Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/KtMV2Qp2at4C3DbdL1Kv702Rzc0.roa
File: KtMV2Qp2at4C3DbdL1Kv702Rzc0.roa (raw, json)
Hash identifier: mARUvgLtwUIrJxD8uXx27Erzs25w+3KHCZZhyODJiSs=
Subject key identifier: 2A:D3:15:D9:0A:76:6A:DE:02:DC:36:DD:2F:52:AF:EF:4D:91:CD:CD
Certificate issuer: /CN=cfeace714c29568ef197007b141d12758cc415d5
Certificate serial: 018A2118AEA66DA5E7C5130B4FE061039BCD
Authority key identifier: CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/KtMV2Qp2at4C3DbdL1Kv702Rzc0.roa
Signing time: Wed 23 Aug 2023 06:33:00 +0000
ROA not before: Wed 23 Aug 2023 06:33:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49419
IP address blocks: 2a0b:fd80::/32 maxlen: 48
2a0b:fd81::/32 maxlen: 48
2a0b:fd87::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 28 Aug 2023 08:18:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:18:ae:a6:6d:a5:e7:c5:13:0b:4f:e0:61:03:9b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfeace714c29568ef197007b141d12758cc415d5
Validity
Not Before: Aug 23 06:33:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ad315d90a766ade02dc36dd2f52afef4d91cdcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4b:e4:9c:e8:4e:88:40:c7:e0:19:68:48:7d:
40:0b:e3:2c:0e:8e:aa:b8:8c:2b:93:b9:2f:57:13:
45:2a:46:81:69:c7:ce:ce:5e:a5:ba:97:48:d9:a2:
fd:95:c4:36:24:c7:f8:fc:e8:37:7c:bb:4c:41:77:
b6:fe:9f:f3:0d:03:5c:94:fc:a2:00:aa:1e:4f:1f:
0b:d0:99:e7:1d:1f:f2:27:f1:45:94:25:c2:c6:26:
46:ad:0e:26:db:bf:2f:eb:21:f6:26:88:92:c6:30:
d7:80:05:f7:2f:7b:0e:bb:13:d5:ee:eb:bf:de:19:
07:b1:a6:85:a2:0e:38:7d:02:b5:0d:3f:13:c1:59:
56:bd:05:65:00:62:54:88:c3:fe:2e:e5:c0:1c:13:
9e:be:d9:7f:17:4d:54:c7:34:f8:72:ab:58:e0:1e:
1d:76:14:37:eb:14:e7:50:b4:d4:61:46:70:35:8a:
3f:ac:34:cc:f3:c7:53:af:d3:3b:02:a6:53:9e:07:
72:31:77:26:50:1e:16:ae:07:ec:13:f4:9e:0f:53:
64:ea:da:55:97:5d:fb:e3:e3:86:fb:bc:07:fa:37:
18:6e:7d:9e:ab:e6:90:1b:7e:f0:ef:39:26:ff:66:
70:f6:a1:66:90:d7:61:e7:1c:4f:51:cc:f5:ed:94:
f6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:D3:15:D9:0A:76:6A:DE:02:DC:36:DD:2F:52:AF:EF:4D:91:CD:CD
X509v3 Authority Key Identifier:
keyid:CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/KtMV2Qp2at4C3DbdL1Kv702Rzc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:fd80::/31
2a0b:fd87::/32
Signature Algorithm: sha256WithRSAEncryption
1e:43:6e:6c:3b:80:0c:96:cb:e8:3e:ef:07:2b:08:31:be:10:
f8:ac:55:a9:53:50:c7:bb:1f:6d:4d:fe:b3:a1:dc:c3:8f:29:
7b:48:b1:54:0a:8f:49:52:4f:fa:c3:57:ad:1d:fb:84:3e:60:
27:1d:e6:64:69:be:4a:72:3c:f3:e7:a8:e1:40:94:e1:6c:e2:
29:be:34:ef:9f:13:bf:49:b6:0d:e7:0a:d1:6c:1a:ff:09:f5:
6d:b8:7a:64:37:a8:1d:51:8c:b9:24:05:82:df:bc:e1:55:58:
f7:32:f9:40:73:6f:74:cb:ea:32:5c:2d:61:9e:fd:b5:ae:dc:
50:ae:59:a7:f4:27:e0:c6:01:46:59:d7:ab:f5:1c:8b:2f:bc:
24:fd:64:1a:b3:02:f3:14:29:42:ad:5e:63:d4:bd:f7:05:8b:
ba:1c:de:de:52:52:ad:97:92:41:f7:42:f6:0d:ed:81:b2:99:
75:52:fb:e6:f8:fd:2c:16:8d:64:51:f8:2f:99:5e:16:13:33:
8b:e6:2c:5c:81:d9:ca:ec:85:85:13:e3:f2:86:1f:5a:4e:9c:
71:78:55:fd:17:12:42:35:6c:14:99:30:1d:10:f8:b5:0c:49:
32:0b:3b:97:77:d1:0b:4c:6f:85:32:6f:8b:5b:77:2b:f3:94:
1b:a5:9a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:54 2024 by rpki-client on console-ams.rpki-client.org