Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/kesi-l-OynpAdszmjP12TxMoq2Y.roa
File: kesi-l-OynpAdszmjP12TxMoq2Y.roa (raw, json)
Hash identifier: oSl5zjPoKuDy6/0GkVjpNKMOAWtXl6GUOXuzR55HFIs=
Subject key identifier: 91:EB:22:FA:5F:8E:CA:7A:40:76:CC:E6:8C:FD:76:4F:13:28:AB:66
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 0189250F0C83C75D8BA0D151E9B26B7376CD
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/kesi-l-OynpAdszmjP12TxMoq2Y.roa
Signing time: Wed 05 Jul 2023 07:58:10 +0000
ROA not before: Wed 05 Jul 2023 07:58:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211056
IP address blocks: 2a13:3cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Nov 2023 13:10:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:25:0f:0c:83:c7:5d:8b:a0:d1:51:e9:b2:6b:73:76:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Jul 5 07:58:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91eb22fa5f8eca7a4076cce68cfd764f1328ab66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:65:41:dd:d5:ae:77:ce:00:aa:55:38:a7:1b:
12:85:5e:d9:5c:f3:55:34:05:73:26:13:8c:88:51:
69:20:f0:96:71:be:9d:1e:a2:9b:66:9c:3b:6e:9a:
c8:36:ad:b8:b7:ed:f6:54:40:be:2f:80:ad:b1:f0:
00:2e:09:67:c1:f6:d5:04:fc:2d:bd:11:97:71:a3:
9a:9c:cc:47:8c:6b:6e:b8:f0:00:91:38:9e:3b:4b:
82:60:6c:e2:ac:21:97:a2:fb:e3:7e:1e:86:06:d1:
24:77:1a:32:3f:76:67:39:45:1c:eb:45:8c:c4:64:
9e:d1:c5:0a:f2:2a:71:4a:9c:85:37:c7:20:70:88:
a5:27:a4:da:48:e2:68:f1:51:53:32:4c:9e:61:32:
c8:8b:ee:99:ec:70:4f:95:6a:0e:11:6f:85:cd:dc:
ad:81:5a:91:8b:ad:a1:93:76:52:9a:f1:23:8d:d9:
f1:7a:c8:15:bd:5f:b0:72:af:1f:3d:a3:45:f7:74:
8e:9c:c1:14:54:cf:96:cd:7e:d0:73:c7:dc:ff:47:
21:49:dc:fa:d0:98:89:bb:41:76:7b:dd:91:4d:6d:
d3:fc:3b:08:46:cb:03:4f:3b:b1:be:8e:d6:93:1c:
c6:40:9e:36:06:d1:56:1c:aa:45:2b:0a:4a:a8:6c:
9e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EB:22:FA:5F:8E:CA:7A:40:76:CC:E6:8C:FD:76:4F:13:28:AB:66
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/kesi-l-OynpAdszmjP12TxMoq2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:3cc0::/29
Signature Algorithm: sha256WithRSAEncryption
3c:d5:f4:75:6e:94:22:ba:52:a3:7b:0d:75:3c:0f:16:d7:4f:
ec:b2:35:03:17:ea:fa:22:a8:d2:0d:7d:08:52:b1:27:df:c1:
d9:aa:5f:5d:1f:1e:92:5f:f5:00:6c:ca:42:23:5e:54:88:e8:
34:33:3c:69:d7:db:b8:a4:55:36:c7:63:09:01:88:ed:c1:ff:
00:68:77:6e:95:00:aa:f1:ec:80:47:d8:86:f7:0f:f9:bb:db:
52:6e:cc:6e:cb:22:c2:56:fb:cf:fc:41:be:12:77:d8:dc:63:
f1:d0:f9:96:ea:77:71:21:aa:24:49:01:6f:00:51:c3:f7:fc:
f2:8f:0d:9e:72:8e:5f:7b:a7:b1:bf:d1:6c:29:44:71:44:e7:
f7:f4:b7:bd:63:c0:03:80:87:f5:46:fe:9e:ca:c1:57:0a:0c:
29:b9:b6:b1:2d:03:0e:1d:dd:67:72:fd:b5:b7:80:eb:d0:40:
63:9b:78:a4:bd:6c:0e:46:43:e3:9f:af:12:fc:a5:6d:85:83:
cf:ad:67:a3:05:fe:f6:42:9b:f6:70:f1:10:ed:40:df:58:b7:
3c:8f:61:c8:d4:9e:b2:af:5e:1b:17:15:70:4e:d4:2b:a6:cd:
d8:9f:db:f2:0e:a8:95:2d:a9:c6:6a:3d:30:3c:93:58:b8:ec:
90:f9:4e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org