Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlKfFKeStIr3z1uGMB2V9a7nJBs.roa
File: KlKfFKeStIr3z1uGMB2V9a7nJBs.roa (raw, json)
Hash identifier: 9z3EfmGd4bjw/rnDIHLGtcz2lWYMMwkwMcEEGzu5SN8=
Subject key identifier: 2A:52:9F:14:A7:92:B4:8A:F7:CF:5B:86:30:1D:95:F5:AE:E7:24:1B
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C320923065168DDF221E4CF9CB638F
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlKfFKeStIr3z1uGMB2V9a7nJBs.roa
Signing time: Mon 02 Jan 2023 09:14:51 +0000
ROA not before: Mon 02 Jan 2023 09:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207036
IP address blocks: 2a06:e881:1600::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:20:92:30:65:16:8d:df:22:1e:4c:f9:cb:63:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a529f14a792b48af7cf5b86301d95f5aee7241b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f4:bb:54:a2:4f:c5:c5:c8:af:d1:b1:4a:d1:
5d:b0:01:cc:47:cc:95:7e:d2:1a:57:5f:f4:84:c9:
af:f2:83:83:91:72:60:7e:d6:8c:50:c0:fc:2d:51:
4b:b6:46:41:98:4b:b8:20:ef:c5:0c:5c:6e:b7:f0:
68:44:4d:50:f7:7d:80:b9:ce:14:31:0e:67:28:8d:
2b:ab:30:43:a9:35:b8:61:8a:7b:0e:4a:a8:14:f9:
bd:20:29:b3:1a:1d:48:ab:c5:93:80:1b:88:c2:1d:
76:26:13:e9:22:5d:b4:21:5b:ef:91:61:43:e8:9c:
58:62:91:71:e6:de:4b:c9:d8:ff:e3:26:f2:82:0c:
c8:3c:9e:b5:04:98:d7:3d:01:ac:28:4b:f3:9c:9b:
96:48:40:bf:42:de:44:0d:e5:74:71:ef:d3:e7:c3:
a4:be:a6:14:42:15:af:85:66:5a:e3:a3:94:96:f3:
8c:5d:fe:64:5b:3e:78:1f:dc:2d:e1:85:90:fe:f7:
65:a4:d6:f1:8a:73:5a:53:0b:21:c1:60:7d:b1:19:
09:69:db:55:9d:19:e4:0c:4c:d3:59:2d:77:7e:de:
16:9b:9e:50:63:2c:15:7d:6e:cf:7d:f8:4c:cc:72:
58:e3:a2:1e:26:ce:5a:61:01:a9:79:1c:09:5e:1b:
78:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:52:9F:14:A7:92:B4:8A:F7:CF:5B:86:30:1D:95:F5:AE:E7:24:1B
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/KlKfFKeStIr3z1uGMB2V9a7nJBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:1600::/44
Signature Algorithm: sha256WithRSAEncryption
3e:06:66:3f:6f:f8:04:ee:da:47:27:18:13:8d:f6:8e:4a:c4:
5e:66:2e:f5:3f:2d:e9:4a:91:ca:27:0b:ad:65:b3:0e:48:3e:
6d:6c:59:3d:d6:8e:80:ee:42:71:ce:04:f1:12:99:16:81:49:
8f:2a:82:03:a1:11:30:ff:52:3b:01:e3:c1:ba:ec:d3:79:17:
0a:22:34:f5:1a:b1:c8:b5:55:b7:58:50:70:7b:cc:64:21:63:
63:c9:b3:e2:66:cb:87:bc:63:fc:12:13:8d:ac:19:e9:9c:1c:
97:f1:27:0c:14:e5:58:6f:0a:d6:bf:f3:a3:bd:62:49:00:9f:
14:29:18:65:2d:b2:ad:6e:78:e2:d2:2e:fa:18:6c:68:49:15:
8a:7c:21:cc:3d:6b:61:fc:ba:ce:a3:2d:90:17:be:90:2d:c3:
39:bc:28:5d:b4:c0:68:5c:8e:2c:5a:26:31:c4:75:a4:41:f0:
bd:8d:b8:57:69:e5:a9:5e:13:e9:02:36:47:05:e7:7f:f5:f6:
b0:e4:44:ba:03:03:cc:71:50:a2:97:1c:d2:74:f3:83:4e:c5:
da:b0:eb:48:fe:a5:23:a1:65:b6:ac:61:36:a2:04:2d:ad:e7:
58:2d:e7:f2:af:c6:3c:b8:10:37:ae:39:4c:29:c6:27:cd:04:
be:f6:c4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org