Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kDXNiN51Kw7kKZ5rlOxr-lqyynU.roa
File: kDXNiN51Kw7kKZ5rlOxr-lqyynU.roa (raw, json)
Hash identifier: WKkV7hiLnKgEID/jo3zubX4N+X1R+9Hh5+CibP6rKcE=
Subject key identifier: 90:35:CD:88:DE:75:2B:0E:E4:29:9E:6B:94:EC:6B:FA:5A:B2:CA:75
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C325789C85642F88621043307D3B55
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kDXNiN51Kw7kKZ5rlOxr-lqyynU.roa
Signing time: Mon 02 Jan 2023 09:14:52 +0000
ROA not before: Mon 02 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209569
IP address blocks: 2a06:e881:5900::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:25:78:9c:85:64:2f:88:62:10:43:30:7d:3b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9035cd88de752b0ee4299e6b94ec6bfa5ab2ca75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:25:d9:9c:a8:52:c7:de:7f:4d:4f:3e:75:
26:f7:27:31:2b:60:c9:24:ab:93:e8:2f:d7:ee:05:
f7:64:1d:23:99:fc:c0:c4:31:f6:3b:d1:f6:c8:d8:
67:f1:9b:f3:f1:14:f4:fb:3f:86:c9:fc:59:08:25:
d8:98:39:10:59:dd:eb:76:53:1e:89:45:48:43:ba:
a5:fa:35:f6:f0:5e:97:82:b8:1f:f5:49:e0:ca:d4:
b7:12:b2:69:34:e5:1b:3d:db:f8:22:fa:98:7d:c0:
6e:dc:4d:97:18:15:42:8a:2f:8a:ad:77:cc:30:b0:
00:97:6e:bd:e3:8a:9a:30:74:fb:5a:78:12:56:9f:
09:5e:7f:0a:bb:8b:33:37:e9:4b:dc:b8:d4:9a:86:
e8:52:e3:0e:72:e0:3e:4d:b5:67:69:23:af:2f:e3:
69:14:19:e4:86:1e:39:21:b3:ef:d6:37:7c:62:02:
b6:ef:c1:72:1c:4d:59:cc:a3:de:f3:0e:53:13:93:
76:c4:75:5d:94:69:30:bb:b4:de:fc:cf:b5:39:8c:
bf:b7:09:2c:4e:9d:7f:9b:b8:47:95:bc:fd:f1:e9:
e5:7d:86:fc:e4:c8:65:f1:65:7a:34:d0:4e:97:3c:
ea:f6:3e:8c:e2:e1:b6:c6:07:85:88:1c:88:ba:39:
9a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:35:CD:88:DE:75:2B:0E:E4:29:9E:6B:94:EC:6B:FA:5A:B2:CA:75
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/kDXNiN51Kw7kKZ5rlOxr-lqyynU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:5900::/44
Signature Algorithm: sha256WithRSAEncryption
4b:a8:ec:68:83:ef:5e:fe:12:fa:2c:a6:cf:d0:bc:82:d6:94:
c4:95:39:6e:c0:48:4d:60:ac:6d:56:2a:d1:7e:ff:96:a1:e6:
ea:f4:12:17:49:4b:17:f1:1a:68:9b:c6:02:93:31:d3:74:24:
e9:ed:99:d7:48:8d:4a:26:07:aa:19:35:44:29:be:d3:ab:dd:
60:1f:2a:cb:c5:9c:42:38:28:01:55:fe:e4:00:e8:53:ff:84:
83:97:4f:ec:09:fd:6c:12:69:8a:11:b0:50:a4:f7:65:12:75:
5b:f7:80:57:cd:27:47:de:f4:61:3c:bf:e0:9f:4e:7e:33:71:
56:5e:9a:74:35:48:da:bd:7f:5a:03:7b:61:88:eb:cc:58:83:
99:d1:ab:e0:d0:97:04:98:03:f6:2f:d4:da:bb:e3:9c:c7:1f:
c6:c0:4b:47:95:8b:17:2c:41:b2:df:21:c6:89:cf:7d:3c:81:
a6:50:0b:04:fe:11:8b:bb:e9:a5:8e:b7:cd:a7:4d:5f:c6:f6:
32:44:87:1e:cb:b8:fa:09:cb:53:9a:42:a6:dc:67:c2:60:15:
97:20:3b:41:da:b9:92:fb:34:fe:03:16:ad:07:d6:ad:d0:69:
9a:79:0f:5b:90:bc:d0:32:39:78:5c:03:7e:86:f6:5d:dd:17:
55:99:74:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:04 2024 by rpki-client on console-ams.rpki-client.org