b8:a2:69:ae:18:2b:1a:
81:a7:db:84:a4:db:76:60:df:f1:7c:90:da:a2:eb:
f1:39:ad:96:b0:fd:10:86:d3:83:78:93:96:1c:ac:
ad:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C1:4B:48:23:F8:69:94:0D:0C:33:C9:99:83:A8:74:97:25:88:A7
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/KcFLSCP4aZQNDDPJmYOodJcliKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc3::/32
Signature Algorithm: sha256WithRSAEncryption
04:a1:96:5a:ab:7e:34:5c:26:d7:4c:5a:2f:f6:3d:54:99:e1:
04:32:d7:37:2b:fa:7e:ea:88:cc:2d:bd:c7:45:ef:0b:a5:d4:
26:db:93:d5:cc:03:1a:f6:6c:1b:61:d8:32:b9:01:ab:08:85:
ca:c4:bc:20:18:b3:dd:9c:a3:63:bc:cb:31:ac:43:0f:5b:b2:
9b:76:e2:52:f4:07:b1:84:a9:03:be:70:ea:86:b0:b5:9f:b2:
66:69:15:a3:f7:0f:88:aa:cf:0c:83:f6:6d:15:2d:48:09:64:
5c:62:ab:75:3e:18:35:1e:6d:e0:9b:be:bf:c5:c4:9d:24:fb:
1e:f4:dc:4b:2a:83:a7:56:db:3a:0a:80:e3:3d:cc:59:c4:08:
c0:26:ea:44:2a:03:a5:3c:83:21:2e:b0:ea:29:ec:39:26:c3:
32:79:92:e8:4c:1e:25:3f:1f:39:2e:21:57:1a:83:df:e6:bb:
25:95:1a:bf:44:41:7a:5e:9d:00:bf:0f:8f:a0:a5:ca:2d:fd:
ca:01:fa:56:52:f3:1a:37:c2:12:6e:e0:29:14:27:9b:b6:b1:
02:d9:05:93:05:3f:20:fa:53:4b:1e:80:01:e3:1e:e0:79:d7:
ee:7c:6f:10:51:60:2a:3b:8a:c8:db:23:ca:ab:0a:c3:12:40:
3c:4c:75:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org